Home Innovation Software Wiz launches $4.5M Zeroday.Clo...

Wiz launches $4.5M Zeroday.Cloud hacking contest for cloud security

Software

BusinessHonor - Wiz Launches $4.5M Zeroday.Cloud Contest

Business Honor
08 October, 2025

Top cloud vendors back Zeroday.Cloud to uncover critical vulnerabilities and enhance cybersecurity defenses.

Wiz, one of the leading cloud security firms, recently launched a fresh hacking contest named Zeroday.Cloud, with a combined total value of $4.5 million worth of prizes for researchers who can prove successful exploits on widely used cloud software. The competition is supported by leading cloud vendors such as Microsoft, Google Cloud, and AWS, demonstrating how critical it is for cloud security in today's online world. The Zeroday.Cloud challenge will conclude at the Black Hat Europe conference in London on December 10-11, 2025, with the contestants being required to deliver their exploits by December 1.

The challenge is wide-ranging and encompasses different categories such as AI, Kubernetes, containers, and web servers. In the AI category, researchers can earn $25,000 to $40,000 for exploiting the Ollama, vLLM, and Nvidia Container Toolkit. The Kubernetes and cloud-native category has rewards between $10,000 and $80,000, with the maximum reward paid for exploiting the Kubernetes API Server. The containers and virtualization category has rewards of $30,000 to $60,000 for Docker and Containerd vulnerabilities, while web server exploits can yield up to $300,000 for Nginx and Tomcat vulnerabilities. The researchers are also paid up to $100,000 for database vulnerabilities in Redis, PostgreSQL, and MariaDB.

Although the size of the prize purse has created a buzz, the competition is controversial. Trend Micro's Zero Day Initiative (ZDI) has charged that Wiz has ripped off sections of its Pwn2Own competition rules. In spite of this, the Zeroday.Cloud event is still a major milestone in discovering and solving vulnerabilities in cloud infrastructure, asserting the importance of cybersecurity in safeguarding cloud environments.