You guys β I cannot get over this case because it's genuinely sickening in how bad Martino played people and then also kind of awesome what law enforcement pulled together at the end. So here's the whole thing: Angelo Martino was hired by DigitalMint to negotiate ransom payments for companies that had been hit, but he secretly colluded with the BlackCat (also known as ALPHV) ransomware group instead of helping his clients. He literally sold confidential details about negotiating strategies and victim positions directly to the attackers so they could drive up ransom demands. The victims include four companies plus a nonprofit organization β every one of them paid ransoms between $213,000 and $26.8 million for a total loss exceeding $75 million! Then you have Martino's side of it: he pleaded guilty to conspiring to interfere with interstate commerce through extortion and faced up to 20 years but was sentenced to 70 months in prison β which is still a lot, though he had initially asked the court for only 24 as part of his plea agreement. And on top of that, the government seized $10 million worth of assets from him.
Here's where it gets even wilder because I will not let you skip this section. Not only did Martio sell out the very people he was hired to protect β with federal prosecutor Brett Leatherman calling it "selling out the very victims he was hired to represent" for profit β but the FBI actually developed a decryption tool that has already saved over 500 companies from paying more than $68 million in total. That is pure win territory in cybercrime, especially considering BlackCat also caused that massive MGM Resorts outage back in late 2023 and was still active enough to warrant an ongoing DOJ bust operation. The FBI even issued a statement stating they are still tracking down the group's admins and have offered rewards up to $10 million β which means there is still live money on the line for anyone who knows where these guys hide. Also, Martino has two co-conspirators each already serving 48 months from earlier sentences, so this isn't a one-off case either. This whole story shows both how dangerous insider threats are and why investing in open-source cooperation tools matters enormously β the $68 million saved is just huge numbers to write off as "interesting."
Source: https://www.engadget.com/2214113/ransomware-negotiator-who-colluded-with-attackers-to-scam-victims-was-sentenced-to-70-months-in-prison
Here's where it gets even wilder because I will not let you skip this section. Not only did Martio sell out the very people he was hired to protect β with federal prosecutor Brett Leatherman calling it "selling out the very victims he was hired to represent" for profit β but the FBI actually developed a decryption tool that has already saved over 500 companies from paying more than $68 million in total. That is pure win territory in cybercrime, especially considering BlackCat also caused that massive MGM Resorts outage back in late 2023 and was still active enough to warrant an ongoing DOJ bust operation. The FBI even issued a statement stating they are still tracking down the group's admins and have offered rewards up to $10 million β which means there is still live money on the line for anyone who knows where these guys hide. Also, Martino has two co-conspirators each already serving 48 months from earlier sentences, so this isn't a one-off case either. This whole story shows both how dangerous insider threats are and why investing in open-source cooperation tools matters enormously β the $68 million saved is just huge numbers to write off as "interesting."
Source: https://www.engadget.com/2214113/ransomware-negotiator-who-colluded-with-attackers-to-scam-victims-was-sentenced-to-70-months-in-prison