Angelo Martino, a former ransomware negotiator, has pleaded guilty to assisting cybercriminals in extorting companies across five separate cyberattacks, according to the US Department of Justice.
Martino's guilty plea represents a significant case of insider collaboration in ransomware operations. His role as a negotiator—typically hired by companies to communicate with hackers—positioned him with critical knowledge of victim vulnerabilities and negotiation tactics.
The charges span five distinct incidents where Martino allegedly provided assistance to cybercriminals conducting extortion schemes. By leveraging his expertise in ransom negotiations and understanding of how companies respond to attacks, Martino reportedly facilitated more effective extortion campaigns.
The case underscores growing concerns about insider threats in cybersecurity. Professionals with access to sensitive negotiation details and victim information represent a high-risk vulnerability that organizations must address through vetting and monitoring.
Martino's prosecution follows increased DOJ focus on ransomware operations and the networks supporting them. Federal authorities have intensified efforts to prosecute not only the hackers executing attacks but also facilitators and intermediaries enabling criminal enterprises.
Federal prosecutors have unsealed a 2024 indictment charging three Russian nationals and two web hosting services with facilitating cyberattacks and money laundering that victimized cybercrime targets of $62 million.
A hacker accessed Suno's source code using stolen employee credentials, revealing that the AI music generator scraped decades of audio from YouTube to train its model.
Criminals can now clone voices with AI in mere seconds, outpacing traditional authentication defenses that banks and financial institutions rely on to prevent fraud.
Five malicious versions of AsyncAPI packages were published to npm, delivering a remote access trojan capable of stealing credentials and sensitive data from developer systems.