
Operation Zero
Russian exploit brokerage operating as Matrix LLC; OFAC-sanctioned April 2026 for acquiring stolen US government zero-days.
Last refreshed: 28 April 2026 · Appears in 1 active topic
How did a Russian exploit broker buy US government zero-days while Iran was under active cyber attack?
Timeline for Operation Zero
Expended key munitions at a rate flagged by CSIS as creating a vulnerability window
Iran Conflict 2026: CENTCOM hits Goruk and Qeshm IslandMentioned in: Bahrain and Qatar sign Hormuz coalition pact
Iran Conflict 2026Mentioned in: White House signs no Iran instrument on day 71
Iran Conflict 2026Mentioned in: Pakistan carries US memo to Tehran
Iran Conflict 2026Rubio rejected on Monday, paper Thursday
Iran Conflict 2026Background
Operation Zero gained Lowdown relevance in the context of the Iran conflict's cyber dimension. OFAC sanctioned the firm in April 2026 for acquiring zero-day exploits from US government contractor insiders, with the designation noting the exploits were acquired while US offensive cyber operations against Iranian infrastructure were active. The sanctions placed Operation Zero in the same OFAC designation round that targeted Iranian sanctions-evasion networks, reflecting the convergence of cyber and financial enforcement in the conflict's fifth round of measures.