:

CYBERSECURITY STARTUP RUN BY CONVICTED FELONS

SECURITY DESK1 MIN READ
WED, JUL 8, 2026

■ AI-SUMMARIZED FROM 1 SOURCE ▸ TIMELINE

A vulnerability acquisition startup offering millions for zero-day exploits is operated by convicted felons with ties to far-right conspiracy theories, according to reports. The founders previously ran fake intelligence companies and an AI lobbying platform under assumed identities.

The startup sources security vulnerabilities in widely-used software, a practice that exists in a gray area of the cybersecurity industry. However, the backgrounds of its operators raise significant concerns about how acquired vulnerabilities might be used. The founders' prior ventures operated under false identities and included entities misrepresenting themselves as intelligence agencies. Their involvement in conspiracy theory circles adds another layer of scrutiny to the operation. Zero-day vulnerability markets have drawn regulatory attention in recent years, with policymakers debating whether such transactions should be restricted or regulated. The U.S. government has expressed concerns about exploits potentially reaching malicious actors. The startup's operational status and any regulatory response remain unclear at this time.

■ SOURCES

Krebs on Security

■ SUMMARY WRITTEN BY AI FROM THE LINKS ABOVE

■ MORE FROM THE SECURITY DESK

U.S. federal prosecutors have unsealed charges against three Russian nationals accused of operating a bulletproof hosting service that supported ransomware gangs responsible for over $62 million in damages worldwide.

3H AGOIndustry Desk

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) warned that attackers are actively exploiting three vulnerabilities in Internet-exposed on-premises SharePoint Server instances. Organizations running affected versions must patch immediately.

3H AGOSecurity Desk

Tailscale disclosed a critical vulnerability in its SSH implementation that allowed attackers to gain root access through insecure argument handling. The flaw has been patched in recent versions.

6H AGOAI Desk

A new study found that social media platforms referred over 5.7 million visits to nonconsensual deepfake pornography sites between December 2025 and March 2026, with YouTube and X accounting for the majority of traffic.

8H AGOIndustry Desk

■ SUBSCRIBE TO THE DAILY BRIEF

ONE EMAIL, 5 STORIES, 06:00 UTC. UNSUBSCRIBE ANYTIME.