A zero-day exploit is a cybersecurity attack that targets security flaws in computer hardware, software or firmware in order to maliciously plant malware, steal data, or damage the program.
Zerodium was the first company to release a full pricing chart for zero-days, ranging from $5,000 to $1,500,000 per exploit.
[4] In May 2024, Intelligence Online posted an article titled "France, United States Iconic American vulnerability trader Zerodium to close its doors? "
In January 2025, Zerodium disabled its website and replaced it with a single page containing their PGP key.
Reporters Without Borders criticized Zerodium for selling information on exploits used to spy on journalists to foreign governments.