Today, two cybersecurity professionals who made a deal with AlphV/BlackCat to use their #ransomware to attack multiple victims in the U.S. were sentenced to four years in prison.
-
Today, two cybersecurity professionals who made a deal with AlphV/BlackCat to use their #ransomware to attack multiple victims in the U.S. were sentenced to four years in prison. A third co-conspirator has yet to be sentenced.
Two of the three worked for DigitalMint; the third worked for Sygnia. Neither firm had any knowledge of its employees' illegal activities and cooperated fully with law enforcement.
One of the victims was a doctor's office that the defendants had encrypted. Then, when the doctor wouldn't pay, they leaked patient data and wouldn't provide a decryptor.
Both of the defendants sentenced today had pleaded guilty to one count of conspiracy to obstruct, delay, or affect commerce or the movement of any article or commodity in commerce by extortion in violation of 18 U.S.C. § 1951(a).
They faced maximum sentences of 20 years, but were sentenced to four years.
Goldilocks and the 3 Verdicts Poll:
Does their sentence seem
-
Today, two cybersecurity professionals who made a deal with AlphV/BlackCat to use their #ransomware to attack multiple victims in the U.S. were sentenced to four years in prison. A third co-conspirator has yet to be sentenced.
Two of the three worked for DigitalMint; the third worked for Sygnia. Neither firm had any knowledge of its employees' illegal activities and cooperated fully with law enforcement.
One of the victims was a doctor's office that the defendants had encrypted. Then, when the doctor wouldn't pay, they leaked patient data and wouldn't provide a decryptor.
Both of the defendants sentenced today had pleaded guilty to one count of conspiracy to obstruct, delay, or affect commerce or the movement of any article or commodity in commerce by extortion in violation of 18 U.S.C. § 1951(a).
They faced maximum sentences of 20 years, but were sentenced to four years.
Goldilocks and the 3 Verdicts Poll:
Does their sentence seem
@PogoWasRight
I guess it depends on whether length of prison sentence fixes the problems that drove them to do such a thing to begin with. -
Today, two cybersecurity professionals who made a deal with AlphV/BlackCat to use their #ransomware to attack multiple victims in the U.S. were sentenced to four years in prison. A third co-conspirator has yet to be sentenced.
Two of the three worked for DigitalMint; the third worked for Sygnia. Neither firm had any knowledge of its employees' illegal activities and cooperated fully with law enforcement.
One of the victims was a doctor's office that the defendants had encrypted. Then, when the doctor wouldn't pay, they leaked patient data and wouldn't provide a decryptor.
Both of the defendants sentenced today had pleaded guilty to one count of conspiracy to obstruct, delay, or affect commerce or the movement of any article or commodity in commerce by extortion in violation of 18 U.S.C. § 1951(a).
They faced maximum sentences of 20 years, but were sentenced to four years.
Goldilocks and the 3 Verdicts Poll:
Does their sentence seem
@PogoWasRight If not for "leaked patient data" I would have said reasonable.
-
@PogoWasRight
I guess it depends on whether length of prison sentence fixes the problems that drove them to do such a thing to begin with.@superball @PogoWasRight This right here.
Our sentencing shouldn't be based on vengeance or some idea of what the convict "deserves". It should be based on preventing the thing from happening again.
-
Today, two cybersecurity professionals who made a deal with AlphV/BlackCat to use their #ransomware to attack multiple victims in the U.S. were sentenced to four years in prison. A third co-conspirator has yet to be sentenced.
Two of the three worked for DigitalMint; the third worked for Sygnia. Neither firm had any knowledge of its employees' illegal activities and cooperated fully with law enforcement.
One of the victims was a doctor's office that the defendants had encrypted. Then, when the doctor wouldn't pay, they leaked patient data and wouldn't provide a decryptor.
Both of the defendants sentenced today had pleaded guilty to one count of conspiracy to obstruct, delay, or affect commerce or the movement of any article or commodity in commerce by extortion in violation of 18 U.S.C. § 1951(a).
They faced maximum sentences of 20 years, but were sentenced to four years.
Goldilocks and the 3 Verdicts Poll:
Does their sentence seem
The patients, who were not even the targets of the extortion, were victimized and may suffer severely from the loss of privacy. Throw the book at the crooks.
-
@superball @PogoWasRight This right here.
Our sentencing shouldn't be based on vengeance or some idea of what the convict "deserves". It should be based on preventing the thing from happening again.
@jbayes @superball @PogoWasRight
many liberal democracies place multiple roles on the sentence. Not _just_ prevention or rehabilitation.
It does differ between countries so I can't state what applies in this case, but here are some from my jurisdiction.
eg
* deterrence
* rehabilitation
* community protection
* accountability
* recognition of harm -
R relay@relay.infosec.exchange shared this topic
