February 25, 2026

L3Harris Ex-Employee Sentenced to Prison for Selling Zero-Day Exploits to Russian Broker

Vaibhav February 25, 2026
L3Harris-Ex-Employee-Sentenced-to-Prison-for-Selling-Zero-Day-Exploits-to-Russian-Brokerdata
Post Views: 16

Former US Defense Contractor Executive Sentenced to Prison for Stealing and Selling Zero-Day Exploits

A former executive at a US defense contractor has been sentenced to over seven years in prison for stealing and selling zero-day exploits to a Russian broker. The individual, Peter Williams, served as the general manager of Trenchant, a cybersecurity unit of L3Harris that develops surveillance tools and zero-day exploits for the US government and its intelligence partners.

Theft and Sale of Zero-Day Exploits

Between 2022 and 2025, Williams misappropriated at least eight protected exploit components intended for exclusive use by the US government and its allies. He then sold these stolen tools to a Russian exploit broker known as Operation Zero, which markets itself as a reseller of hacking tools to non-NATO buyers.

Williams used a portable external hard drive to transfer the exploits out of secure networks at Trenchant’s offices in Sydney and Washington, D.C. He then sent the stolen tools to the broker via encrypted channels. The theft resulted in $35 million in losses to L3Harris and potentially enabled access to millions of devices worldwide.

Guilty Plea and Sentencing

Williams pleaded guilty in October to selling the eight stolen zero-day exploits to the Russian broker for $1.3 million in cryptocurrency. In addition to his prison sentence, Williams was ordered to forfeit $1.3 million, a house, and various luxury goods.

Sanctions Imposed on Operation Zero

The US Treasury Department has also imposed sanctions on Operation Zero and its owner. The sanctions were announced on the same day as Williams’ sentencing.

“These incredibly powerful tools would have allowed Russia to access millions of digital devices,” said US Attorney Jeanine Pirro for the District of Columbia. “By betraying a position of trust and selling sensitive American technology, Williams’ crime is not only one of theft, it is a crime of national security.”

Risks and Concerns

The case highlights the risks associated with the theft and sale of sensitive cybersecurity tools. The incident also raises concerns about the potential for nation-state actors to acquire and exploit zero-day vulnerabilities. The US government has taken steps to prevent the sale of sensitive cybersecurity tools to unauthorized parties, but the case demonstrates the need for continued vigilance in this area.


Blog Image

About Author

Vaibhav

See author's posts

More Stories

426-Cybersecurity-Mergers-and-Acquisitions-Deals-Announced-in-2025-Report-by-SecurityWeekdata

426 Cybersecurity Mergers and Acquisitions Deals Announced in 2025 Report by SecurityWeek

Vaibhav February 25, 2026
Transforming-Business-with-Proactive-Risk-Management-and-Uncertainty-Leadership-Strategiesdata

Transforming Business with Proactive Risk Management and Uncertainty Leadership Strategies

Vaibhav February 25, 2026
US-Sanctions-Russian-Broker-for-Buying-Stolen-Zero-Day-Exploitsdata

US Sanctions Russian Broker for Buying Stolen Zero-Day Exploits

Vaibhav February 25, 2026

Latest Cyber Security News

426-Cybersecurity-Mergers-and-Acquisitions-Deals-Announced-in-2025-Report-by-SecurityWeekdata

426 Cybersecurity Mergers and Acquisitions Deals Announced in 2025 Report by SecurityWeek

Vaibhav February 25, 2026
CarGurus-Data-Breach-Affects-Over-12-Million-Usersdata

CarGurus Data Breach Affects Over 12 Million Users

Vaibhav February 25, 2026
Transforming-Business-with-Proactive-Risk-Management-and-Uncertainty-Leadership-Strategiesdata

Transforming Business with Proactive Risk Management and Uncertainty Leadership Strategies

Vaibhav February 25, 2026
Poland-Cybercrime-Unit-Exposes-Massive-Facebook-Login-Hacking-Scheme-Involving-100-000-Usersdata

Poland Cybercrime Unit Exposes Massive Facebook Login Hacking Scheme Involving 100,000 Users

Vaibhav February 25, 2026
US-Sanctions-Russian-Broker-for-Buying-Stolen-Zero-Day-Exploitsdata

US Sanctions Russian Broker for Buying Stolen Zero-Day Exploits

Vaibhav February 25, 2026
en_USEnglish
en_USEnglish