ransomware attacks
Coverage of ransomware attacks in the Nexus archive.
- Europe dismantles VPN service used by cybercriminals to hide ransomware attacks
European law enforcement dismantled First VPN, a VPN service that was widely used by cybercriminals to conduct ransomware attacks and evade detection. The service had been marketed on Russian-speaking cybercrime forums as a tool for criminals to hide their activities from authorities.
- Cyber incident responders who carried out ransomware attacks given 4-year sentences
Two cybersecurity incident responders were sentenced to four years in prison for abusing their positions to conduct covert ransomware attacks. The individuals exploited their roles to carry out malicious cyber activities, leading to legal consequences.
- US ransomware negotiators get 4 years in prison over BlackCat attacks
Two former cybersecurity incident response company employees were sentenced to four years in prison each for participating in BlackCat (ALPHV) ransomware attacks targeting U.S. companies. The individuals worked for Sygnia and DigitalMint, which specialize in incident response.
- Lawmakers ponder terrorism designations, homicide charges over hospital ransomware attacks
Lawmakers are considering designating ransomware attacks on hospitals as terrorism and pursuing homicide charges in cases where attacks result in deaths. The proposals follow a surge in healthcare sector attacks, with incidents doubling in 2025, and include references to past U.S. and German investigations. Cynthia Kaiser, a former FBI cyber official, advocated for stricter penalties, citing potential sanctions and legal clarity.
- Ransomware Negotiator Pleads Guilty to Aiding BlackCat Attacks in 2023
Angelo Martino, a 41-year-old ransomware negotiator from Florida, pleaded guilty to aiding BlackCat ransomware operators in 2023 to secure higher ransoms from U.S. companies. He collaborated with the group starting in April 2023 to enhance their extortion efforts.
- Former ransomware negotiator pleads guilty to BlackCat attacks
Angelo Martino, a former DigitalMint employee, pleaded guilty to participating in BlackCat (ALPHV) ransomware attacks targeting U.S. companies in 2023. The case highlights cybersecurity incident response failures and criminal activity within the industry.
- Two Americans Plead Guilty to Targeting Multiple U.S. Victims Using ALPHV BlackCat Ransomware
Two American men pleaded guilty on December 29 in federal court for their role in ransomware attacks using ALPHV BlackCat against multiple U.S. victims in 2023. The guilty pleas were entered in the Southern District of Florida and addressed charges of conspiring to obstruct, delay, or affect commerce through extortion.