Cybersecurity Experts Charged in BlackCat Ransomware Attacks
In the United States, three cybersecurity professionals—including two employees from firms specializing in incident response and ransom negotiations—have been indicted for orchestrating ransomware attacks using the ALPHV/BlackCat malware.
Details of the Case
Federal prosecutors allege these individuals targeted five companies between May 2023 and April 2025, extorting nearly USD 1.3 million from a medical company based in Florida. This case was first reported by the Chicago Sun-Times.
Emerging Insider Threats in Cybersecurity
This incident highlights a troubling trend of cybersecurity skills being exploited by insiders, blurring the boundaries between defenders and attackers.
Ethics in Cybersecurity Education
As I teach my students, cybersecurity has many roles, each unique and fascinating. From the start, I emphasize ethics, rights, and responsibilities.
“The very first hour of the forty we spend together is always dedicated to ethics, rights and responsibilities.”
Real-Life Examples of Ethical Breaches
- A former cybersecurity manager, dismissed from his job, returned weeks later to infect his previous employer’s servers with ransomware.
- A French company, while trying to negotiate with hackers, got entangled so deeply that courts found it difficult to distinguish right from wrong, resulting in a five-year professional ban.
Conclusion
In short, turning to the dark side remains a risk for those with weak ethical foundations.
“Switching to the dark side is never impossible for the weakest minds.”
Author's summary: Insider threats in cybersecurity reveal the critical need for strong ethical grounding to prevent skilled professionals from becoming cybercriminals.