Hackers Selling $220,000 Windows Zero-Day Exploit on Dark Web

Cybercriminal sells Windows RDP zero-day exploit CVE-2026-21533 for $220K, threatening systems globally. Act now to secure your network.

By Content Team

Mar 9, 2026

ON THIS PAGE

Share

---

ON THIS PAGE

Want more insights like this?

Subscribe to our newsletter to get the latest software protection strategies delivered to your inbox.

By submitting your email, you consent to Codekeeper contacting you and agree to our privacy policy.

A cybercriminal named Kamirmassabi is selling a zero-day exploit for Windows Remote Desktop Services vulnerability CVE-2026-21533 for $220,000 on a dark web forum. The exploit targets improper privilege management, allowing attackers to gain full administrative control from standard user accounts.

The vulnerability affects Windows 10, Windows 11, and Windows Server editions from 2012 to 2025. With a CVSSv3 score of 7.8, it's classified as high severity and added to CISA's Known Exploited Vulnerabilities catalog.

The steep price suggests the exploit is highly reliable and works across multiple Windows systems. Organizations must immediately apply Microsoft's security patches and consider disabling Remote Desktop Services if not essential.

Source: Cybersecurity News

Share this article

Have questions about protecting your software?

Our escrow experts are standing by to help.

Book a free demo

YOU MAY ALSO LIKE

North Korean Hackers Breach Popular Axios NPM Package in Supply Chain Attack

Apr 1, 2026

Europol Leads Global Crackdown on Black Axe Cybercrime Gang, 34 Arrested

Jan 10, 2026

Victorian Teacher's Identity Stolen After Submitting Rental Applications Online

Feb 8, 2026

Cybercriminals Launch Sophisticated Phishing Attack Targeting LastPass Users

Jan 22, 2026