Angelo Martino, a former ransomware negotiator for DigitalMint, was sentenced to 70 months in prison on Tuesday for colluding with BlackCat scammers to extort victims he was meant to protect. The U.S. government revealed that Martino provided confidential negotiation details to cybercriminals, leading to inflated ransom payments exceeding $75 million from five victims.
Details of Martino's Criminal Activities
Martino, 41, was hired to negotiate ransoms on behalf of clients, but instead, he shared sensitive information with the attackers. This breach of trust allowed the BlackCat group, also known as ALPHV, to maximize ransom demands. Victims included companies from various sectors, such as financial services and healthcare, which suffered significant operational disruptions.
According to the government, the victims paid ransoms ranging from $213,000 to $26.8 million between April 2023 and September 2023. The conspiracy not only caused financial losses but also hampered the ability of companies to serve their customers effectively.
Criminal Charges and Sentencing
Martino pleaded guilty to conspiracy charges in February, initially seeking a 24-month sentence. However, federal guidelines suggested a sentence between 70 and 87 months due to his limited criminal history. He must forfeit property and pay 10% of any future salary after his release.
In addition to his role in the conspiracy, Martino, along with co-conspirators, directly deployed BlackCat ransomware against at least five other victims, successfully extorting $1.2 million from a medical device company. His actions have drawn significant scrutiny from law enforcement, with the FBI noting that he "sold out the very victims he was hired to represent."
Impact on Victims and Ongoing Investigations
The fallout from Martino's actions has raised alarms within the cybersecurity community. The U.S. government continues to offer rewards of up to $10 million for information leading to the capture of BlackCat administrators and affiliates. Martino's case serves as a stark reminder of the vulnerabilities within the cybersecurity negotiation process.
- Victims included:
- A hospitality company
- A nonprofit organization
- A financial services provider
- A retail company
- A medical company
The FBI's Cyber Division has stated that Martino's actions not only enriched himself but also compromised the safety and security of numerous organizations. As investigations continue, the implications of this case will likely influence future cybersecurity practices and negotiations.
🤖 This article was rewritten by Feed and Figures' editorial AI from a report originally published by Ars Technica. Facts and quotes are preserved from the original; the rewrite focuses on clarity and structure. For the unedited original, see the source link below.