{"id":174750,"date":"2026-01-05T14:21:00","date_gmt":"2026-01-05T19:21:00","guid":{"rendered":"https:\/\/testing.news-you-need.com\/index.php\/2026\/01\/05\/us-cyber-pros-plead-guilty-over-ransomware-activity\/"},"modified":"2026-01-05T17:05:08","modified_gmt":"2026-01-05T22:05:08","slug":"us-cyber-pros-plead-guilty-over-ransomware-activity","status":"publish","type":"post","link":"https:\/\/testing.news-you-need.com\/index.php\/2026\/01\/05\/us-cyber-pros-plead-guilty-over-ransomware-activity\/","title":{"rendered":"US Cyber Pros Plead Guilty Over Ransomware Activity"},"content":{"rendered":"<p><a href=\"https:\/\/www.darkreading.com\/cyber-risk\/us-cyber-pros-plead-guilty-over-ransomware-activity\">US Cyber Pros Plead Guilty Over Ransomware Activity<\/a><\/p>\n<p><a href=\"https:\/\/www.darkreading.com\/cyber-risk\/us-cyber-pros-plead-guilty-over-ransomware-activity\">https:\/\/www.darkreading.com\/cyber-risk\/us-cyber-pros-plead-guilty-over-ransomware-activity<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-01-05 14:21:00<\/a><\/p>\n<p>Source Domain: <a href=\"www.darkreading.com\">www.darkreading.com<\/a><\/p>\n<p>Author: <a href=\"\"><\/a><\/p>\n<p> Using an unordered list, summarize the following article with between 4 and 8 key points. Two US-based cybersecurity professionals have pleaded guilty to their involvement in ransomware activity tied to the infamous ALPHV\/BlackCat ransomware gang.The BlackCat gang spun up as a prolific ransomware-as-a-service (RaaS) outfit in the early 2020s, targeting more than 1,000 victims before the Department of Justice critically disrupted it in late 2023. Despite this, ALPHV (or rather, an affiliate and splintered remnants) carried out the infamous attack against Change Healthcare in early 2024.\u00a0On Dec. 29, a federal district court in Florida accepted the guilty pleas of Ryan Goldberg, 40, of Georgia, and Kevin Martin, 36, of Texas. News came out in early November that they, alongside an unnamed third coconspirator, &#8220;successfully deployed the ransomware known as ALPHV\/BlackCat between April 2023 and December 2023 against multiple victims located throughout the United States,&#8221; a Department of Justice (DoJ) press release read.\u00a0&#8220;All three men worked in the cybersecurity industry \u2014 meaning that they had special skills and experience in securing computer systems against harm, including the type of harm they themselves were committing against the victims in this case,&#8221; according to the DoJ. &#8220;After successfully extorting one victim for approximately $1.2 million in Bitcoin, the men split their 80% share of this ransom three ways and laundered the funds through various means.&#8221;Related:CTO New Year&#8217;s Resolutions for a More Secure 20263 US Cyber Pros Get Into RansomwareThe three men joined ALPHV\/BlackCat as affiliates and gave admins a 20% share of ransoms received in exchange for using the gang&#8217;s ransomware and infrastructure, according to the charges.What is perhaps most notable about the three is that they were all cybersecurity professionals. Martin and the unnamed third coconspirator previously worked for Chicago-based incident response firm DigitalMint, while Goldberg had been employed by Israeli cybersecurity firm Sygnia.\u00a0A spokesperson for DigitalMint tells Dark Reading that its former employees &#8220;acted wholly outside the scope of their employment and without any authorization, knowledge, or involvement from the company.&#8221; The spokesperson also says the employees had previously been terminated from the company.&#8221;The alleged misconduct is a direct violation of our company&#8217;s ethical standards, and not representative of the company\u2019s overall operations or values,&#8221; the spokesperson says. &#8220;DigitalMint has been and remains in full cooperation with the Department of Justice throughout its investigation. From inception, we have always remained dedicated to ensuring accountability for those who violate the law.&#8221;Related:Sunken Ships: Will Orgs Learn From Ivanti EPMM Attacks?Similarly, Sygnia tells Dark Reading that it&#8217;s &#8220;glad to see this case come to a close,&#8221; and that it fully cooperated with law enforcement. Based on its own investigation and its experience with law enforcement, Sygnia &#8220;can confirm that the defendant acted on his own and that Sygnia clients were not affected by the actions of the defendant.&#8221;Ransomware Conviction Fallout Could Include Decades in PrisonUS citizens (especially, in this case, professionals) turning cybercriminal is often startling to see, but unfortunately is far from unheard of. US-based individuals have been charged over everything from assisting North Korea IT worker fraud to running a Dark Web cybercrime forum.\u00a0Law enforcement continues to act, though. Last month, a Ukrainian national, Artem Stryzhak, pleaded guilty in a Brooklyn federal court for his role in conducting Netfilm ransomware attacks. He faces up to 10 years&#8217; imprisonment.In the case of Goldberg and Martin, the pair each pled guilty to one count of conspiracy to obstruct, delay or affect commerce or the movement of any article or commodity in commerce by extortion. They will be sentenced on March 12 and face a potential maximum penalty of 20 years in prison.\u00a0Related:Cybersecurity Predictions 2026: An AI Arms Race and Malware Autonomy<br \/><\/p>\n","protected":false},"excerpt":{"rendered":"<p>US Cyber Pros Plead Guilty Over Ransomware Activity https:\/\/www.darkreading.com\/cyber-risk\/us-cyber-pros-plead-guilty-over-ransomware-activity Publish Date: 2026-01-05 14:21:00 Source Domain:&#8230;<\/p>\n","protected":false},"author":1,"featured_media":174751,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/eu-images.contentstack.com\/v3\/assets\/blt6d90778a997de1cd\/blt38febbd3246ee36d\/695c0f9054ef4a5eacc1dfc2\/panther-Harvey_Wood-alamy.jpg?disable=upscale&width=1200&height=630&fit=crop","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[26,24,32],"class_list":["post-174750","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-ai","tag-cybersecurity","tag-malware"],"_links":{"self":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/174750"}],"collection":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=174750"}],"version-history":[{"count":1,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/174750\/revisions"}],"predecessor-version":[{"id":174752,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/174750\/revisions\/174752"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/174751"}],"wp:attachment":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=174750"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=174750"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=174750"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}