A suspected GandCrab Ransomware member was arrested in South Korea for using phishing emails to infect victims. The 20-year-old man was arrested on February 25th by South Korean police after an international investigation traced ransom payments to withdrawals made by the suspect. The suspect only earned 12 million South Korean won or approximately $10,500 as part of his illicit activities. The operation shut down in the summer of 2019, but many security researchers believe the core developers went on to start the REvil ransomware group.
Source: https://www.bleepingcomputer.com/news/security/gandcrab-ransomware-affiliate-arrested-for-phishing-attacks/