The The Gentlemen group, a sophisticated ransomware operation known for its rapid expansion and dual-extortion tactics, has added three international organizations to its leak site. This emerging group, which utilizes advanced evasion techniques and cross-platform lockers, continues to target diverse sectors across the Asia-Pacific and European regions.
The latest list of alleged victims posted by the group includes:
-
Kontena Nasional Berhad (🇲🇾): Malaysia’s premier logistics provider with over 50 years of experience, specializing in integrated haulage, freight forwarding, and cold chain solutions across Southeast Asia.
-
San Carlo Gruppo Alimentare (🇮🇹): A leading Italian snack manufacturer renowned for its production of high-quality potato chips and savory snacks distributed in both local and international markets.
-
PAO HWA TRADING LTD (🇹🇼): A prominent Taiwanese importer and distributor of industrial cutting tools, serving sectors such as automotive, aerospace, and electronics as a general agent for brands like KYOCERA and NACHI.
The Gentlemen group typically exfiltrates a wide range of corporate data before deploying its encryption payload. According to the actor, the allegedly compromised data includes:
-
Internal corporate documents
-
Financial records and reports
-
Client and partner correspondence
-
Employee personal information
-
Operational and logistics data
