Security researchers successfully exploited 24 zero-day vulnerabilities on the first day of Pwn2Own Berlin 2026, earning $523,000 in cash awards, with several exploits targeting Windows 11 and Microsoft Edge. The hacks demonstrate the ongoing vulnerability of widely used software to previously unknown exploits. Notably, the fact that these exploits were executed on the first day of the competition highlights the significant exposure of these systems to zero-day attacks1. The vulnerabilities exploited during the competition have not been publicly disclosed, but their existence poses an immediate risk to users. Microsoft will likely release patches to address these vulnerabilities, but the window for patching is short, given the public disclosure of the exploits. The immediate assessment of exposure to these vulnerabilities is crucial for practitioners to mitigate potential attacks, as the exploits can be expected to be widely available soon.