CyberHappenings logo
Home Browse About

Track cybersecurity events as they unfold. Sourced timelines. Filter, sort, and browse. Fast, privacy‑respecting. No invasive ads, no tracking.

L3Harris Employee Pleads Guilty to Selling Zero-Day Exploits to Russian Entities

First reported
Last updated
2 unique sources, 2 articles

Summary

Hide ▲

Peter Williams, a former general manager at L3Harris cyber-division Trenchant, pleaded guilty to selling at least eight zero-day exploits to a Russian cyber broker between 2022 and 2025. The exploits, stolen from Trenchant, were sold for $1,300,000 in cryptocurrency and were intended for the exclusive use of the U.S. government and select allies. The broker's clients include the Russian government, posing a significant national security threat. Williams used his privileged access to the company's network to steal the exploits and transmitted them via encrypted channels. The FBI has emphasized the severity of the crime, highlighting the potential impact on US national security. Williams now faces up to 10 years in prison and fines of $250,000 or twice the gain or loss pertinent to the offense. The case underscores the growing concern over the trade in commercial spyware and zero-day exploits, with international efforts underway to curb this activity. Trenchant, the cyber-capabilities business unit within L3Harris Technologies, was conducting its own investigation into the potential leak of Google Chrome zero-day vulnerabilities, with another employee, Jay Gibson, at the epicenter of the accusations.

Timeline

  1. 30.10.2025 12:00 2 articles · 11d ago

    L3Harris Employee Pleads Guilty to Selling Zero-Day Exploits to Russia

    The illegal activity took place between 2022 and 2025. Williams stole the exploits from Trenchant, a cyber-capabilities business unit within L3Harris Technologies. The exploits were intended for the exclusive use of the U.S. government and select allies. Williams sold the trade secrets to a Russian cyber-tools broker for $1,300,000 in cryptocurrency. The broker is suspected to be Operation Zero, a Russian-based zero-day purchase platform. Williams faces charges carrying a maximum of 10 years' imprisonment and fines of $250,000 or twice the gain or loss pertinent to the offense. Trenchant was conducting its own investigation into the potential leak of Google Chrome zero-day vulnerabilities to outsiders, with another employee, Jay Gibson, at the epicenter of the accusations.

    Show sources
    Open in new tab

Information Snippets

Similar Happenings

North Korean Hackers Steal $2 Billion in Cryptocurrency in 2025

North Korean hackers have stolen approximately $2 billion in cryptocurrency in 2025, the highest annual total recorded. This theft is part of a broader campaign to fund nuclear weapons development. The largest single heist was the Bybit hack in February, which accounted for $1.46 billion. The tactics used by these hackers have evolved to include more sophisticated laundering techniques and a shift towards targeting individuals and exchange employees through social engineering. The 2025 total so far is triple last year’s figure and beats 2022’s record of $1.35bn, which came on the back of attacks against Ronin Network and Harmony Bridge. The total amount stolen by North Korean hackers since 2017 exceeds $6 billion. Other notable breaches include LND.fi, WOO X, Seedify, and BitoPro. The Lazarus Group stole an estimated $11 million from BitoPro. The actual stolen amount may be higher due to difficulties in attribution and unreported incidents.

Open in new tab