{"id":208494,"date":"2026-05-04T08:42:00","date_gmt":"2026-05-04T12:42:00","guid":{"rendered":"https:\/\/testing.news-you-need.com\/index.php\/2026\/05\/04\/four-years-in-prison-for-cybersecurity-pros-turned-ransomware-attackers\/"},"modified":"2026-05-04T09:50:13","modified_gmt":"2026-05-04T13:50:13","slug":"four-years-in-prison-for-cybersecurity-pros-turned-ransomware-attackers","status":"publish","type":"post","link":"https:\/\/testing.news-you-need.com\/index.php\/2026\/05\/04\/four-years-in-prison-for-cybersecurity-pros-turned-ransomware-attackers\/","title":{"rendered":"Four Years in Prison for Cybersecurity Pros Turned Ransomware Attackers"},"content":{"rendered":"<p><a href=\"https:\/\/www.bitdefender.com\/en-us\/blog\/hotforsecurity\/four-years-in-prison-for-cybersecurity-pros-turned-ransomware-attackers\">Four Years in Prison for Cybersecurity Pros Turned Ransomware Attackers<\/a><\/p>\n<p><a href=\"https:\/\/www.bitdefender.com\/en-us\/blog\/hotforsecurity\/four-years-in-prison-for-cybersecurity-pros-turned-ransomware-attackers\">https:\/\/www.bitdefender.com\/en-us\/blog\/hotforsecurity\/four-years-in-prison-for-cybersecurity-pros-turned-ransomware-attackers<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-05-04 08:42:00<\/a><\/p>\n<p>Source Domain: <a href=\"www.bitdefender.com\">www.bitdefender.com<\/a><\/p>\n<p>Author: <a href=\"\"><\/a><\/p>\n<p> Using an unordered list, summarize the following article with between 4 and 8 key points. Two former cybersecurity professionals who used their insider knowledge to carry out ransomware attacks will serve four years in prison.Key takeaways<\/p>\n<p>Two U.S. cybersecurity professionals were sentenced to four years in prison for BlackCat ransomware attacks<br \/>\nThe attackers were trusted industry insiders, including an incident responder and a ransom negotiator<br \/>\nThey operated as affiliates in a ransomware-as-a-service (RaaS) scheme, sharing profits with the ALPHV\/BlackCat gang<br \/>\nAt least one victim paid $1.2 million in Bitcoin, which was later laundered<br \/>\nA third co-conspirator is still awaiting sentencing<\/p>\n<p>From defenders to attackersThe U.S. Department of Justice announced that Ryan Goldberg, 40, and Kevin Martin, 36, were sentenced to four years in prison each for their role in ransomware attacks carried out in 2023.The two weren\u2019t typical cybercriminals. Both worked in cybersecurity roles at the time\u2014positions designed to helping organizations respond to exactly this type of threat.Goldberg served as an incident response manager, while Martin worked as a ransomware negotiator\u2014placing them in direct contact with victims during high-stakes breaches.Instead of protecting organizations, they leveraged that expertise to attack them.According to court documents, the pair partnered with the ALPHV\/BlackCat ransomware group, one of the most notorious ransomware-as-a-service (RaaS) operations.Their arrangement followed a familiar RaaS model:They gained access to the ransomware platform and infrastructureIn return, they paid 20% of ransom proceeds to the operatorsThey handled the actual intrusions, encryption, and extortionBetween April and December 2023, the group targeted multiple U.S. organizations across sectors. In at least one case, they extorted $1.2 million in Bitcoin, which they later split and laundered.The broader ALPHV\/BlackCat operation targeted over 1,000 victims worldwide, making it one of the most harmful ransomware groups of recent years, the US Department of Justice said in a press release:According to court documents, ALPHV BlackCat targeted the computer networks of more than 1,000 victims around the world. The group used a ransomware-as-a-service model in which developers were responsible for creating and updating ransomware and for maintaining the illicit internet infrastructure. Affiliates were responsible for identifying and attacking high-value victim institutions with the ransomware. After a victim paid, developers and affiliates shared the ransom.Abuse of trust at the worst possible momentWhat makes this case particularly troubling is the attackers\u2019 access to sensitive information. One co-conspirator, Angelo Martino, 41, of Florida,\u00a0who is still awaiting sentencing, allegedly used his role as a ransomware negotiator to share confidential victim data with attackers, increasing pressure on victims to pay.As reported last month, between April and November 2023, Martino acted as a negotiator for multiple ransomware victims. During that time, he allegedly\u00a0leaked highly sensitive information to the attackers, including insurance coverage limits and internal negotiation strategies.In a statement, Assistant Attorney General A. Tysen Duva of the Justice Department\u2019s Criminal Division emphasized the betrayal:These were supposed to be cybersecurity specialists who did good and helped businesses and people. Instead, they used their high-level cyber skills to feed their greed. This isn\u2019t just cybercrime\u2014it\u2019s a breakdown of trust within the cybersecurity ecosystem itself.This intelligence allegedly allowed the operation to fine-tune its demands and extract higher ransoms. In some cases, Martino allegedly participated in the actual deployment of malware onto victim\u2019s computer networks.Guilty pleasIn December 2025, Goldberg and Martin each\u00a0pleaded guilty\u00a0to one count of conspiracy to obstruct, delay or affect commerce or the movement of any article or commodity in commerce by extortion.Last month, co-conspirator Angelo Martino also\u00a0pleaded guilty\u00a0to his role in the conspiracy.\u201cIn addition to conspiring with Goldberg and Martin to attack victims with ransomware, Martino also abused his role as a negotiator for victims of ransomware by sharing confidential victim information with threat actors to increase the value of the ransom paid,\u201d the DOJ said.Because of his deeper involvement in the scheme, Martino could face a higher sentence. His sentencing is set for July 9.The sentencing follows broader efforts by U.S. authorities to disrupt BlackCat. In 2023, the FBI seized infrastructure and released a decryption tool that helped victims recover systems and avoid an estimated $99 million in ransom payments.You may also like to read:Ransomware \u2018Negotiator\u2019 Faces 20 Years in Prison for Allegedly Betraying His EmployersGlobal Scam Crackdown: 276 Arrested, Crypto Fraud Networks DismantledFBI: Cybercrime Losses Hit a Record $21 Billion Last Year, Fueled by AI<br \/><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Four Years in Prison for Cybersecurity Pros Turned Ransomware Attackers https:\/\/www.bitdefender.com\/en-us\/blog\/hotforsecurity\/four-years-in-prison-for-cybersecurity-pros-turned-ransomware-attackers Publish Date: 2026-05-04 08:42:00&#8230;<\/p>\n","protected":false},"author":1,"featured_media":208495,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/blogapp.bitdefender.com\/hotforsecurity\/content\/images\/2026\/05\/ransomware-negotiator-prison-header.png","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[26,24,32],"class_list":["post-208494","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-ai","tag-cybersecurity","tag-malware"],"_links":{"self":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/208494"}],"collection":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=208494"}],"version-history":[{"count":1,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/208494\/revisions"}],"predecessor-version":[{"id":208496,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/208494\/revisions\/208496"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/208495"}],"wp:attachment":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=208494"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=208494"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=208494"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}