{"id":207812,"date":"2026-05-01T10:20:00","date_gmt":"2026-05-01T14:20:00","guid":{"rendered":"https:\/\/testing.news-you-need.com\/index.php\/2026\/05\/01\/cyber-incident-responders-who-carried-out-ransomware-attacks-given-4-year-sentences\/"},"modified":"2026-05-01T13:35:14","modified_gmt":"2026-05-01T17:35:14","slug":"cyber-incident-responders-who-carried-out-ransomware-attacks-given-4-year-sentences","status":"publish","type":"post","link":"https:\/\/testing.news-you-need.com\/index.php\/2026\/05\/01\/cyber-incident-responders-who-carried-out-ransomware-attacks-given-4-year-sentences\/","title":{"rendered":"Cyber incident responders who carried out ransomware attacks given 4-year sentences"},"content":{"rendered":"<p><a href=\"https:\/\/therecord.media\/ransomware-cyber-incident-responders\">Cyber incident responders who carried out ransomware attacks given 4-year sentences<\/a><\/p>\n<p><a href=\"https:\/\/therecord.media\/ransomware-cyber-incident-responders\">https:\/\/therecord.media\/ransomware-cyber-incident-responders<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-05-01 10:20:00<\/a><\/p>\n<p>Source Domain: <a href=\"therecord.media\">therecord.media<\/a><\/p>\n<p>Author: <a href=\"\"><\/a><\/p>\n<p> Using an unordered list, summarize the following article with between 4 and 8 key points.  Two cybersecurity incident responders were sentenced to four years in prison for conducting covert ransomware attacks.  Ryan Goldberg, 40, and Kevin Martin, 36, each pleaded guilty in December to one count of conspiracy to obstruct commerce by extortion and were facing up to 20 years in prison.\u00a0  Goldberg worked for incident response firm Sygnia and Martin was a ransomware negotiator for DigitalMint.  Prosecutors said the two worked alongside another co-conspirator, now identified as Angelo Martino, to launch ALPHV\/BlackCat ransomware attacks between April and December 2023 \u2014 abusing their cyber incident response positions to extort victims.\u00a0  The three launched several attacks but only successfully extorted one company, earning $1.2 million from the incident.\u00a0  Assistant Attorney General Andrew Tysen Duva said the men harmed important companies that were providing critical services and \u201cplayed hardball with them, going so far as to cause the leak of patient data from a doctor\u2019s office victim.\u201d\u00a0  \u201cThese were supposed to be cybersecurity specialists who did good and helped businesses and people,\u201d Duva said.  FBI Assistant Director Brett Leatherman said the FBI had to track Goldberg through 10 countries after he fled abroad before his arrest.\u00a0  The sentences come one week after Martino pleaded guilty to the same charge. He stood out among the three because, on top of carrying out attacks with Goldberg and Martin, he coordinated with ransomware gangs while purportedly negotiating ransoms on behalf of five victims.\u00a0  Ransomware gangs paid him a fee for confidential information about victim companies and he helped cybercriminals obtain the largest ransom possible by notifying them of the victims\u2019 insurance policy limits. Several of the ransoms he negotiated were massive, with some reaching as much as $26 million. Law enforcement seized about $10 million worth of assets from Martino.\u00a0  He will be sentenced on July 9 and is facing 20 years in prison.\u00a0\u00a0  DigitalMint, the company that employed Martino and Martin, instituted several new controls that mandate all negotiations be conducted over cloud-based platforms that can be audited and logged. One of the company\u2019s founders will now personally oversee all negotiations. Ransom negotiators at DigitalMint will also have their information given to the Department of Homeland Security for oversight.\u00a0 Get more insights with the Recorded FutureIntelligence Cloud.Learn more.<br \/><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Cyber incident responders who carried out ransomware attacks given 4-year sentences https:\/\/therecord.media\/ransomware-cyber-incident-responders Publish Date: 2026-05-01&#8230;<\/p>\n","protected":false},"author":1,"featured_media":207813,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/cms.therecord.media\/uploads\/doj_fce07455a8.jpg","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[24],"class_list":["post-207812","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-cybersecurity"],"_links":{"self":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/207812"}],"collection":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=207812"}],"version-history":[{"count":1,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/207812\/revisions"}],"predecessor-version":[{"id":207814,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/207812\/revisions\/207814"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/207813"}],"wp:attachment":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=207812"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=207812"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=207812"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}