A former employee of the defense contractor L3Harris has been sentenced to more than seven years in prison for selling eight highly sensitive zero-day exploits to a Russian broker. Peter Williams admitted to stealing these trade secrets and receiving millions in cryptocurrency, which he used to fund a lifestyle of luxury before being caught by federal authorities.

The sentencing of Peter Williams marks the conclusion of a major counterintelligence investigation into the theft of American cyber capabilities. During his tenure at L3Harris, the thirty-nine-year-old Australian national leveraged his senior position to access and exfiltrate proprietary tools designed exclusively for the United States government and its allies. By selling these exploits to a Russian entity known as Operation Zero, Williams caused an estimated thirty-five million dollars in financial losses to his former employer and created significant risks to global digital security.

The tools Williams compromised were capable of facilitating a wide range of illicit activities, including state-sponsored espionage, ransomware attacks, and offensive operations against military infrastructure. Prosecutors emphasized that the defendant prioritized personal enrichment over national security, accepting up to four million dollars in digital currency for the stolen secrets. As part of his sentence, Williams must forfeit all assets acquired through these payments, including high-end real estate, luxury vehicles, and expensive jewelry.

Operation Zero, the recipient of the stolen trade secrets, is a Moscow-based exploit broker led by Sergey Sergeyevich Zelenyuk. The organization has a history of offering massive bounties for vulnerabilities in popular platforms like Telegram, Android, and iPhone, specifically marketing its services to intelligence agencies in non-NATO countries. Investigations revealed that the broker actively recruits hackers and develops sophisticated spyware intended to extract personal data from various digital platforms, including modern artificial intelligence applications.

In a coordinated response to the breach, the United States government has leveled extensive sanctions against Zelenyuk and his network of associates. The Department of the Treasury and the State Department designated several entities and individuals under the Protecting American Intellectual Property Act, targeting those who facilitate the distribution of harmful cyber tools. These sanctions extend to specialized technology firms in the United Arab Emirates and various assistants and business partners suspected of helping the organization bypass international banking restrictions.

Federal law enforcement officials have used this case to send a clear message regarding the consequences of corporate espionage and betrayal of trust. By successfully prosecuting Williams and exposing the infrastructure of the Russian brokerage, authorities hope to deter others in the defense industry from attempting similar schemes. The Federal Bureau of Investigation continues to monitor the activities of such brokers to prevent American technology from being weaponized by foreign adversaries against civilian or military targets.

Source: Defense Contractor Employee Sentenced for Selling 8 Zero-Day Exploits to Russian Broker