A former ransomware negotiator has received a 70-month prison sentence for helping target U.S. organizations in BlackCat ransomware attacks.
Angelo Martino previously worked for incident response company DigitalMint. Prosecutors say he joined ransomware operations while also handling negotiations for victims.
The scheme involved two other former negotiators. All three admitted taking part in BlackCat, also known as ALPHV, ransomware campaigns.
BlackCat Ransomware Attacks Targeted U.S. Companies
The FBI has linked BlackCat to more than 60 breaches between November 2021 and March 2022.
Authorities later said the group collected at least $300 million from more than 1,000 victims. Those payments were recorded through September 2023.
Martino, 41, pleaded guilty to his role in several attacks. He worked with Kevin Tyler Martin, 28, and Ryan Clifford Goldberg, 33.
Both men also worked as ransomware negotiators. They pleaded guilty in December to conspiracy to obstruct commerce through extortion.
Martin and Goldberg each received four-year prison sentences in May.
Martino Operated as a BlackCat Affiliate
Martino first appeared as “Co-Conspirator 1” in an indictment filed in October 2025.
Court documents unsealed in March later identified him by name.
According to prosecutors, Martino worked with Goldberg and Martin between April 2023 and April 2025.
The three operated as BlackCat affiliates. They stole data, encrypted systems, and demanded ransom payments.
They also threatened to publish stolen information if victims refused to pay.
In return for access to BlackCat’s ransomware tools and extortion portal, they paid the gang’s administrators 20% of all ransom proceeds.
Negotiator Shared Confidential Victim Data
Prosecutors say Martino also abused his position as a ransomware negotiator.
While representing five victims, he allegedly shared confidential details with BlackCat operators.
That information included insurance policy limits and negotiation strategies.
The data helped attackers calculate how much each victim could afford to pay. It also strengthened their position during ransom talks.
Victims Paid Millions in Ransoms
The group targeted at least five U.S. organizations.
One financial services company paid a ransom of $25.66 million. A nonprofit organization paid $26.793 million.
Other victims included school districts, medical facilities, law firms, and financial services companies.
The case shows how insider access can strengthen ransomware operations. It also highlights the damage caused when trusted negotiators work with attackers.
DigitalMint Condemns Former Employees
DigitalMint CEO Jonathan Solomon previously condemned the conduct.
He said the company fired Martin and Martino as soon as it discovered their actions.
Solomon added that their behavior violated the company’s values, ethical standards, and the law.
The sentences close another chapter in the investigation into BlackCat ransomware attacks. However, the case also raises wider concerns about trust in ransomware response services.


0 responses to “Former Ransomware Negotiator Jailed for BlackCat Attacks”