Ransomware Negotiator Sentenced: The Betrayal That Rocked Cybersecurity Trust

Context mode is active. Hover over any highlighted term to see its definition. Click a nested term to go deeper.
In a chilling turn for the cybersecurity world, Angelo Martino, a former ransomware negotiator, was sentenced on July 9, 2026, to 70 months—nearly six years—in federal prison. Martino, 41, from Florida, was found guilty of acting as a 'double agent,' secretly colluding with the notorious BlackCat/ALPHV ransomware group to betray the very victims he was hired to help, feeding them sensitive negotiation details to maximize ransom payments. This egregious breach of trust highlights a dangerous new frontier in cybercrime, where those meant to protect become the perpetrators. Martino's betrayal didn't stop at sharing confidential information; he also conspired with two other former cybersecurity professionals, Ryan Goldberg and Kevin Martin, to actively deploy BlackCat ransomware against additional U.S. victims. Together, this trio extorted significant sums, including approximately $1.2 million in Bitcoin from one company, showcasing the deep entrenchment of this insider threat within the cyber defense ecosystem. The case exposes the sophisticated operational models of groups like BlackCat, which leverage Ransomware-as-a-Service (RaaS) and affiliate program to cast a wider net of digital extortion, often facilitated by dark web transactions. With Goldberg and Martin already serving four-year sentences, Martino's longer term underscores the severe consequences for such betrayals. Law enforcement agencies, including the FBI Cyber Division, have seized over $10 million in assets from Martino, sending a strong message that these crimes will be aggressively pursued. As a restitution hearing is scheduled for September 17, 2026, the incident serves as a stark reminder for organizations to not only bolster their external defenses but also maintain rigorous internal controls and vigilance against insider threat.