US EditionEx-Cybersecurity Staffers Charged with Moonlighting as Hackers
Two cybersecurity employees conspired with ALPHV/BlackCat ransomware gang to extort over $1.2 million from five U.S. companies in healthcare, engineering, and drone manufacturing.
- On Oct. 2, federal prosecutors indicted Ryan Clifford Goldberg and Kevin Tyler Martin for conspiring with an unnamed co-conspirator to deploy ALPHV/BlackCat ransomware in extortion schemes.
- Beginning in May 2023 the scheme ran through April 2025, with Goldberg confessing June 17 he was recruited to ransom companies and acted to get out of debt using an ALPHV/BlackCat affiliate account.
- They demanded $10 million and one victim paid $1.2 million; Goldberg, Martin and a co-conspirator received nearly $1.3 million in May 2023, with Goldberg earning $200,000, prosecutors allege.
- Both employees were fired by DigitalMint and Sygnia and face up to 50 years in federal prison.
- As a ransomware-as-a-service affiliate operation, prosecutors say the ALPHV/BlackCat gang exploited its model, with insider cybersecurity employees allegedly attacking, linked to last year’s $22 million Change Healthcare breach affecting about 190 million people.
12 Articles
12 Articles
The spokesman-Review
The HinduU.S. prosecutors say cybersecurity pros ran cybercrime operation
WASHINGTON - Prosecutors said three American cybersecurity professionals secretly ran a ransomware operation aimed at shaking down companies across the United States.
Prosecutors allege incident response pros used ALPHV/BlackCat to commit string of ransomware attacks
Federal prosecutors allege that three cybersecurity professionals, whose job was to help companies respond to ransomware attacks, instead carried out their own ransomware schemes against five U.S. businesses in 2023. Ryan Clifford Goldberg, Kevin Tyler Martin and an unnamed co–conspirator — all U.S. nationals — began using ALPHV, also known as BlackCat, ransomware to attack companies in May 2023, according to indictments and other court document…
Ransomware Defense Using the Wazuh Open Source Platform
Ransomware is malicious software designed to block access to a computer system or encrypt data until a ransom is paid. This cyberattack is one of the most prevalent and damaging threats in the digital landscape, affecting individuals, businesses, and critical infrastructure worldwide. A ransomware attack typically begins when the malware infiltrates a system through various vectors such as This article has been indexed from The Hacker News Rea…
Coverage Details
Bias Distribution
- 50% of the sources lean Left, 50% of the sources are Center
Factuality
To view factuality data please Upgrade to Premium
