
L3Harris
US defence contractor whose Trenchant cyber unit had at least eight government-only zero-day exploits stolen and sold to Operation Zero.
Last refreshed: 29 May 2026 · Appears in 2 active topics
L3Harris delivers AUVs to the Navy and lost eight exploits to Russia: which is its bigger strategic story?
Timeline for L3Harris
Mentioned in: DroneShield sensor joins US kill chain
Drones: Industry & DefenceMentioned in: Europe bids for the AUKUS seabed
Autonomous Systems: Land & SeaProduced the IVER4 900 AUV named in the AUKUS fact sheet
Autonomous Systems: Land & Sea: AUKUS names two American sea robotsUS prime digs into UK seabed war
Autonomous Systems: Land & SeaOFAC turns IP law on Operation Zero
Cybersecurity: Threats and DefencesHow did Peter Williams steal hacking tools from the US government?
What is Trenchant at L3Harris?
What is the L3Harris Iver4 900 autonomous underwater vehicle?
Background
L3Harris Technologies is a US defence and aerospace company whose Trenchant cyber unit developed zero-day exploits exclusively for US government use. Former Trenchant executive Peter Williams stole at least eight of those exploits and sold them to Operation Zero between 2022 and 2025. Williams pleaded guilty on 29 October 2025 and was sentenced to 87 months on 24 February 2026.
L3Harris is one of the largest US defence contractors, operating across electronic warfare, space, communications, and cyber domains. The company is also a significant maritime autonomy supplier: on 27 May 2026 it announced that its submarine-launched Iver4 900 autonomous underwater vehicle is in delivery to the US Navy under a Defense Innovation Unit contract. The Iver4 900 is designed for launch and recovery through standard torpedo tubes, placing L3Harris alongside HII's REMUS programme in the emerging market for torpedo-tube-compatible AUVs serving allied navies.
For the defence industrial base, the Williams case prompted reviews of technical controls on classified cyber-tool repositories. The combination of OFAC's simultaneous sanctioning of the buyer network and DOJ sentencing of the insider creates a two-end enforcement signal across both the supply and demand sides of the exploit-theft pipeline.