Close Menu
TechTost
  • AI
  • Apps
  • Crypto
  • Fintech
  • Hardware
  • Media & Entertainment
  • Security
  • Startups
  • Transportation
  • Venture
  • Recommended Essentials
What's Hot

Meta enters the crowded AI coding fray with Muse Spark 1.1

Elon Musk says X will send DMs when posts you’ve interacted with are fixed

AI chip maker SambaNova raises $1 billion at $11 billion valuation, 5 months after last mega round

Facebook X (Twitter) Instagram
  • About Us
  • Contact Us
  • Privacy Policy
  • Terms and Conditions
  • Disclaimer
Facebook X (Twitter) Instagram
TechTost
Subscribe Now
  • AI

    Meta enters the crowded AI coding fray with Muse Spark 1.1

    13 July 2026

    Can AI answer the $3 trillion question?

    12 July 2026

    OpenAI shuts down Atlas, but AI browser ambitions keep growing

    12 July 2026

    OpenAI bets on families as ChatGPT goes deeper into households

    11 July 2026

    Meta removes controversial AI feature on Instagram after backlash

    11 July 2026
  • Apps

    Elon Musk says X will send DMs when posts you’ve interacted with are fixed

    13 July 2026

    ‘Slow-cial’ Roost app forces you to slow down to the speed of a carrier pigeon

    12 July 2026

    Character.AI is entering the micro-drama arena with its own productions, but there’s a twist

    12 July 2026

    A new app, HyperTexting, turns the open web into a social media scrolling-like stream

    11 July 2026

    Apple is suing OpenAI for alleged trade secret theft

    11 July 2026
  • Crypto

    Venice AI goes unicorn with $65M Series A as first privacy AI platform takes off

    1 July 2026

    Crypto Exchange OKX wants AI agents to hire and pay each other

    30 June 2026

    Startup Battlefield 200 applications close today

    27 May 2026

    5 days left: Save up to $410 on Disrupt 2026 passes

    25 May 2026

    As crypto cools, a16z crypto raises $2.2 billion in capital

    6 May 2026
  • Fintech

    Don’t want to invest in Elon Musk? Two new ETFs expressly exclude him

    10 July 2026

    India’s payments chief believes artificial intelligence will play a big part in the next era of digital payments development

    28 June 2026

    Early Bird pricing ends tonight for the Founder Summit

    26 June 2026

    4 days left to save up to $190 on Founder Summit 2026

    23 June 2026

    Robinhood’s note on 10% layoffs shows that blaming AI doesn’t cut it

    17 June 2026
  • Hardware

    Meta’s new AI chips will begin production in September

    12 July 2026

    This slush machine was a lifesaver during the New York heat wave

    12 July 2026

    Dumb Co dared me to exchange my iPhone for a hacked phone

    11 July 2026

    SK Hynix raises $26.5 billion in largest foreign public IPO in US history, set to build new fabs in US

    11 July 2026

    After Apple, smartphone manufacturing boom in India enters new phase with Vivo JV

    10 July 2026
  • Media & Entertainment

    Netflix could be planning “always on” live TV channels.

    11 July 2026

    Netflix is ​​dealing with shorter video content with its new set of publisher deals with Variety and others

    8 July 2026

    Netflix invented binge watching. Now he may be over it.

    7 July 2026

    New Google ad imagines a Declaration of Independence written with the help of artificial intelligence

    4 July 2026

    Cloudflare’s new policy pushes AI companies to pay for publishers’ content

    1 July 2026
  • Security

    US cybersecurity agency CISA had to create the incident guide during the incident, the agency reveals

    11 July 2026

    Florida ransomware dealer convicted of helping ransomware gang extort US companies

    10 July 2026

    Hacktivists call out Trump by hacking and defacing US military websites

    8 July 2026

    Canada’s spy agency says it hacked drug traffickers, extremists and a ransomware gang last year

    6 July 2026

    Politician who investigated abuses of wiretapping software on his phone with Pegasus spyware

    3 July 2026
  • Startups

    AI chip maker SambaNova raises $1 billion at $11 billion valuation, 5 months after last mega round

    12 July 2026

    Hot French startup ZML releases free product to speed up inference on multiple AI chips

    12 July 2026

    Former OpenAI executive Kevin Weil is now on Stoke Space’s board

    11 July 2026

    Phia Accused of ‘Cookie Stuffing’, Taking Affiliate Credit for Unearned Purchases

    11 July 2026

    Oratomic raises $300M to build sustainable quantum computer that only needs 20,000 qubits

    10 July 2026
  • Transportation

    TechCrunch Mobility: A robotaxi ultimatum

    12 July 2026

    Slate Auto partners with Crayola to paint its EV truck

    10 July 2026

    Autonomous drone delivery startup Manna plans major US expansion

    9 July 2026

    Federal authorities are demanding that autonomous vehicle companies stop interfering with first responders

    9 July 2026

    Another massive data breach exposed millions of driver’s license numbers

    8 July 2026
  • Venture

    Filed Under: College Fizz App Accuses VC Of Sharing Confidential Startup Info With Rival Sidechat

    11 July 2026

    Charles Hudson shares the common mistakes he’s seen after investing in 500+ startups

    10 July 2026

    Nandan Nilekani steps down as GP at Fundamentum as it launches third $200m fund

    9 July 2026

    What are bending spoons? The little-known owner of AOL and Vimeo who is now public

    5 July 2026

    After $18B IPO, Bending Spoons Founder Says Success Comes From Minimizing Luck

    2 July 2026
  • Recommended Essentials
TechTost
You are at:Home»Security»How a former boss of L3Harris Trenchant stole and sold cyber-exploits to Russia
Security

How a former boss of L3Harris Trenchant stole and sold cyber-exploits to Russia

techtost.comBy techtost.com4 November 202506 Mins Read
Share Facebook Twitter Pinterest LinkedIn Tumblr Email
How A Former Boss Of L3harris Trenchant Stole And Sold
Share
Facebook Twitter LinkedIn Pinterest Email

Peter Williams, the former managing director of Trenchant, a division of defense contractor L3Harris that develops surveillance and hacking tools for Western governments, pleaded guilty last week to stealing some of those tools and selling them to a Russian broker.

A court document filed in the case, as well as an exclusive report from TechCrunch and interviews with Williams’ former colleagues, explained how Williams was able to steal the highly valuable and sensitive assets from Trenchant.

Williams, a 39-year-old Australian citizen known inside the company as “Doogie,” admitted to prosecutors that he stole and sold eight exploits, or “zero-days,” which are security flaws in software that are unknown to their maker and are extremely valuable for hacking a target’s devices. Williams said some of those exploits, which he stole from his own company, Trenchant, were worth $35 million, but he only received $1.3 million in cryptocurrency from the Russian broker. Williams sold the eight exploits over several years, between 2022 and July 2025.

By virtue of his position and tenure at Trenchant, according to the court document, Williams “maintained ‘superuser’ access to the company’s ‘internal, access-controlled, multi-factor authentication’ secure network where its hacking tools were stored and to which only employees with a ‘need to know’ had access.”

As a “super-user,” Williams could see all activity, logs and data related to Trenchant’s secure network, including his exploits, the court document notes. Access to Williams’ company network gave him “full access” to Trenchant’s proprietary information and trade secrets.

Exploiting this wide range of access, Williams used a portable external hard drive to transfer the exploits from secure networks to Trenchant’s offices in Sydney, Australia and Washington, DC, and then onto a personal device. At that point, Williams sent the stolen tools through encrypted channels to the Russian broker, according to the court document.

A former Trenchant employee with knowledge of the company’s internal IT systems told TechCrunch that Williams “was at a very high level of trust” within the company as a member of the senior leadership team. Williams had worked at the company for years, even before the L3Harris acquisition Azimuth and Central lever Laboratoriestwo sister newcomers who merged into Trenchant.

“It was considered, in my opinion, to be an eyesore,” said the former employee, who asked to remain anonymous as they were not authorized to speak about their work at Trenchant.

“No one had any supervision over him at all. He was allowed to do things as he pleased,” they said.

Contact us

Do you have more information about this case and the alleged leak of Trenchant hacking tools? From a non-working device, Lorenzo Franceschi-Bicchierai can be reached securely on Signal at +1 917 257 1382 or via Telegram, Keybase and Wire @lorenzofb or via email.

Another former employee, who also asked not to be named, said “the general perception is that whoever the [general manager] he would have unlimited access to everything.”

Before the acquisition, Williams worked at Linchpin Labs and before that at the Australian Signals Directorate, the country’s intelligence agency tasked with digital and electronic eavesdropping, according to Risky Business cyber security podcast.

Sara Banda, a spokeswoman for L3Harris, did not respond to a request for comment.

“Severe Damage”

In October 2024, Trenchant was “notified” that one of its products had been leaked and was in the possession of an “unauthorized software broker,” according to the court document. Williams was put in charge of the leak investigation, which ruled out a breach of the company’s network but found that a former employee “improperly accessed the Internet from an air-gapped device,” according to the court document.

As previously and exclusively reported by TechCrunch, Williams fired a Trenchant developer in February 2025 after accusing him of double-dealing. The fired employee later learned from some of his former colleagues that Williams accused him of stealing Chrome zero-days, which he had not had access to since he worked on developing iPhone and iPad exploits. By March, Apple notified the former employee that his iPhone had been the target of a “mercenary spyware attack.”

In an interview with TechCrunch, the former Trenchant developer said he believed Williams was framing him to cover up his own actions. It’s unclear if the former developer is the same employee listed in the court document.

In July, the FBI interviewed Williams, who told agents that “the most likely way” to steal products from the secure network would be for someone with access to that network to download the products to an “air-gapped device … like a cell phone or external drive.” (An air-gapped device is a computer or server that does not have internet access.)

As it turns out, that’s exactly what Williams confessed to the FBI in August after being confronted with evidence of his crimes. Williams told the FBI that he recognized his code was being used by a South Korean broker after he sold it to the Russian broker. However, it remains unclear how Trenchant’s code ended up on the South Korean broker.

Williams used the alias “John Taylor,” a foreign email provider, and unspecified encrypted apps when interacting with the Russian broker, possibly Operation Zero. It’s a Russia-based broker offering up to $20 million for tools to hack Android phones and iPhones, which it says it sells to “Russian private and government organizations only.”

Wired was the first to report that Williams likely sold the stolen tools to Operation Zero, since the court document cites a September 2023 social media post announcing an increase in the anonymous broker’s “grant payments from $200,000 to $20,000,000,” which fits an Operation Zero location on X at that time.

Operation Zero did not respond to TechCrunch’s request for comment.

Williams sold the first exploit for $240,000, with the promise of additional payments after the tool’s performance was confirmed and subsequent technical support to keep the tool updated. After that initial sale, Williams sold seven more exploits, agreeing to a total payment of $4 million, though he ended up receiving only $1.3 million, according to the court document.

Williams’ case has shocked the hacker cybersecurity community, where his rumored arrest has been a topic of discussion for weeks, according to several people who work in the industry.

Some of these industry insiders see Williams’ actions as causing serious damage.

“It’s a betrayal of the Western national security apparatus, and it’s a betrayal of the worst kind of threat actor we have right now, which is Russia,” the former Trenchant employee with knowledge of the company’s IT systems told TechCrunch.

“Because these secrets have been given to an adversary who is definitely going to undermine our capabilities and potentially use them against other targets as well.”

Acute Azimuth boss cyber security cyberexploits Exclusive infosec L3harris labs with hoop Peter Williams Russia sold Spyware stole Trenchant US Department of Justice Zero-days
Share. Facebook Twitter Pinterest LinkedIn Tumblr Email
Previous ArticleElad Gil Which AI Markets Have Winners — And Which Are Still Wide Open?
Next Article TikTok announces its first US awards show
bhanuprakash.cg
techtost.com
  • Website

Related Posts

Hot French startup ZML releases free product to speed up inference on multiple AI chips

12 July 2026

OpenAI bets on families as ChatGPT goes deeper into households

11 July 2026

A new app, HyperTexting, turns the open web into a social media scrolling-like stream

11 July 2026
Add A Comment

Leave A Reply Cancel Reply

Don't Miss

Meta enters the crowded AI coding fray with Muse Spark 1.1

13 July 2026

Elon Musk says X will send DMs when posts you’ve interacted with are fixed

13 July 2026

AI chip maker SambaNova raises $1 billion at $11 billion valuation, 5 months after last mega round

12 July 2026
Stay In Touch
  • Facebook
  • YouTube
  • TikTok
  • WhatsApp
  • Twitter
  • Instagram
Fintech

Don’t want to invest in Elon Musk? Two new ETFs expressly exclude him

10 July 2026

India’s payments chief believes artificial intelligence will play a big part in the next era of digital payments development

28 June 2026

Early Bird pricing ends tonight for the Founder Summit

26 June 2026
Startups

AI chip maker SambaNova raises $1 billion at $11 billion valuation, 5 months after last mega round

Hot French startup ZML releases free product to speed up inference on multiple AI chips

Former OpenAI executive Kevin Weil is now on Stoke Space’s board

© 2026 TechTost. All Rights Reserved
  • About Us
  • Contact Us
  • Privacy Policy
  • Terms and Conditions
  • Disclaimer

Type above and press Enter to search. Press Esc to cancel.