Olivia
Online
Mmm
@hackyzh
Chrome GPU sandbox escape and Anroid Kernel Stuff.
Singapore
Joined February 2018
599 Following
3.1K Followers
603 Posts
It's extremely difficult. Let's see if this vulnerability can enable complete RCE without renderer RCE, relying on a single vulnerability.
Android Security Bulletin—June 2026 | Android Open Source Project
@_deayzl Dude,you will get $500 from chrome vrp.😄
@buptsb [TBD][513289241] Medium CVE-2026-10022: Type Confusion in V8. Reported by ggwhyp on 2026-05-14
Who to follow
sakura
@eternalsakura13
Lead Security Researcher @zellic_io. Top 3 Chrome VRP. Top 2 Facebook Whitehat. MSRC MVRs 9th. BlackHat Asia/USA & Zer0Con & OffensiveCon speaker.
starlabs
@starlabs_sg
A Singapore company that discovers vulnerabilities to help customers mitigate the risks of cyber attacks. Organisers of @offbyoneconf
ohjin 
@pwn_expoit
I'm still hungry. I will be world-class, @[email protected]
@buptsb 😅Some people are still submiting bugs.
https://t.co/8JLTgaJaGT
@roddux both,This is an obvious vulnerability; Claude could easily find it.
@0vercl0k Most are reported by Google
@Khalil_Zhani Good news!
I'd like to ask everyone, after the Chrome VRP automatic update policy was implemented, are the bounties still being paid normally for vulnerabilities submitted before the new rules were introduced?🤣
@h3xr4bb1t Is it from Renderer RCE to Sandbox Escape? That price is way too low.
@cybaqkebm same as pj0.I don't know why Google defined it this way; perhaps they didn't consider the case of 0-click?
Found 1 android 0-click memory corruption vuln.However, it seems that the upstream issue was resolved in March.🤡Fortunately, it was just a minor OOB read.#0click
@h3xr4bb1t They need to create momentum.
@calif_io These bounty are based old rules after new rules publish?
@sirdarckcat Nice,Eduardo :)
😅Chrome VRP is dead
📣📢 Calling all Android and Chrome bug hunters 🧑💻🔎!
We're updating our Android & Chrome VRP programs to ensure we can continue to reward the most challenging and impactful vulnerabilities researchers find in our products. For details, 👇
https://t.co/hyZzEIampk
`The controlled read or controlled write poc must be included in your initial report - we will not consider submissions added at a later time.` That's ridiculous.
https://t.co/4CcQnCP0MP
Demonstrating controlled read or write
Mojom interfaces to demonstrate controlled reads or controlled writes in privileged processes are available in vrp_flags.mojom.
Last Seen Users on Sotwe
Tiến Hà
Seen from Switzerland
chapín502xxx
Seen from United States
Kevin lam TOP ĐỤ TÊ LIỆT
Seen from Vietnam
نادي التعري العربي
Seen from France
𝕮𝖗𝖞𝖇𝖆𝖇𝖞
Seen from United States
RIHPRINT
Seen from United States
couckmom/ould
Seen from Qatar
mody
Seen from Netherlands
Gay Gym Bình Dương
Seen from Vietnam
Gay Nứng Cặc Thèm Trai Nắc Lỗ Đít
Seen from Vietnam
Trends for you
Most Popular Users
Elon Musk
@elonmusk
240.1M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.8M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.2M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.5M followers
KATY PERRY
@katyperry
86.7M followers
Taylor Swift
@taylorswift13
80.5M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.4M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.4M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61M followers
X
@x
60.9M followers
CNN Breaking News
@cnnbrk
59.9M followers