Royce Moon

Pwn2Own hit max capacity for the first time in history. We unfortunately couldn’t get in. We submit our research to vendors. Look to our blog for technical breakdowns coming soon! #cybersecurity #0day #reverseengineering #exploitdev #infosec #xchglabs #pwn2own

Royce Moon has done really incredible work on a containment layer for agentic AI. It ensures AI safety without having to dig into the internals or alignments of AI models, by formally verifying interactions with the world. Works whether considering superintelligence, super-duper intelligence, or anything beyond. arxiv.org/abs/2605.09045

dnsmasq powers massive amounts of networking infrastructure worldwide. We found 6 0days. 5 were accredited to xchglabs and assigned CVEs. Our first technical writeup is now live: xchglabs.com/blog/dnsmasq-f… #dnsmasq #0day #cybersecurity #xchglabs

‼️🚨 Pwn2Own Berlin 2026 just hit a wall. For the first time in 19-years, ZDI rejected dozens of working zero-day RCE submissions because organizers ran out of contest slots. Rejected hackers are now going public with PoC demos and direct vendor disclosures, breaking Pwn2Own's usual secrecy. ▪️ AI surfaces a massive wave of 0-day RCEs. ▪️ Submissions overwhelm ZDI past max capacity. ▪️ Slots run out. Researchers with working chains get rejected. ▪️ "Revenge disclosures" begin. ← we are here. Confirmed casualties so far: ▪️ @xchglabs : 86 vulnerabilities prepared (PyTorch, NVIDIA, Linux KVM, Oracle, Docker, Ollama, Chroma, LiteLLM, llama.cpp). All rejected. Now reporting directly to vendors with writeups dropping as patches land. ▪️ @ggwhyp : full-chain Firefox RCE on Windows. Rejected. Publicly demoed (HTML page → cmd.exe → calc.exe). Responsibly disclosed to Mozilla. ▪️ @yunsu_dev : working RCE chain, rejected. Submitting elsewhere. ▪️ @ryotkak : tried to register for 3+ weeks. ZDI confirmed "at maximum capacity, can't add extra contest days." Considered canceling flight and hotel. ▪️ @anzuukino2802 : Claude Code RCE PoC. Rejected. ▪️ @desckimh : 0-day RCEs in Ollama and LM Studio. Rejected. Reported impact: a community-estimated 150+ researchers tried to register. Accepted contestants are now being warned about collisions. Rejected vulnerabilities going to bug bounty programs may trigger pre-event patches that invalidate the work of those who got in. ZDI has not publicly addressed the capacity issue. The event still runs May 14-16 in Berlin.

We’re excited to share that our recent paper, “Transformational Creativity in Science: A Graphical Theory,” co-authored by @samschapiro, @jonahablack, and @lrvarshney received the Best Short Paper Award at the 16th International Conference on Computational Creativity, organized by the @ACC_assoc. This work opens new avenues for developing AI systems capable of achieving breakthrough insights, mirroring the cognitive leaps seen in historical scientific revolutions such as Einstein’s theory of relativity, the heliocentric model, and the advent of non-Euclidean geometry. We’re grateful to ICCC for this recognition and look forward to continue developing a future where AI can contribute to robust, interpretable, and even transformative scientific discoveries. Paper link: arxiv.org/abs/2504.18687 #creativity #artificialintelligence #science #innovation

[1/3] 🎉 We’re thrilled to announce that two of our papers on scientific creativity have been accepted at #ICCC 2025 as oral presentations! 📄Transformational Creativity in Science: A Graphical Theory Paper link: arxiv.org/abs/2504.18687