Victim Ransomware Recover Indonesia warns thegentlemen threat actors that their cryptographic strength has been tested and compromised using their own software, implying a failure in the threat actors’ capabilities. The message is directed towards the ID country. #Indonesia
Incident Details
- Victim: Ransomware Recover Indonesia
- Country: ID
- Actor: thegentlemen
- Source: http://tezwsse5czllksjb7cwp65rvnk4oobmzti2znn42i43bjdfd2prqqkad.onion
- Discovered: 2025-09-09 16:02:24.325732
- Published: 2025-09-09 16:01:38.085457
Information
- Ransomware Recover Indonesia is associated with the actor “thegentlemen”.
- The group’s website is https://recoveryransomwareindonesia.com.
- The group challenges others to test their cryptographic strength, claiming to have tested their software successfully.
- They imply that attempting to recover or attack their system would be a waste of time and money.
- The group has reportedly “pwn3d” their own software, indicating successful testing or hacking demonstration.
Disclaimer: This post is based on public claims made by the ransomware group "thegentlemen". I cannot confirm the accuracy of the information. However, I would be happy to share any official statement from the affected organization to provide clarification.