A United States cybersecurity professional has pleaded guilty to participating in a ransomware conspiracy, in a case that underscores the growing threat of insider risk within the cyber incident response ecosystem. The Department of Justice confirmed that Angelo Martino, a former ransomware negotiator, conspired with BlackCat ALPHV operators to both facilitate and execute attacks against U.S. organisations in 2023. According to court filings, Martino exploited his position at

FinCEN’s Rapid Response Programme has now helped interdict more than $1.8 billion in stolen funds for US victims of cyber-enabled fraud, underlining the growing importance of rapid cross-border financial intelligence sharing in tackling digital crime. According to FinCEN, more than $268 million has been interdicted since President Trump resumed office. The programme works by enabling FinCEN to share financial intelligence quickly with foreign financial intelligence units and

The Department of Justice has sentenced two US nationals for facilitating a fraudulent remote IT worker scheme that generated more than $5 million in illicit revenue for the Democratic People’s Republic of Korea, underlining the growing national security risk posed by DPRK cyber-enabled revenue operations. Kejia Wang, 42, of Edison, New Jersey, was sentenced to 108 months in prison, while Zhenxing Wang, 39, of New Brunswick, New Jersey, received a 92-month sentence. Both men

The US Department of Justice (DOJ) has intensified its response to state-backed cybercrime with a court-authorised operation targeting a DNS hijacking network linked to Russia’s GRU. Announced on 7 April 2026, the action focused on dismantling infrastructure used by APT28, a well-known cyber espionage group, which had compromised thousands of routers to conduct large-scale credential harvesting and surveillance activity. The operation highlights a critical evolution in cyberc

The US Department of Justice has secured an 81 month prison sentence against Russian national Aleksei Volkov for his role in a cybercrime operation that enabled ransomware groups to extort tens of millions of dollars from corporate victims. The case is significant because it targets not only the operators of ransomware campaigns, but also the specialist actors who help make those attacks possible in the first place. According to the Department of Justice, Volkov acted as an i

Authorities in the United States and across Europe have dismantled LeakBase, one of the world’s largest online forums used by cybercriminals to trade stolen data, account credentials and hacking tools. The takedown followed a coordinated operation involving law enforcement agencies from 14 countries and represents another significant disruption of the global cybercrime ecosystem. According to the Department of Justice (DoJ), LeakBase operated as a major hub for cybercriminal

The sentencing of Daren Li to the statutory maximum of 20 years’ imprisonment marks a significant escalation in the United States’ crackdown on global cryptocurrency investment fraud and associated money laundering networks. The case underscores the scale, sophistication and transnational reach of scam centre operations operating from Southeast Asia, particularly Cambodia, and highlights the growing convergence between romance fraud, cyber-enabled deception and crypto asset l

The Financial Crimes Enforcement Network (FinCEN) has released a new Financial Trend Analysis examining ransomware activity captured in Bank Secrecy Act reporting between 2022 and 2024. The analysis identifies more than 2.1 billion dollars in ransomware payments over the three-year period and confirms that 2023 marked an unprecedented peak in both reported incidents and associated financial losses. According to FinCEN Director Andrea Gacki, timely suspicious activity reportin

The latest announcement from the Justice Department marks a significant escalation in US efforts to dismantle North Korea’s illicit global revenue networks. With five guilty pleas secured and over 15 million dollars in virtual currency subject to civil forfeiture, the Department has underscored both the scale and sophistication of the Democratic People’s Republic of Korea’s (DPRK) exploitation of remote IT work and cryptocurrency theft to finance its weapons programmes in def

The United States and UK have announced their largest-ever coordinated action against cybercriminal networks operating in Southeast Asia, marking a major escalation in international efforts to dismantle transnational scam operations. The US Department of the Treasury, through its Office of Foreign Assets Control (OFAC) and the Financial Crimes Enforcement Network (FinCEN), in partnership with the UK’s Foreign, Commonwealth and Development Office (FCDO), has imposed sweeping s

A Ukrainian national has been charged in New York for serving as an administrator in three notorious ransomware schemes — LockerGoga,...