Two Ex-Cybersecurity Pros Get 4-Year Prison Terms for BlackCat Ransomware Scheme

Anuj May 2, 2026
www.news4hackers.com-two-ex-cybersecurity-pros-get-4-year-prison-terms-for-blackcat-ransomware-scheme-two-ex-cybersecurity-pros-get-4-year-prison-terms-for-blackcat-ransomware-scheme
Post Views: 126

Former Cybersecurity Professionals Convicted of Assisting BlackCat Ransomware Attacks

The US Department of Justice has announced the sentencing of two former cybersecurity experts to four years in prison each for their role in assisting BlackCat ransomware attacks against US organizations.

  • The convicted individuals, who previously worked at incident response and ransomware negotiation firms, used their specialized knowledge to support extortion operations, resulting in multimillion-dollar ransom demands on victims.
  • Between May 2023 and November 2023, the pair participated as affiliates of the BlackCat ransomware operation, gaining access to the group’s infrastructure and extortion platform in exchange for a 20% share of ransom payments.
  • They were found guilty of conspiracy to obstruct commerce by extortion and were joined in their plea by a third accomplice, who also pleaded guilty earlier in April.

Victims of the BlackCat Ransomware Operation

The trio was involved in breaches affecting organizations in the following sectors:

  • Healthcare: A Maryland pharmaceutical company and a California medical practice were targeted.
  • Engineering: A California engineering firm was affected.
  • Pharmaceuticals: A Maryland pharmaceutical company faced a significant ransom demand.
  • Manufacturing: A Virginia drone manufacturer was breached.
According to court findings, one of the largest incidents involved a Tampa medical device company that faced a $10 million ransom demand after its servers were encrypted. The company ultimately paid approximately $1.27 million to regain access to its systems. Other victims reportedly faced ransom demands ranging from $300,000 to $10 million.

Ransom Payments and Laundering Concerns

Ransom payments were laundered and distributed among attackers and affiliates, raising concerns about insider involvement in cybercrime ecosystems.

  • The BlackCat ransomware group has been linked to dozens of global cyberattacks and is known for double-extortion tactics, where data is encrypted and victims are threatened with public exposure unless payment is made.
  • The investigation into the broader network continues, with authorities tracing additional affiliates and financial flows linked to the operation.


Blog Image

About Author

Anuj

See author's posts

More Stories

www.news4hackers.com-charter-communications-data-breach-exposes-customer-info-after-ransom-demands-rejected-charter-communications-data-breach-exposes-customer-info-after-ransom-demands-rejected

Charter Communications Data Breach Exposes Customer Info After Ransom Demands Rejected

Anuj May 31, 2026
www.news4hackers.com-critical-gogs-vulnerability-allows-unauthenticated-remote-code-execution-critical-gogs-vulnerability-allows-unauthenticated-remote-code-execution

Critical Gogs Vulnerability Allows Unauthenticated Remote Code Execution

Anuj May 29, 2026
www.news4hackers.com-sextortionist-sentenced-to-33-years-for-targeting-145-children-online-sextortionist-sentenced-to-33-years-for-targeting-145-children-online

Sextortionist Sentenced to 33 Years for Targeting 145 Children Online

Anuj May 28, 2026

Latest Cyber Security News

www.news4hackers.com-secure-ai-agent-actions-with-teleport-s-llm-proxy-and-delegated-identity-secure-ai-agent-actions-with-teleport-s-llm-proxy-and-delegated-identity-2

Magnitude Launches After Stealth Mode, Raises $10M in Funding

Anuj June 16, 2026
www.news4hackers.com-secure-ai-agent-actions-with-teleport-s-llm-proxy-and-delegated-identity-secure-ai-agent-actions-with-teleport-s-llm-proxy-and-delegated-identity-1

Radware AI Xploit Shield: Virtual Patching for Emerging Application & API Vulnerabilities

Anuj June 16, 2026
www.news4hackers.com-secure-ai-agent-actions-with-teleport-s-llm-proxy-and-delegated-identity-secure-ai-agent-actions-with-teleport-s-llm-proxy-and-delegated-identity

Secure AI Agent Actions with Teleport’s LLM Proxy and Delegated Identity

Anuj June 16, 2026
www.news4hackers.com-cybercrime-group-claims-novo-nordisk-hack-what-you-need-to-know-cybercrime-group-claims-novo-nordisk-hack-what-you-need-to-know-2

AppViewX Unveils Next-Gen Agent Security to Secure AI & Quantum Agents

Anuj June 16, 2026
www.news4hackers.com-cybercrime-group-claims-novo-nordisk-hack-what-you-need-to-know-cybercrime-group-claims-novo-nordisk-hack-what-you-need-to-know-1

Can CISOs Trust Their Applications? TrustCloud Offers Alternative to Traditional Questionnaires

Anuj June 16, 2026
en_USEnglish
en_USEnglish