Ransomware

Hunters International

First seen: 2023-10 • Status: active

Currently Active Threat

Hunters International rose from the ashes of the Hive ransomware that the FBI shut down. They use the same code but claim to be new.

Overview

Hunters International emerged using Hive ransomware code after the FBI takedown. They claim to be a new group but use Hive infrastructure.

Also Known As

Hunters

How It Spreads

  • Phishing
  • RDP exploitation
  • Initial access brokers

What It Does

  • File encryption
  • Data theft
  • Double extortion

Is your business exposed?

Target Platforms

Windows, Linux

Detection Tips

  • Monitor for Hive-like patterns
  • Watch for Hunters IOCs

MITRE ATT&CK Techniques

T1486, T1567

If You're Infected

  1. 1.

    Isolate infected systems

  2. 2.

    Engage incident response

Related Malware

Hive

Is your business exposed?

Check if your company data is circulating on the dark web

Free scan • No credit card required

Privacy PolicyYour Privacy Choices