[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fcQPgoz900YldkLANSQF80fhsy_xMfHK0ws6RE3NiCHA":3},{"article":4,"iocs":48},{"id":5,"title":6,"slug":7,"summary":8,"ai_summary":9,"brief":10,"full_text":11,"url":12,"image_url":13,"published_at":14,"ingested_at":15,"relevance_score":16,"entities":17,"category_id":27,"category":28,"article_tags":32},"16445842-f60b-40fd-858e-5c6131c52a70","Third US Security Expert Sentenced to Prison for Helping Ransomware Gang","third-us-security-expert-sentenced-to-prison-for-helping-ransomware-gang-3b9499","Angelo Martino, a former ransomware negotiator, was sentenced to 70 months for helping the BlackCat\u002FAlphv group. The post Third US Security Expert Sentenced to Prison for Helping Ransomware Gang appeared first on SecurityWeek.","Angelo Martino, a former ransomware negotiator, was sentenced to 70 months in prison for helping the BlackCat\u002FAlphv ransomware group extort at least five victims while employed at a cybersecurity firm. He was the third US cybersecurity expert prosecuted for this crime, joining Kevin Martin and Ryan Goldberg who each received 4-year sentences. Authorities seized $10 million in assets from Martino, and the BlackCat group ultimately disrupted after targeting over 1,000 organizations between 2021 and December 2023.","US security expert Angelo Martino sentenced to 70 months for aiding BlackCat\u002FAlphv ransomware gang.","Another cybersecurity expert from the United States, accused of helping a cybercrime gang while working as a ransomware negotiator, has been sentenced to prison. Angelo Martino, 41, of Florida, was sentenced on Thursday to 70 months in prison after he pleaded guilty in April. Martino is one of the three individuals charged by US authorities last year over their role in ransomware attacks. The three men worked at cybersecurity firms, and two of them served as ransomware negotiators tasked with helping victims, but instead they helped the threat actors in return for a share of the ransom. The other two suspects, Kevin Martin from Texas and Ryan Goldberg from Georgia, were each sentenced to 4 years in prison in late April. According to investigators, Martino began working with BlackCat\u002FAlphv ransomware operators in April 2023 and helped the hackers extort at least five victims. The DOJ said Martino was paid by BlackCat to “provide confidential information about the negotiating position and strategy of his employer’s clients and enable the ransomware actors to maximize the ransoms paid by the victims”.Advertisement. Scroll to continue reading. Authorities seized $10 million worth of assets from Martino, including cryptocurrency, vehicles, a food truck, and a fishing boat. Martino will also have to pay restitution, but the amount will be determined in a hearing scheduled for September. Over 1,000 organizations were targeted in BlackCat ransomware attacks between 2021 and December 2023, when the criminal enterprise was disrupted. A few months later, the hackers received a $22 million ransom from a victim and pulled an exit scam. The US has been offering $10 million for information leading to the identification of key members of the group. Related: County Government Reportedly Paid $1 Million to Cyber Extortion Group Related: Alleged Scattered Spider Hacker Extradited to US Related: Google, FBI Disrupt NetNut Residential Proxy Network Powered by Millions of Devices Written By Eduard Kovacs Eduard Kovacs (@EduardKovacs) is senior managing editor at SecurityWeek. He worked as a high school IT teacher before starting a career in journalism in 2011. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering. Daily Briefing Newsletter Subscribe to the SecurityWeek Email Briefing for the latest cybersecurity threats, trends, and expert insights. More from Eduard Kovacs Microsoft Patches Defender ‘RoguePlanet’ VulnerabilityAI Coding Tools Tricked Into Hacking Developer Machine via Decades-Old TechniqueGoogle Patches 382 Chrome VulnerabilitiesBlueHammer Vulnerability Exploited in Ransomware AttacksNissan Employee Data Breached in Oracle PeopleSoft HackNew Controller Flaws Expose Highway Signs and Billboards to Remote HackingWhatsApp Rolling Out Username Feature to Bolster Phone Number PrivacyInsurance Regulators Group NAIC Hit in Oracle PeopleSoft Hack Latest News China, India-Linked Hackers Both Targeted Same Pakistani Police ForceOkta Warns of Vishing Attacks Targeting Microsoft 365 CustomersGigaWiper Combines Multiple Malware for System-Level Sabotage‘HalluSquatting’ Turns AI Hallucinations Into Botnet Delivery MechanismNetwork of 200 GitHub Repositories Used for Malware InfectionQIZ Security Raises $17 Million for Cryptographic Governance PlatformUK Government Rolls Out Agentic AI Defense Plan Alongside Industry PledgePalo Alto Networks Patches 13 Vulnerabilities Trending Daily Briefing NewsletterSubscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts. Webinar: Why Email Security Keeps Failing (And What Has to Change) July 8, 2026 Join this live webinar as we break down why email-layer defenses alone can't keep pace with the modern phishing ecosystem, how agentic AI is changing the capacity equation for security teams, and more. Register Virtual Event: 2026 Cloud Security Summit July 16, 2026 This year's summit will help organizations learn how to utilize tools, controls, and design models needed to properly secure cloud environments. Interact with leading solution providers and other end users facing similar challenges in securing a variety of cloud deployments. Register People on the MoveBlueVoyant has appointed Ravi Subramanian as CFO and Jamie Coleman as CCO.Solana Foundation has appointed Michael Coates as Chief Information Security Officer.Michael Sikorski has joined Coinbase as Chief Information Security Officer.More People On The MoveExpert Insights The Shift Toward Business-Aligned Risk Management Moving from isolated, technical data to a continuous risk lifecycle can help organizations align security controls with actual business consequences. (Steve Durbin) How to Conduct a Successful Audit of AI-Driven Software Development As AI-generated code becomes commonplace, CISOs need new audit strategies to measure developer practices, govern AI tool usage, and identify software risks before they reach production. (Matias Madou) Frontier AI: Six Questions Every Enterprise Should Ask Security Vendors From model selection and automation to validation and measurable results, the right questions can help enterprises separate genuine AI capabilities from marketing hype. (Joshua Goldfarb) The AI Token Costs That Can Break Cybersecurity As cybersecurity platforms embrace agentic AI, organizations must balance detection performance against the escalating costs of token consumption, deployment architecture, and AI credits. (Danelle Au) When Information Becomes the Attack Surface – Understanding AI Agent Traps From hidden content injections to cognitive state poisoning, attackers are turning trusted data sources into traps for autonomous AI. (Etay Maor) Flipboard Reddit Whatsapp Whatsapp Email","https:\u002F\u002Fwww.securityweek.com\u002Fthird-us-security-expert-sentenced-to-prison-for-helping-ransomware-gang\u002F","https:\u002F\u002Fwww.securityweek.com\u002Fwp-content\u002Fuploads\u002F2024\u002F03\u002Fhacker-sentenced-prison.jpeg","2026-07-10T12:58:39+00:00","2026-07-10T14:00:21.275654+00:00",8,[18,21,23,25],{"name":19,"type":20},"BlackCat\u002FAlphv","threat_actor",{"name":22,"type":20},"Angelo Martino",{"name":24,"type":20},"Kevin Martin",{"name":26,"type":20},"Ryan Goldberg","7d8b5ab8-ea0b-4ced-ae97-ec251b86993a",{"id":27,"icon":29,"name":30,"slug":31},null,"Ransomware","ransomware",[33,38,43],{"category":34},{"id":35,"icon":29,"name":36,"slug":37},"2e06f76c-d5b9-4f54-9eef-4d3447b10730","Breaches","breaches",{"category":39},{"id":40,"icon":29,"name":41,"slug":42},"c5c77cdb-f7d7-4990-9436-c81dcbff1163","Policy","policy",{"category":44},{"id":45,"icon":29,"name":46,"slug":47},"e7b231c8-5f79-4465-8d38-1ef13aea5a14","Threat Intelligence","threat-intelligence",[49],{"type":50,"value":19,"context":51},"malware","Ransomware-as-a-service group that targeted over 1,000 organizations; operators received assistance from insider security experts"]