Kaspersky uncovers new malware linked to Gentlemen ransomware

https://cdn1.expresscomputer.in/wp-content/uploads/2017/05/13133942/Ransomware.jpg

Kaspersky’s Global Research and Analysis Team (GReAT) has identified new malware and evolving attack techniques used by the rapidly growing ransomware group. The Gentlemen, indicating that the Ransomware-as-a-Service (RaaS) operation is expanding both its technical capabilities and global reach.

According to Kaspersky’s latest research, the group—believed to have emerged around mid-2025—has been targeting organisations across sectors including manufacturing, IT services, healthcare, financial services, construction and logistics. The ransomware operator has also broadened its toolkit with a newly discovered custom-built backdoor and a Windows-focused ransomware variant.

The research reveals that The Gentlemen typically gains initial access by exploiting internet-facing services and compromised credentials. However, investigators found evidence suggesting that some victim environments had been breached well before ransomware deployment using techniques not commonly associated with the group. This indicates the attackers may be working with Initial Access Brokers (IABs) that specialise in selling access to compromised corporate networks.

A key finding...

Copyright of this story solely belongs to expresscomputer.in. To see the full text click HERE

Read more