Ethical Hacking News
Angelo Martino, 41, has pleaded guilty to his role in assisting the notorious ALPHV/BlackCat ransomware gang in extorting US businesses. The case highlights the vulnerability of companies with insider expertise to exploitation by malicious actors and serves as a cautionary tale for any individual involved in cybersecurity or incident response.
Angelo Martino, 41, has pleaded guilty to assisting the ALPHV/BlackCat ransomware gang in extorting US businesses. Martino confessed to feeding confidential information about his victims to the gang, resulting in financial gains for himself and co-conspirators. The case highlights the vulnerability of companies with insider expertise to exploitation by malicious actors. The ALPHV/BlackCat ransomware gang has been under intense scrutiny, and several high-ranking members have been arrested or charged with related crimes. The Department of Justice has seized assets worth over $10 million from Martino, including a food truck and luxury items purchased with proceeds of crime. Martino's guilty plea is seen as a significant development in the ongoing investigation into the ALPHV/BlackCat gang's activities. The case serves as a cautionary tale for individuals involved in cybersecurity or incident response, highlighting the need for robust internal controls and regular vetting processes.
In a shocking turn of events, Angelo Martino, 41, has pleaded guilty to his role in assisting the notorious ALPHV/BlackCat ransomware gang in extorting US businesses. This latest development marks the third former ransomware negotiator to plead guilty, following in the footsteps of two of their former colleagues who admitted to similar crimes just months prior.
As part of the plea deal, Martino confessed to feeding confidential information about his victims to the ALPHV/BlackCat gang, which helped them maximize their ransom payments. The court documents revealed that Martino's actions resulted in financial gains for himself and his co-conspirators, who were able to launder their illicit earnings through various means.
Martino's guilty plea comes as part of a broader crackdown on insider threats in the cybersecurity landscape. The case highlights the vulnerability of companies with insider expertise, particularly those involved in incident response and cyber security, to exploitation by malicious actors.
The ALPHV/BlackCat ransomware gang, once considered one of the most dominant forces in the world of ransomware, has been under intense scrutiny in recent months. Law enforcement agencies have made significant strides in disrupting their operations, and several high-ranking members have been arrested or charged with related crimes.
In this case, Martino's guilty plea is seen as a significant development in the ongoing investigation into the ALPHV/BlackCat gang's activities. The Department of Justice has already seized assets worth over $10 million from Martino alone, including a food truck, digital currency, and various luxury items purchased with the proceeds of crime.
The court's list of allegations against Martino paints a damning picture of his betrayal of trust. According to the documents, Martino financially benefited from passing on information about his victims' cyber insurance policy limits and details about how the negotiations were being perceived internally. He also admitted to joining his co-workers in deploying the ALPHV/BlackCat ransomware payload against multiple victims between April 2023 and November 2023.
The case against Martino is a stark reminder of the risks faced by companies with insider expertise. The fact that he was able to exploit his position for personal gain serves as a cautionary tale for any individual involved in cybersecurity or incident response. It highlights the need for robust internal controls, regular vetting processes, and effective monitoring to prevent such breaches.
The government's reaction to Martino's guilty plea is seen as a clear message that insider threats will not be tolerated. US Attorney Jason A. Reding QuiƱones stated, "Ransomware victims turned to this defendant for help, and he sold them out from the inside." He also emphasized that those who weaponize insider access and cybersecurity expertise against victims in South Florida or anywhere in the country will face prosecution.
As Martino's sentencing hearing approaches, his co-conspirators, Ryan Clifford Goldberg and Kevin Tyler Martin, who both pleaded guilty in December, await their turn. The three defendants face maximum prison sentences of 20 years each.
The case against Angelo Martino serves as a stark reminder of the importance of cybersecurity awareness and the need for robust internal controls to prevent such breaches. As the threat landscape continues to evolve, it is essential that companies prioritize their cybersecurity posture and invest in measures to protect themselves against insider threats.
In recent months, several high-profile cases have highlighted the risks faced by companies with insider expertise. The arrest of former REvil ransomware group members and the conviction of individuals involved in Wannacry-related activities demonstrate the government's commitment to holding those responsible for such crimes accountable.
As the cybersecurity landscape continues to evolve, it is crucial that companies prioritize their cybersecurity posture and invest in measures to protect themselves against insider threats. The case against Angelo Martino serves as a stark reminder of the risks faced by companies with insider expertise and the need for robust internal controls to prevent such breaches.
Related Information:
https://www.ethicalhackingnews.com/articles/The-Guilty-Plea-of-Angelo-Martino-A-Cautionary-Tale-of-Insider-Betrayal-in-the-Ransomware-Era-ehn.shtml
https://go.theregister.com/feed/www.theregister.com/2026/04/21/yet_another_ex_ransomware_negotiator_pleads/
https://www.theregister.com/2026/04/21/yet_another_ex_ransomware_negotiator_pleads/
https://cyberscoop.com/digitalmint-ransomware-negotiator-arrest-angelo-martino-extortion/
https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-353a
https://www.picussecurity.com/resource/blog/alphv-ransomware
https://en.wikipedia.org/wiki/BlackCat_(cyber_gang)
Published: Tue Apr 21 12:40:46 2026 by llama3.2 3B Q4_K_M
