Brightly Software hit by data theft breach
Incident
Summary
Hide ▲
Show ▼
Brightly Software suffered an insider data theft and extortion incident involving contractor Cameron Curry ("Loot"). He allegedly used access to payroll and corporate data to steal sensitive documents, then threatened to leak them unless the company paid a $2.5 million ransom. The coercion included more than 60 extortion emails and screenshots showing employee PII, creating disclosure risk and financial harm.
Related Happenings
Finnish arrest and U.S. charges in Bouquet Scattered Spider case
Law Enforcement
First: 28.04.2026 18:39
Last: 28.04.2026 18:39
Sources 1
About this happening:
**Finnish law enforcement** arrested **Bouquet**, and **U.S. federal prosecutors** later charged him in a cross-border **Scattered Spider** cybercrime case. The charges include **...
Finnish arrest and U.S. charges in Bouquet Scattered Spider case
Law EnforcementAbout this happening: **Finnish law enforcement** arrested **Bouquet**, and **U.S. federal prosecutors** later charged him in a cross-border **Scattered Spider** cybercrime case. The charges include **...
FBI Director Kash Patel hit by network compromise linked to Handala
Incident
First: 30.03.2026 00:09
Last: 30.03.2026 00:09
Sources 1
About this happening:
FBI Director **Kash Patel**'s personal email account was **breached**, and stolen photos and documents were **published**, exposing private material tied to a senior federal offic...
FBI Director Kash Patel hit by network compromise linked to Handala
IncidentAbout this happening: FBI Director **Kash Patel**'s personal email account was **breached**, and stolen photos and documents were **published**, exposing private material tied to a senior federal offic...
Aleksey Olegovich Volkov sentenced in Yanluowang ransomware case
Law Enforcement
First: 24.03.2026 15:06
Last: 24.03.2026 15:06
Sources 1
About this happening:
The **Justice Department** said **Aleksey Olegovich Volkov** was **sentenced to 81 months** in prison for serving as an **initial access broker** in **Yanluowang ransomware** atta...
Aleksey Olegovich Volkov sentenced in Yanluowang ransomware case
Law EnforcementAbout this happening: The **Justice Department** said **Aleksey Olegovich Volkov** was **sentenced to 81 months** in prison for serving as an **initial access broker** in **Yanluowang ransomware** atta...
Cameron Curry convicted in Brightly extortion case
Law Enforcement
First: 20.03.2026 08:57
Last: 20.03.2026 08:57
Sources 1
How related:
A North Carolina man was found guilty of extorting a D.C.-based technology company while still being employed as a data analyst contractor.
About this happening:
A federal jury found **Cameron Curry** guilty of **extorting Brightly Software**, turning a contractor-access abuse case into a **federal cybercrime conviction**. Curry used his a...
Cameron Curry convicted in Brightly extortion case
Law EnforcementHow related: A North Carolina man was found guilty of extorting a D.C.-based technology company while still being employed as a data analyst contractor.
About this happening: A federal jury found **Cameron Curry** guilty of **extorting Brightly Software**, turning a contractor-access abuse case into a **federal cybercrime conviction**. Curry used his a...
Angelo Martino DOJ charge in BlackCat insider ransomware scheme
Law Enforcement
First: 12.03.2026 13:31
Last: 12.03.2026 13:31
Sources 1
About this happening:
**Ryan Goldberg** and **Kevin Martin** were sentenced to **four years in prison** for helping **BlackCat (ALPHV)** carry out ransomware attacks against **multiple U.S. organizatio...
Angelo Martino DOJ charge in BlackCat insider ransomware scheme
Law EnforcementAbout this happening: **Ryan Goldberg** and **Kevin Martin** were sentenced to **four years in prison** for helping **BlackCat (ALPHV)** carry out ransomware attacks against **multiple U.S. organizatio...
Latest development: 01.05.2026 14:30
Ryan Goldberg and Kevin Martin were each sentenced to four years in prison for helping BlackCat/ALPHV conduct ransomware attacks against multiple U.S. organizations. Court documents say they worked with Angelo Martino, shared ransom proceeds with BlackCat administrators, and in one case received a Bitcoin ransom worth $1.2m; prosecutors also said patient data was leaked in a healthcare-sector attack.
Timeline
-
20.03.2026 08:57 1 articles · 2mo ago
Brightly employees receive extortion emails from contractor Cameron Curry
Initial DisclosureCameron Curry, using the [email protected] Microsoft email address and the Loot alias, begins sending over 60 extortion emails to Brightly employees after his contract ends, threatening to leak sensitive information stolen between August and December 2023 unless Brightly pays $2.5 million. The messages include screenshots of spreadsheets listing employee names, dates of birth, home addresses, and compensation information, along with a threat to report Brightly to the SEC.
Show sources
- Ex-data analyst stole company data in $2.5M extortion scheme — www.bleepingcomputer.com — 20.03.2026 08:57
-
20.03.2026 08:57 2 articles · 2mo ago
FBI searches Cameron Curry's residence after Brightly reports the extortion
Legal Policy Action UpdateAfter Brightly reports the extortion incident, the FBI searches Cameron Curry's residence in North Carolina on January 24, 2024 and seizes electronic devices containing evidence of the extortion scheme. The case later leads to guilty verdict exposure and bond release in January 2024, but the dated law-enforcement action is the clearest anchored milestone.
Show sources
- Ex-data analyst stole company data in $2.5M extortion scheme — www.bleepingcomputer.com — 20.03.2026 08:57
- Ex-data analyst stole company data in $2.5M extortion scheme — www.bleepingcomputer.com — 20.03.2026 08:57