The United States has imposed sanctions on a Russian broker and its owner for purchasing stolen zero-day exploits from a former executive of a US defense contractor. The move marks the first time the US has used the Protecting American Intellectual Property Act (PAIPA), a law enacted to target intellectual property theft by foreign adversaries.
According to the US Treasury Department's Office of Foreign Assets Control (OFAC), Matrix LLC, doing business as Operation Zero, and its owner, Sergey Sergeyevich Zelenyuk, were designated for sanctions on Tuesday. Five associated individuals and companies were also sanctioned.
The sanctions are linked to the case of Peter Williams, a 39-year-old Australian national and former general manager of Trenchant, a cybersecurity unit of US defense contractor L3Harris. Williams was sentenced to 87 months in prison on Tuesday after pleading guilty to stealing zero-day exploits and surveillance tools from his former employer.
Zero-day exploits are highly valuable hacking tools that can be used to gain unauthorized access to computer systems and data. They are called "zero-day" because the vendor has had zero days to develop a patch or fix for the vulnerability. These exploits are highly sought after by governments, cybersecurity companies, and malicious actors, and can sell for millions of dollars on the black market.
The US government alleges that Williams stole the zero-day exploits from L3Harris and sold them to Matrix LLC, which then resold them to other parties. The Treasury Department said that Matrix LLC and its owner, Zelenyuk, knowingly purchased the stolen exploits and facilitated their resale.
The sanctions imposed by OFAC freeze the assets of the designated individuals and companies and prohibit US persons from doing business with them. The move is part of a broader effort by the US government to crack down on intellectual property theft by foreign adversaries.
"The United States will not tolerate the theft of sensitive national security information and technology for the benefit of foreign adversaries," said OFAC Director Andrea Gacki. "Today's action demonstrates our commitment to holding accountable those who engage in this illicit activity."
The use of PAIPA in this case marks a significant development in the US government's efforts to combat intellectual property theft. The law was enacted in 2020 to provide the Treasury Department with additional tools to target foreign adversaries who engage in intellectual property theft.
The sanctions imposed on Matrix LLC and its owner are also significant because they highlight the risks faced by companies that engage in the trade of zero-day exploits. While the trade in zero-day exploits is not necessarily illegal, it is a highly regulated and sensitive area, and companies that engage in it must be careful to ensure that they are not facilitating the theft of sensitive information or technology.
In recent years, there have been several high-profile cases of zero-day exploits being stolen and sold on the black market. In 2019, a former employee of the Italian cybersecurity company Hacking Team was arrested for stealing zero-day exploits and selling them to the North Korean government. In 2020, a group of hackers was indicted for stealing zero-day exploits from a US cybersecurity company and selling them to the Chinese government.
The sanctions imposed on Matrix LLC and its owner are a reminder that the US government is taking a tough stance on intellectual property theft, and that companies that engage in this activity can face serious consequences.
The United States has imposed sanctions on a Russian broker and its owner for purchasing stolen zero-day exploits from a former executive of a US defense contractor. The move marks the first time the US has used the Protecting American Intellectual Property Act (PAIPA), a law enacted to target intellectual property theft by foreign adversaries.
According to the US Treasury Department's Office of Foreign Assets Control (OFAC), Matrix LLC, doing business as Operation Zero, and its owner, Sergey Sergeyevich Zelenyuk, were designated for sanctions on Tuesday. Five associated individuals and companies were also sanctioned.
The sanctions are linked to the case of Peter Williams, a 39-year-old Australian national and former general manager of Trenchant, a cybersecurity unit of US defense contractor L3Harris. Williams was sentenced to 87 months in prison on Tuesday after pleading guilty to stealing zero-day exploits and surveillance tools from his former employer.
Zero-day exploits are highly valuable hacking tools that can be used to gain unauthorized access to computer systems and data. They are called "zero-day" because the vendor has had zero days to develop a patch or fix for the vulnerability. These exploits are highly sought after by governments, cybersecurity companies, and malicious actors, and can sell for millions of dollars on the black market.
The US government alleges that Williams stole the zero-day exploits from L3Harris and sold them to Matrix LLC, which then resold them to other parties. The Treasury Department said that Matrix LLC and its owner, Zelenyuk, knowingly purchased the stolen exploits and facilitated their resale.
The sanctions imposed by OFAC freeze the assets of the designated individuals and companies and prohibit US persons from doing business with them. The move is part of a broader effort by the US government to crack down on intellectual property theft by foreign adversaries.
"The United States will not tolerate the theft of sensitive national security information and technology for the benefit of foreign adversaries," said OFAC Director Andrea Gacki. "Today's action demonstrates our commitment to holding accountable those who engage in this illicit activity."
The use of PAIPA in this case marks a significant development in the US government's efforts to combat intellectual property theft. The law was enacted in 2020 to provide the Treasury Department with additional tools to target foreign adversaries who engage in intellectual property theft.
The sanctions imposed on Matrix LLC and its owner are also significant because they highlight the risks faced by companies that engage in the trade of zero-day exploits. While the trade in zero-day exploits is not necessarily illegal, it is a highly regulated and sensitive area, and companies that engage in it must be careful to ensure that they are not facilitating the theft of sensitive information or technology.
In recent years, there have been several high-profile cases of zero-day exploits being stolen and sold on the black market. In 2019, a former employee of the Italian cybersecurity company Hacking Team was arrested for stealing zero-day exploits and selling them to the North Korean government. In 2020, a group of hackers was indicted for stealing zero-day exploits from a US cybersecurity company and selling them to the Chinese government.
The sanctions imposed on Matrix LLC and its owner are a reminder that the US government is taking a tough stance on intellectual property theft, and that companies that engage in this activity can face serious consequences.