Exposed Server Leaks TheGentlemen Ransomware Toolkit, Credentials, and Ngrok Tokens

A fully operational TheGentlemen ransomware toolkit on an exposed server, revealing victim credentials, ngrok tokens, and a complete pre-encryption playbook. This led them to an unauthenticated HTTP server at 176.120.22[.]127:80, hosted by Russian bulletproof provider Proton66 OOO, exposing 126 files across 18 subdirectories and about 140 MB of data. Proton66 has previously been tied to […] The post Exposed Server Leaks TheGentlemen Ransomware Toolkit, Credentials, and Ngrok Tokens appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

First seen on gbhackers.com

Jump to article: gbhackers.com/thegentlemen-ransomware-toolkit/