Exploitation broker Zerodium is looking to acquire zero-day exploits for VPN clients for Windows clients for NordVPN, ExpressVPN, and SurfShark VPN services. NordVPN and Surfshark have been used by threat actors in the past. The reason behind the exploit broker’s announcement remains undisclosed but one motive could be that government customers need a way to identify cybercriminal activity hiding behind VPN services, according to Zerodium’s statement. The company says that its business is guided by ethics and selects customers based on strict criteria and vetting processes.”]