Ransomware: thegentlemen claims Times Software (SG) — Technology

On June 15, 2026, a ransomware group known as thegentlemen claimed responsibility for a cyberattack against Times Software, a Singapore-based technology firm. The incident was published on the ransomware group's leak site, indicating that sensitive data may have been exfiltrated and threatened with public release. This event falls under the BREACH framework, which typically involves unauthorized access and data disclosure, triggering notification obligations under EU data protection laws such as GDPR.

Organizations in the technology sector, particularly those operating in or serving clients in the EU and Singapore, should assess their exposure. Any company that relies on Times Software for services or data processing may face indirect risks, including supply chain compromise or data leakage. Compliance teams should also consider broader implications for similar software vendors and managed service providers, as ransomware groups often target such entities to amplify impact.

Compliance teams should immediately verify whether their organization has any data-sharing or service agreements with Times Software. If so, they must initiate incident response protocols, including breach notification to relevant data protection authorities within 72 hours if EU personal data is involved. Additionally, teams should review their own ransomware preparedness, ensure offline backups are current, and update business continuity plans to account for potential third-party disruptions.