US cybersecurity professionals plead guilty to blackcat ransomware attacks

Dansk

Two US-based cybersecurity professionals have pleaded guilty to participating in Blackcat ransomware attacks. Ryan Clifford Goldberg and Kevin Tyler Martin face potential years in prison for their involvement.

In a significant development in cybersecurity crime, Ryan Clifford Goldberg and Kevin Tyler Martin, both described as US cybersecurity professionals, have admitted guilt in connection with attacks carried out by the Blackcat ransomware group. The pleas mark a key step in efforts to dismantle the operations of this notorious ransomware syndicate, which has targeted various organizations. According to reports, the duo's actions contributed to the group's disruptive activities, prompting federal charges that could result in lengthy prison sentences. Details of the case highlight ongoing challenges in combating insider threats within the cybersecurity field, where individuals with specialized knowledge allegedly turned to criminal endeavors. The Blackcat group, also known as ALPHV, has been linked to numerous high-profile incidents, though specifics of Goldberg and Martin's roles remain under legal proceedings. This case underscores the US government's commitment to prosecuting ransomware perpetrators, potentially deterring similar activities.

Relaterede artikler

U.S. authorities seize $15 billion in Bitcoin from Cambodian crypto scam, showing agents with evidence and wanted poster in a DOJ setting.
Billede genereret af AI

U.S. seizes $15 billion in bitcoin from Cambodian crypto scam

Rapporteret af AI Billede genereret af AI

Federal prosecutors have charged Chen Zhi, chairman of Cambodia's Prince Holding Group, with wire fraud and money laundering in a global cryptocurrency scam that exploited forced labor. The U.S. government seized bitcoin worth approximately $15 billion, marking the largest forfeiture action in Department of Justice history. Chen remains at large, facing up to 40 years in prison if convicted.

Russian cybercriminals release new ransomware

A notorious group of Russian cybercriminals has resurfaced with a new ransomware variant. However, security experts note that files encrypted by this malware can be easily decrypted.

Alleged Salt Typhoon hackers received Cisco training

Rapporteret af AI

Two individuals connected to China's Salt Typhoon hacking group reportedly underwent training at Cisco's networking academy. This revelation highlights potential vulnerabilities in global cybersecurity education programs. Separately, US lawmakers warn of inadequate safeguards in expanded wiretap authorities.

Crypto

South Korean appeals court jails crypto launderer for four years

Linux

Qilin ransomware deploys Linux binaries against Windows systems

Crypto

US seizes $15 billion in bitcoin from Cambodian pig butchering scam

Russian hackers use Linux VMs to hide malware on Windows

Pro-Russian hackers known as Curly COMrades are exploiting Microsoft's Hyper-V technology to embed lightweight Alpine Linux virtual machines within compromised Windows systems. This tactic allows them to run custom malware like CurlyShell and CurlCat undetected by traditional endpoint detection tools. The campaign, uncovered by Bitdefender in collaboration with the Georgian CERT, targets organizations in Europe and beyond.

Spanish police arrest five in crypto heist murder and kidnapping

Rapporteret af AI

Spanish authorities have arrested five individuals accused of murdering a man and kidnapping his partner during a cryptocurrency theft in southern Spain. The incident occurred in April, leading to the man's death and the woman's eventual release. Four others face charges in Denmark for related offenses.

New gentlemen's raas advertised on underground forums

Threat actor zeta88 is promoting a new ransomware-as-a-service operation called The Gentlemen's RaaS on hacking forums, targeting Windows, Linux, and ESXi systems. The platform offers affiliates 90 percent of ransom payments and features cross-platform encryption tools developed in Go and C. This development highlights the ongoing commercialization of sophisticated ransomware targeting enterprise environments.

North Korean hackers exploit maximum severity React2Shell flaw

Rapporteret af AI

North Korean hackers have begun exploiting a critical vulnerability known as React2Shell in malware attacks. This follows similar actions by Chinese hackers, indicating a growing interest in this security flaw. The issue poses significant risks to affected systems.

tirsdag d. 20. januar 2026, 09.23

Ransomware gang NightSpire claims Hyatt data breach

søndag d. 11. januar 2026, 06.09

26 Korean nationals arrested over sexual exploitation scam in Cambodia

torsdag d. 8. januar 2026, 09.42

Congressional staff emails hacked in Salt Typhoon campaign

fredag d. 2. januar 2026, 04.14

Delhi police bust cyber fraud syndicate linked to Bengal industrialist

fredag d. 26. december 2025, 23.28

Former Coinbase agent arrested in India over data breach

lørdag d. 20. december 2025, 14.04

Interior Ministry hacker suspect charged and remanded in pretrial detention

fredag d. 19. december 2025, 18.48

Brooklyn man indicted in $16 million crypto phishing scam

søndag d. 14. december 2025, 05.21

Update: Spanish Police Dismantle Transnational Crypto 'Wrench Attack' Ring

torsdag d. 6. november 2025, 13.48

Authorities arrest three more in ISIS-inspired plot tied to Detroit Halloween

tirsdag d. 4. november 2025, 23.53

Nine arrested in Europe over €600 million crypto scam

 

 

 

Dette websted bruger cookies

Vi bruger cookies til analyse for at forbedre vores side. Læs vores privatlivspolitik for mere information.
Afvis