IRIS C2 Vulnerability Broker Linked to Burkman and Wohl
A cybersecurity startup called IRIS C2 is advertising large payments for zero-day exploits and other offensive capabilities, according to its website and social media accounts. Public records and corp...
A cybersecurity startup called IRIS C2 is advertising large payments for zero-day exploits and other offensive capabilities, according to its website and social media accounts. Public records and corporate listings connect the operation to Calvexa Group LLC, a Virginia-registered company tied to political operatives Jack Burkman and Jacob Wohl.
What IRIS C2 says it wants to buy
IRIS C2 presents itself as a company focused on acquiring vulnerabilities and exploit components across major platforms. Posts on X and the company’s site say researchers can be paid anywhere from $10,000 to $7 million, depending on the target and the value of the finding. The company also says it is recruiting talent aggressively and is willing to consider applicants without formal credentials if they have strong technical ability.
The firm’s online presence has grown quickly since early 2025, and its LinkedIn and X accounts have been used to promote job openings and claims about incoming applications. A government contracting database identifies irisc2.com as being operated by Calvexa Group LLC, while Calvexa’s own website redirects visitors back to IRIS C2.
Background on the people linked to the company
An address listed in Calvexa’s incorporation records points to property occupied by Burkman, who referred questions about IRIS C2 to Wohl. Both men have previously faced criminal and civil penalties tied to election-related disinformation campaigns and financial misconduct allegations. Wohl has also been involved in earlier securities cases and guilty pleas related to selling unregistered securities.
- Public reports have described Burkman and Wohl as serial creators of false or misleading front companies.
- They previously promoted a now-defunct AI-based lobbying venture under pseudonyms.
- Wohl told KrebsOnSecurity that Burkman is not involved in IRIS C2’s daily operations.
In an interview, Wohl said IRIS C2 began as a penetration testing business before shifting toward government-facing offensive services. He also said the company has about 40 workers, though he declined to provide detailed information about contracts or staffing. The unusual pitch has drawn attention because the market for exploit purchasing is typically secretive, even among legitimate contractors.
