THE article discusses the emergence and activities of The Gentlemen ransomware group, a Ransomware-as-a-Service (RaaS) operation active since 2025. It highlights their use of various programming languages to develop ransomware variants and their notable affiliate payout structure offering a 90% cut. The group employs diverse initial access techniques, including exploiting vulnerabilities and collaborating with initial access brokers.
By mid-2026, they significantly increased their victim count, with over 580 victims across 77 countries, particularly targeting the manufacturing sector. The report emphasizes their aggressive tactics and the need for organizations to implement robust security measures to safeguard against such threats.