
The Person Hired to Help Ransomware Victims Was Actually Working With Criminals
A cryptocurrency employee secretly helped hackers extort $75 million from businesses. This case shows why choosing who handles a cyberattack matters.
Source
CyberScoop
Original headline: Former DigitalMint ransomware negotiator who duped clients sentenced to 70 months in jail
Plain-English summary by GetCyberRight. Read the full report at the source above.
Angelo Martino worked as a ransomware negotiator for DigitalMint, a company that helped businesses communicate with hackers during ransomware attacks. Instead of protecting his clients, he was secretly working with the criminals. He fed confidential information about the victims to his co-conspirators, helping them extort a total of $75.
3 million from five U.S. businesses. He has now been sentenced to 70 months in federal prison. This case directly affected five American companies that hired DigitalMint for help during ransomware attacks. The businesses trusted Martino to negotiate on their behalf and reduce the ransom demands.
Stay one step ahead of scammers
Weekly cybersecurity briefings for families. No spam, just the threats that matter and what to do about them.
Instead, he gave the attackers inside information that likely increased how much they had to pay. While your family probably was not one of these specific victims, this case reveals an important risk: not everyone who claims to help during a cyber crisis can be trusted.
- Verify any negotiator or cybersecurity consultant through independent sources before sharing sensitive information.
- Ask your IT department or security team about their incident response plan and which companies they work with.
- Report the attack to law enforcement immediately through IC3.gov or your local FBI field office.
- Never pay a ransom without consulting law enforcement and legal counsel first. The broader lesson is about trust and verification in cybersecurity. Just as you would check references before hiring someone to work in your home, businesses must thoroughly vet anyone handling sensitive security incidents. If you own a small business, establish relationships with trusted cybersecurity professionals before an attack happens, not during the crisis when you are most vulnerable.
Curated from trusted cybersecurity sources by GetCyberRight
Source: CyberScoopStay ahead of cyber threats
Get our free weekly digest. Real threats, plain language, what to do about them. No spam, ever.
More articles

Considering Switching from Windows to Linux? Here is One User's Experience
A longtime Windows user tried Linux Ubuntu on an old laptop to see if it could replace Windows 11. The experience had challenges but positive results.
2 min read
Trying Linux on an Old Laptop: Could This Free System Work for Your Family?
A technology writer tested Linux Ubuntu on an old laptop. It could give new life to older computers your family no longer uses.
2 min read
The Person Hired to Help Ransomware Victims Was Actually Working With the Criminals
A negotiator who was supposed to help companies targeted by ransomware secretly worked with the attackers instead. This shows why choosing who to trust in a crisis matters.
2 min read
When Security Researchers Don't Wait: The RoguePlanet Disclosure Story
A researcher publicly shared a Windows Defender exploit before Microsoft could patch it. Here's what that means for your family's digital safety.
3 min read