A former cybersecurity executive has been ordered to pay $10 million in restitution to his former employer, L3Harris, following a massive security breach that compromised sensitive government hacking tools. Peter Williams, who previously served as the general manager of the company’s specialized division, Trenchant, was found responsible for the theft and sale of high-level surveillance technology. This latest financial penalty comes in addition to a previous $1.3 million order, marking a significant legal outcome for one of the most damaging leaks of trade secrets in the defense sector.

Williams, an Australian national and former intelligence official, admitted to stealing several trade secrets from Trenchant, which develops advanced cyber exploits for the U.S. government and its Five Eyes intelligence partners. He subsequently sold these tools to Operation Zero, a Russian broker known for facilitating the sale of digital exploits to the Russian government and local corporate entities. Prosecutors successfully argued that Williams leveraged his high-level access to siphon these tools, which were later identified in cyberattacks linked to Russian intelligence operations in Ukraine and activities by Chinese cybercriminals.

Beyond the theft of proprietary code, the investigation revealed that Williams attempted to shift blame onto a subordinate to cover his tracks. The illicit proceeds from his activities—totaling over $1 million—were used to fund a lavish lifestyle, including luxury real estate and high-end watches. While the defense contractor estimated total damages from the theft to be as high as $35 million, the judicial order for restitution serves as a stern rebuke for his betrayal, which officials noted placed millions of devices globally at risk of exploitation.

Williams is currently serving a sentence of more than seven years in federal prison for his role in the security compromise. The case remains a stark example of the insider threat risks facing the defense industry, as the stolen tools were sophisticated enough to compromise secure software vulnerabilities across international borders.