Negotiation Chat — Nightspire
Negotiation chats provided by Valéry Marchive and Julien Mousqueton.
Chat ID: 20260225
Hello. This is the company IT and security team. We received your message and understand the situation. We have your UUID: [redacted]
2026-02-25
We want to resolve this quickly and quietly. Restore our systems fast and make sure none of the stolen data gets leaked. Please guide us on next steps.
Full decryption tool + permanent deletion of all exfiltrated data: $100,000 BTC.The stolen files are very sensitive — client contracts, financial statements, customer database with PII. A leak would destroy trust and cost you far more than money.
We appreciate the clear price. But $100k is beyond what we can arrange right away. Our max right now is $20k.
$20k is not serious. We already researched your company.
Public filings show ~$14.8 million annual revenue last year. Operating profit around $2.1 million.
$100k is under 1% of revenue, less than 5% of profit. Companies in your size usually pay 3–8% to avoid weeks of downtime + massive breach costs.
We understand your point. The numbers make sense logically. Downtime is killing us already — production halted, support tickets exploding.
We’re pulling from every source. Board approved rushing $50k today if possible.
That’s progress. I’ll meet you halfway with goodwill. 10% discount applied: $90,000 now.
Thank you for the discount. We really want to close this fast.
But $90k still stretches us thin. Cash reserves are low after recent investments. Can we do $60k? We can send BTC immediately if agreed.
$60k? You’re kidding me.
We gave discount already and you’re lowballing again?
Let me remind you what’s at stake here.
Your signed client contracts include strict confidentiality clauses and $500k+ penalties per breach. One leak and clients cancel.
Financial reports show declining margins in Q3/Q4 — competitors see that, they undercut you everywhere.
Customer database: 103,000 records with names, emails, payment details. That hits dark web markets in hours if we release.
…You’re absolutely right. We can’t let any of that happen.
The board just reviewed the proof page samples. People are in shock. We don’t want to risk even one file going public.
Then stop wasting time with $60k games.
We’re reasonable, but patience has limits.
Understood. We’re not trying to play games.
We’ll push harder internally. Give us a moment to confirm higher amount.
Okay, we can stretch to $70k by pulling from executive personal funds and short-term credit.
$70k still short. You know the value.
Your recovery cost alone (forensics, legal, PR) will exceed $200k if this drags or leaks.
We get that. The risk is too high.
We’ll go to $75k. That’s scraping the bottom of every barrel.
You’re close but still dragging.
Final push: $80k inside the next 24 hours. Take it or we start preparing next leak batch — full customer CSV preview first.
$80k. We agree. Let’s finalize this now. We want our systems back online ASAP.
Smart. Give us 3 encrypted files without important info. using gofile.io
https://gofile.io/[redacted] Please test these files.
Okay, wait a min.
c Check it.
Downloaded.
Checked sample encrypted files. It opened perfectly. No issues.
Good. Full payment now.
BTC address: bc1q[redacted]
Initiating transfer. Should have confirmations in 10–15 minutes.
Payment sent. Here’s the TXID: [redacted]
Full universal decryptor delivered: https://gofile.io/[redacted]
Downloading now. Starting rollout on test systems. Files are decrypting correctly across the board.
Deletion proof: https://gofile.io/[redacted]
File hashes, timestamps, server confirmations — contracts, financials, customer PII — nothing remains on our side.
We honor completed deals. Restore your infrastructure quickly.
No more contact needed. Improve your defenses. Goodbye.