Former incident responders sentenced to 4 years in prison for committing ransomware attacks

Two former cybersecurity professionals were sentenced to prison for participating in ALPHV/BlackCat ransomware attacks in 2023 that targeted multiple U.S. organizations — including medical, pharmaceutical, engineering, and manufacturing firms — causing extortion demands, at least one data leak of patient information, and ransom payments; a co-conspirator who worked as a ransomware negotiator further exploited victims and helped extract substantially larger sums.