Former ransomware negotiator gets 4 years for BlackCat attacks

Summary

A former employee of DigitalMint, a cybersecurity incident response firm, has been sentenced to 70 months in prison for his involvement in BlackCat (ALPHV) ransomware attacks against U.S. companies. The individual acted as a ransomware negotiator, facilitating these attacks.

IFF Assessment

FOE

This case represents bad news for defenders as it highlights the infiltration of criminal elements within the cybersecurity incident response space, potentially aiding ransomware operations.

Defender Context

This incident underscores the importance of thorough vetting within cybersecurity firms and the risks associated with insider threats, even within companies ostensibly designed to help victims. Defenders should be aware of the potential for negotiated ransoms to be part of a larger criminal scheme, rather than a simple resolution.

Read Full Story →