New 'The Gentlemen' Ransomware Uses SYSTEM Scheduled Tasks to Encrypt Drives with Elevated Privileges
By
Tushar Subhra Dutta
2d ago· 6 min readenNews
100/100
Golden Brown
Bagelometer↗
Baker's choice. Dense with flavour, light on filler.
Score100TypenewsSentimentvery negative
Summary
A newly analyzed ransomware strain called The Gentlemen, built in Go and obfuscated with Garble, is raising alarms in cybersecurity. It combines per-file encryption with silent self-propagation across networks without human intervention. Operating as a ransomware-as-a-service (RaaS) platform, it has impacted organizations in education, healthcare, transportation, and finance across multiple continents. The malware uses SYSTEM scheduled tasks to encrypt local drives with elevated privileges, making it particularly dangerous for enterprise environments.
Key quotes
· 4 pulledA newly analyzed ransomware strain called The Gentlemen is raising serious alarms across the cybersecurity community.
Built in the Go programming language and obfuscated with a tool called Garble, it combines powerful per-file encryption with an aggressive ability to spread itself silently across entire networks without any human intervention.
Organizations in education, healthcare, transportation, and finance across North America, South America, Europe, Africa, and Asia have already felt its damaging impact.
The Gentlemen operates as a ransomware-as-a-service (RaaS) platform
A newly analyzed ransomware strain called The Gentlemen is raising serious alarms across the cybersecurity community. Built in the Go programming language and obfuscated with a tool called Garble, it combines powerful per-file encryption with an aggressiv