Cybersecurity Experts Convicted in Major ALPHV BlackCat Ransomware Conspiracy

Federal prosecutors in the Southern District of Florida have successfully secured guilty pleas from two individuals involved in a sophisticated ransomware operation targeting American businesses and organizations throughout 2023. Ryan Goldberg, based in Georgia, and Kevin Martin, operating out of Texas, both confessed to coordinating with external actors to deploy the notorious ALPHV BlackCat malware against multiple U.S. victims. What makes this case particularly notable is that both perpetrators possessed backgrounds in the cybersecurity sector, giving them insider knowledge to execute their attacks more effectively.

The scope of their criminal enterprise proved substantial. In at least one campaign, the conspirators succeeded in obtaining approximately $1.2 million in Bitcoin from their targets through coercion and extortion. The stolen cryptocurrency was subsequently shared with the developers and operators maintaining the ALPHV BlackCat infrastructure, creating a profit-sharing arrangement that extended the reach of the ransomware-as-a-service model.

Sentencing proceedings are scheduled to commence on March 12, 2026, where both Kevin Martin and Ryan Goldberg will face judgment. The court has indicated that each defendant faces potential imprisonment of up to 20 years, reflecting the severity with which federal authorities view organized ransomware campaigns. This case underscores the growing intersection between cybercrime and cryptocurrency, as digital assets have become the preferred medium for ransomware payments and proceeds distribution across international networks.