Security · 4h ago
Anonymous GitHub Account Drops Unpatched Zero-Day Exploits
An anonymous GitHub account named 'bikini' has published multiple undisclosed zero-day exploits in a repository called 'exploitarium'. The repository contains working proof-of-concept code for vulnerabilities in widely used software, with no patches available. Security teams are scrambling to assess the impact and develop mitigations.
Meridian48 take
While public disclosure pressures vendors, mass-dropping unpatched exploits without coordinated disclosure risks aiding attackers before fixes are ready.
zero-dayexploit-disclosure