Leak from "The Gentlemen" Ransomware Group Reveals Use of Infostealers for Initial Access

A recent internal data leak from "The Gentlemen" ransomware-as-a-service (RaaS) group exposed their operational details. The leaked communications revealed their heavy reliance on infostealer credential logs for gaining initial access to target organizations. The findings were highlighted in Checkpoint Research's analysis of the group's activities. The leak was shared on underground forums.