Operation Zero, a Russian zero-day broker, announced a bounty of up to $4 million for vulnerabilities in the Telegram messaging app. The company is offering $500,000 for a one-click remote code execution exploit, $1.5 million for a zero-click exploit, and $4 million for a full chain of exploits. This focus on Telegram highlights its popularity among Russian and Ukrainian users. The announcement suggests a direct demand from the Russian government for such vulnerabilities, revealing insights into the secretive zero-day market. Security experts warn that Telegram lacks robust security measures compared to its competitors.