🟡 Medium | Source: The Hacker News
A former ransomware negotiator named Martino has been sentenced to 70 months in US federal prison for secretly colluding with the BlackCat ransomware gang to extort victims rather than genuinely negotiating on their behalf. He also conspired with two other cybersecurity professionals to target additional victims in 2023. The case highlights a significant insider threat risk within the incident response and negotiation industry.
Security Architect’s Take: When engaging third-party ransomware negotiators or incident response firms, conduct thorough due diligence including background checks, contractual liability clauses, and ensure all communications and negotiation activity are independently audited. Consider requiring transparency reports and dual-approval processes for any ransom-related decisions.
Original advisory: Ransomware Negotiator Gets 70 Months in Prison for Aiding BlackCat Attacks