Treasury sanctions Russian zero-day broker accused of buying exploits stolen from U.S. defense contractor | TechCrunch
TechCrunch
by Lorenzo Franceschi-BicchieraiFebruary 24, 2026
AI-Generated Deep Dive Summary
The U.S. Treasury has imposed sanctions on a Russian company, Operation Zero, its founder Sergey Zelenyuk, and associated individuals for their role in acquiring and reselling zero-day exploits—vulnerabilities in software unknown to developers but exploitable for malicious purposes. These tools pose significant risks to national security, as they can be used for hacking, ransomware attacks, or espionage. The sanctions also target Special Technology Services, a UAE-based affiliate, and two individuals linked to Operation Zero, including Marina Vasanovich, Zelenyuk's assistant, and Azizjon Mamashoyev, founder of another zero-day broker, Advance Security Solutions.
Operation Zero gained attention for offering millions of dollars for exploits in Android, iPhones, and Telegram. The Treasury指控 that the company acquired at least eight cyber tools stolen from a U.S. defense contractor, L3Harris Technologies, which were intended for exclusive use by the U.S. government and its allies. These tools were sold to unauthorized users, raising concerns about their potential misuse.
The sanctions are part of ongoing efforts to combat the proliferation of zero-day exploits in the cybersecurity market. The Treasury cited a 2022 law allowing penalties for significant trade secret thefts. Zelenyuk was accused of recruiting hackers and developing relationships with foreign intelligence agencies through social media, while Kucherov is suspected ties to Trickbot, a notorious ransomware gang.
The case highlights the growing threat posed by zero-day brokers, who profit from selling vulnerabilities that could be exploited for malicious activities. By targeting Operation Zero and its affiliates, the U.S. aims to disrupt this market and prevent stolen cyber tools from reaching adversaries, thereby safeguarding national security and economic interests.
This move underscores the broader challenge of regulating the zero-day exploit trade, which has become a lucrative business but also a significant risk to global cybersecurity. As governments and companies increasingly rely on digital systems, the potential misuse of such exploits poses critical risks that require international cooperation and robust regulatory measures to address effectively.
Verticals
techstartups
Originally published on TechCrunch on 2/24/2026