Researcher Martina Lopez emphasizes that in the face of targeted attacks, preparation and understanding of these threats are fundamental to the digital survival of organizations. To mitigate the risk from The Gentlemen ransomware, the following preventive measures are suggested: • Reduce exposure: Close unnecessary admin panels or remote accesses. • Credential management: Use strong passwords and enable two-factor authentication. • Constant updates: Apply security patches to operating systems and applications. • Privilege and network control: Limit user permissions and segment critical infrastructure. • Backups: Perform periodic backups stored in an isolated manner. Security Recommendations Panama, April 5, 2026. The Latin American region is facing a new cybersecurity threat known as The Gentlemen ransomware. This highly adaptive attack model has affected organizations worldwide, including several Latin American countries. The Gentlemen ransomware operates under a Ransomware-as-a-Service (RaaS) model and employs a double extortion tactic: first, it exfiltrates confidential information, and then it encrypts files. In Argentina, the offensive reached a government scientific research institute, while victims have also been counted in Chile and Panama. In the final stage, they delete activity logs and evidence to hinder any investigation process. "This group is characterized by a polished and professional brand identity," says Martina Lopez, a cybersecurity researcher at ESET Latinoamérica. "The attackers pressure companies with the threat of publishing their data on the dark web if the ransom is not paid." Attacks typically begin by exploiting exposed internet access points or using stolen credentials. Once infiltrated, criminals explore the internal network to identify users with high privileges and deploy tools simultaneously on multiple machines. In mid-March 2026, attacks on healthcare and media organizations in Colombia were reported.
