An individual involved in ransomware negotiations has confessed to assisting in cyberattacks on U.S. companies in 2023. Angelo Martino, aged 41 from Land O’Lakes, Florida, collaborated with BlackCat ransomware operators to facilitate higher ransom demands.
Martino’s Role in the BlackCat Operations
Starting in April 2023, Martino began working with BlackCat, helping them exploit his position as a negotiator. The U.S. Department of Justice (DoJ) revealed that he shared sensitive information, including victim companies’ insurance details and negotiation tactics, without authorization. This betrayal allowed BlackCat to maximize ransom payments, with Martino receiving financial rewards for his cooperation.
Involvement with Other Cybercriminals
Martino also admitted to conspiring with others, including Ryan Goldberg and Kevin Martin, to deploy BlackCat ransomware across multiple U.S. targets from April to November 2023. Both Martino and Martin were part of DigitalMint, while Goldberg held a managerial position at Sygnia, a cybersecurity firm.
In one notable incident, the group extorted $1.2 million in Bitcoin from a victim, later splitting the illicit gains and laundering the proceeds. Authorities have confiscated $10 million in assets from Martino, including cryptocurrencies, vehicles, a food truck, and a luxury boat.
Legal Consequences and Sentencing
Martino has admitted to conspiracy charges related to obstructing commerce through extortion, facing a potential 20-year prison sentence, with sentencing scheduled for July 9, 2026. Similarly, Goldberg and Martin, who confessed in December 2025, await sentencing and may also face up to 20 years in jail.
Assistant Attorney General A. Tysen Duva emphasized the breach of trust by Martino, who was expected to mitigate ransomware threats but instead collaborated with cybercriminals, affecting his clients and the cybersecurity industry.
This case underlines the serious implications of insider threats within cybersecurity and the legal repercussions of complicity in ransomware operations.
