Toggle light / dark theme

Ransomware Negotiator Gets 70 Months in Prison for Aiding BlackCat Attacks

A 41-year-old former ransomware negotiator has been sentenced to nearly six years (i.e., 70 months) in prison in the U.S. for their role in conspiring with the now-defunct BlackCat ransomware operators to extort multiple victims and working with two other cybersecurity professionals to target additional victims in 2023.

In a sentencing memorandum, federal prosecutors described Martino as a “double agent working to maximize the harm to his clients and the financial gain to cybercriminals who paid him a part of the ransom.”

Angelo Martino, 41, of Land O’Lakes, Florida, pleaded guilty to one-count information charging him with conspiring to interfere with interstate commerce through extortion back in April. The defendant worked as a negotiator on behalf of five different ransomware victims, while providing BlackCat attackers with confidential information regarding their negotiating position and strategy without their knowledge or permission.

Beyond Agentic AI: The Emergence Of Cognitive AI Ecosystems

In the next decade, AI will likely undergo more significant changes than only becoming more independent; it will also grow more cognitive. AI systems will act as interconnected ecosystems that are capable of contextual awareness, cooperative reasoning, ongoing learning, and adaptive decision-making in almost every facet of society, rather than isolated applications.

Large language models of today are remarkable due to their ability to produce and anticipate information. Persistent memory, multimodal perception, long-term planning, causal reasoning, and self-directed learning within strictly regulated bounds will probably be characteristics of the AI of 2036. Similar to biological neural networks, millions of specialized AI agents will work together to create dynamic intelligence fabrics that continuously optimize national defense, manufacturing, transportation, financial markets, healthcare delivery, and energy grids.

The line between workforce and software will become increasingly hazy. Hundreds of thousands of AI agents working continuously alongside human employees may be employed by organizations as digital workforces. A customized constellation of AI advisers, researchers, legal assistants, financial analysts, engineers, and cybersecurity specialists working around the clock could be present for every knowledge worker. This shift signifies the emergence of an entirely new digital labor force in addition to automation.

Hackers exploit Roundcube flaw to spy on academic researchers

A China-linked threat cluster has been exploiting vulnerable Roundcube servers at U.S. and Canadian universities to steal credentials and deploy backdoor malware.

The campaign has been observed since May and focuses on physics and engineering departments, administrators and professors, as well as organizations involved in astrophysics, particle physics, or national security-related research.

Researchers at cybersecurity company Proofpoint are tracking the activity under the name ‘UNK_MassTraction’ and believe to be associated with a new threat cluster.

Fake Paysafe, Skrill SDKs on NPM and PyPi steal credentials

Malicious packages on the Node Package Manager (npm) and the Python Package Index (PyPI) delivered stealer malware to developers and users of Paysafe, Skrill, and Neteller payment applications.

The threat actor published at least 17 malicious packages simultaneously, each tasked to exfiltrate credentials and access tokens to a command-and-control server hosted on Amazon Web Services (AWS).

All three payment platforms are popular, with Paysafe being mostly used by e-commerce sites and online marketplaces, gaming platforms, travel businesses, and financial services or software-as-a-service (SaaS) providers.

/* */