嗯,用户让我帮忙总结一下这篇文章的内容,控制在100字以内,而且不需要用“文章内容总结”或者“这篇文章”这样的开头。直接写描述即可。好的,首先我需要仔细阅读这篇文章,理解其主要内容。 文章主要讲的是美国政府宣布对两家公司实施制裁,这两家公司专门收购并转售零日漏洞(zero-day exploits)。零日漏洞是指软件开发者尚未发现的安全漏洞,可以被黑客利用进行攻击。美国财政部表示,这些公司对美国的国家安全、外交政策和经济构成了威胁。 被制裁的两家公司分别是Operation Zero和Special Technology Services。Operation Zero是一家俄罗斯公司,成立于2021年,曾悬赏高达2000万美元收购针对Android设备和iPhone的零日漏洞。该公司声称只与俄罗斯政府和当地组织合作。美国财政部指出,Operation Zero的客户可能利用这些工具发动勒索软件攻击或其他恶意活动。 Operation Zero的创始人谢尔盖·泽列纽克(Sergey Zelenyuk)也被制裁。他被指控向外国情报机构出售漏洞,并试图开发间谍软件和黑客技术。此外,美国财政部还制裁了泽列纽克的助手马琳娜·叶甫根尼耶夫娜·瓦桑诺维奇(Marina Evgenyevna Vasanovich),以及与该公司有关的阿齐兹琼·马克苏达维奇·马玛苏耶夫(Azizjon Makhmudovich Mamashoyev)和奥列格·瓦西里耶维奇·库切罗夫(Oleg Vyacheslavovich Kucherov)。 文章还提到,Operation Zero涉嫌窃取至少八种专为美国政府及其盟友开发的网络工具,并将其出售给未经授权的用户。此外,美国联邦调查局正在调查彼得·威廉姆斯(Peter Williams),他曾在为美国国防部承包商L3Harris工作的Trenchant公司担任总经理,并承认将至少八种公司的漏洞出售给一家未具名的俄罗斯经纪人,后来确认是Operation Zero。 Advance Security Solutions也受到制裁,该公司由马玛苏耶夫创立,位于阿联酋。他们提供高达2000万美元悬赏寻找能够通过短信攻击任何智能手机的零日漏洞,并在其他软件和硬件上提供高额奖金。 总结一下,文章的主要内容是美国政府对两家涉及零日漏洞交易的公司及其创始人和关联人员实施制裁,理由是这些行为威胁到国家安全等。因此,在总结时需要涵盖制裁对象、原因以及相关细节。 接下来要控制在100字以内,并且直接描述内容。所以可能需要简化一些细节,比如提到被制裁的公司名称、创始人、原因以及涉及的相关事件。 最后确保语言简洁明了。 </think> 美国政府宣布对两家收购并转售零日漏洞的公司及其创始人和关联人员实施制裁,理由是这些行为威胁到国家安全等。 2026-2-24 19:18:45 Author: techcrunch.com(查看原文) 阅读量:0 收藏
The U.S. government announced on Tuesday sanctions against two companies that acquire and resell zero-day exploits, as well sanctioning their founders and their associates.
Officials with the U.S. Treasury told TechCrunch that the government was imposing sanctions against the brokers of zero-days — security vulnerabilities in software that are unknown to its developer but can be abused to hack people — as they pose a threat to U.S. national security, foreign policy, and economy.
The first sanctioned company is Operation Zero, a Russian firm that launched in 2021. The company made headlines in 2023 when it announced that it was offering up to $20 million for zero-days in Android devices and iPhones, and later announced that it was offering up to $4 million for zero-days in Telegram. The company claims to work exclusively with the Russian government and local organizations.
The Treasury’s Office of Foreign Assets Control (OFAC) said that Operation Zero’s customers “could use the tools to launch ransomware attacks or engage in other malign activities.”
The Treasury said it’s also sanctioning the company’s founder, Sergey Zelenyuk, who officials accused of selling exploits to foreign intelligence agencies, and who say he sought to develop spyware and hacking technologies. The Treasury said Zelenyuk engaged in recruiting hackers and developing relationships with foreign intelligence agencies through social media. (Operation Zero has accounts on both X and Telegram.)
According to the Treasury, Operation Zero acquired “at least eight proprietary cyber tools, which were created for the exclusive use of the U.S. government and select allies and which were stolen from a U.S. company,” and then “sold those stolen tools to at least one unauthorized user.”
The Treasury said that the sanctions against Operation Zero and Zelenyuk coincide with an FBI investigation into Peter Williams, who worked for U.S. defense contractor L3Harris. In October, Williams pleaded guilty to selling at least eight of the company’s exploits to an unspecified Russian broker.
The Treasury now says that the broker was Operation Zero, something that the government had not previously confirmed.
Contact Us
Do you have more information about Operation Zero? Or the market for zero-days? We’d love to hear from you. From a non-work device, you can contact Lorenzo Franceschi-Bicchierai securely on Signal at +1 917 257 1382, or via Telegram, Keybase and Wire @lorenzofb, or by email.
Williams was the general manager at Trenchant, which develops hacking and surveillance tools for the U.S. government and some of its top intelligence partners, including Australia, Canada, New Zealand and the United Kingdom; the so-called alliance of Five Eyes countries.
The Treasury did not respond to a series of questions related to today’s sanctions.
Along with taking action against Zelenyuk, the U.S. Treasury is sanctioning an affiliate company based in the United Arab Emirates called Special Technology Services; as well as Zelenyuk’s assistant, Marina Evgenyevna Vasanovich, and two people associated with the company, Azizjon Makhmudovich Mamashoyev, and Oleg Vyacheslavovich Kucherov, who have allegedly worked with Operation Zero.
Operation Zero, Special Technology Services, and Zelenyuk are being sanctioned in parallel under a 2022 federal law that allows the U.S. government to impose sanctions on someone who committed “significant thefts of trade secrets,” per the Treasury.
The Treasury says Kucherov, a Russian national, is suspected of being a member of the prolific ransomware gang Trickbot, whose alleged members were previously sanctioned by the U.S. and the United Kingdom.
Mamashoyev is allegedly the founder of Advance Security Solutions, another zero-day broker based in the UAE, which was also sanctioned today.
Advance Security Solutions launched last year, offering up to $20 million for zero-days that could help hack into any type of smartphone with a text message. The broker also offered high-paying bounties for hacking tools in popular software and hardware like Android devices, iPhones, Windows, and Chrome.
Operation Zero and Zelenyuk did not respond to a request for comment. Kucherov, Mamashoyev, and Vasanovich could not be immediately reached for comment.
When contacted by TechCrunch, a person operating an Advanced Security Solution’s chat account claimed without evidence that Mamashoyev is not the founder of the company.
Lorenzo Franceschi-Bicchierai is a Senior Writer at TechCrunch, where he covers hacking, cybersecurity, surveillance, and privacy.
You can contact or verify outreach from Lorenzo by emailing [email protected], via encrypted message at +1 917 257 1382 on Signal, and @lorenzofb on Keybase/Telegram.
如有侵权请联系:admin#unsafe.sh