Former DigitalMint Negotiator Pleads Guilty for Enabling BlackCat Ransomware Extortion of U.S. Firms
What Happened – Angelo Martino, a former negotiator at incident‑response firm DigitalMint, pleaded guilty to conspiring with the BlackCat (ALPHV) ransomware gang. He leaked victims’ negotiation positions and insurance limits, helping the gang demand and collect multimillion‑dollar ransoms from at least five U.S. organizations.
Why It Matters for TPRM –
- Insider abuse inside a third‑party security provider can expose client negotiation data and amplify ransomware impact.
- Large ransom payouts (>$25 M) illustrate the financial exposure that can flow from compromised vendor relationships.
Who Is Affected – Financial services, nonprofit, law firms, school districts, medical facilities, and any organization that relied on DigitalMint for incident response.
Recommended Actions – Review and tighten contractual clauses governing vendor insider‑risk controls, verify segregation of client data within MSSPs, monitor for anomalous communications from security partners, and consider alternative providers with proven ethical safeguards.
Technical Notes – Attack vector: insider threat (confidential negotiation data shared). No specific CVE. Data types exposed: negotiation strategy, insurance policy limits, ransom demand details. Source: BleepingComputer