LT Tech Blog

Wow News on Tech and AI

Cybersecurity Threats & Incidents

Two cybersecurity workers plead guilty in 2023 ransomware extortion case

By

Dec 30, 2025 #Bitcoin, #Department of Justice, #extortion, #insider threat, #Ransomware

TL;DR

Two former employees of cybersecurity firms pleaded guilty to running a series of ransomware attacks in 2023, the Department of Justice said. Ryan Goldberg, 40, and Kevin Martin, 36, are accused of extorting $1.2 million in Bitcoin from a medical device company and of targeting other organizations.

What happened

The Department of Justice announced that two former employees at cybersecurity firms have entered guilty pleas for their roles in a series of ransomware attacks carried out in 2023. Authorities identified the defendants as 40-year-old Ryan Goldberg and 36-year-old Kevin Martin. According to the announcement, the pair extorted roughly $1.2 million in Bitcoin from a medical device company. The DOJ statement also says the men targeted several additional organizations, though the announcement excerpt does not list those victims. One of the defendants had worked as a ransomware negotiator while employed in the cybersecurity sector. The guilty pleas were disclosed by the DOJ on a Tuesday, as part of an ongoing criminal matter stemming from the incidents in 2023.

Why it matters

  • Insiders with cybersecurity expertise can pose elevated risks if they misuse privileged knowledge and access.
  • A convicted negotiator turning to attack activity raises questions about vetting and oversight within security firms.
  • Use of cryptocurrency for ransom payments highlights law enforcement and victim challenges in tracing funds.
  • Admissions of guilt in these cases may prompt affected industries to reassess incident response and third‑party relationships.

Key facts

  • Two former employees at cybersecurity firms pleaded guilty to ransomware-related charges.
  • Department of Justice announced the guilty pleas on a Tuesday.
  • Defendants named in the DOJ announcement are Ryan Goldberg, age 40, and Kevin Martin, age 36.
  • The attacks took place in 2023.
  • The pair extorted approximately $1.2 million in Bitcoin from a medical device company.
  • The DOJ said the defendants targeted several other organizations, but those targets are not listed in the excerpt.
  • One of the men previously worked as a ransomware negotiator while employed in the cybersecurity field.

What to watch next

  • Sentencing dates and the penalties imposed — not confirmed in the source.
  • Whether the DOJ will identify additional victims or release more details about the other targeted organizations — not confirmed in the source.
  • Any civil claims or regulatory actions from affected companies tied to these incidents — not confirmed in the source.

Quick glossary

  • Ransomware: Malicious software that encrypts or otherwise blocks access to data or systems until a ransom is paid.
  • Ransomware negotiator: An individual who communicates with victims and attackers to negotiate terms for ransom payments during an incident.
  • Extortion: The act of obtaining money, property, or services through coercion, threats, or force.
  • Bitcoin: A decentralized digital currency commonly used in online transactions, including some ransomware payments.
  • Department of Justice (DOJ): The U.S. federal agency responsible for enforcement of the law and administration of justice, including criminal prosecutions.

Reader FAQ

Who pleaded guilty?
Ryan Goldberg, 40, and Kevin Martin, 36, pleaded guilty according to the DOJ announcement.

What did they admit to doing?
They pleaded guilty to carrying out a series of ransomware attacks in 2023 and extorting about $1.2 million in Bitcoin from a medical device company.

Were they employed by cybersecurity firms?
Yes. The defendants are described as former employees at cybersecurity firms; one had served as a ransomware negotiator.

Which other companies were targeted?
Not confirmed in the source.

When will sentencing occur and what penalties will they face?
Not confirmed in the source.

Two former employees at cybersecurity firms – one of whom was a ransomware negotiator – have pleaded guilty to carrying out a series of ransomware attacks in 2023. The Department…

Sources

Related posts

By

Related Post

Security incidents Threats & Incidents

New Zealand orders review after ManageMyHealth cyberattack affecting 100,000+

Jan 5, 2026
GenAI (models, assistants) Threats & Incidents

AI Deepfakes Impersonate Pastors to Scam Their Congregations

Jan 5, 2026
Policy / Compliance Threats & Incidents

Anna’s Archive Loses .org Domain in Unexpected Registry Suspension

Jan 5, 2026

Leave a Reply

Your email address will not be published. Required fields are marked *


You missed

AI in Business Product launches

Capita tells civil servants to wait for chatbots to fix pension portal issues

January 5, 2026
How it works Mobile & Apps

Auditing my subscriptions for the New Year revealed $100 in monthly waste

January 5, 2026
Consumer Tech & Gadgets Product launches

Samsung Galaxy S26 could rise in price in South Korea but stay flat in US

January 5, 2026
Phones / Laptops Product launches

Galaxy S26 Edge’s Return in Doubt After Indian Certification Listing Sparks Debate

January 5, 2026