Hunters

Malware updated 9 months ago (2024-11-29T14:45:20.861Z)
Download STIX
Preview STIX
Malware hunters, often referred to as bug hunters, play a critical role in cybersecurity by identifying and addressing vulnerabilities in software systems. In 2023, these professionals proved their worth at the Pwn2Own Toronto event where they identified 58 unique zero-day vulnerabilities, earning a total of $1,038,250 for their efforts. These specialists leverage a range of tools and technologies, including a framework designed to help them test software for potential flaws through a human-like workflow. This includes a code browser, debugger, reporter tool, and sandbox environment for running Python scripts and recording output. Artificial Intelligence (AI) is increasingly being integrated into the work of malware hunters to enhance threat identification and analysis. Google's team of zero-day hunters, for instance, have noted that AI can lead to improved automated threat identification and detect vulnerabilities that current tools may miss. Trend, a company at the forefront of AI innovation since 2005, has been empowering security operations center (SOC) analysts and threat hunters with technologies that streamline their operations and bolster risk response. Various malware types, including Hunters, have posed significant threats to digital security. Following the contested presidential elections in Venezuela on July 28th, 2024, hacktivist groups including Anonymous Venezuela and Cyber Hunters executed attacks against the Venezuelan government. Furthermore, SharpRhino, an attack tool used by Hunters International, aims to gain persistence and control over targeted systems to launch sophisticated ransomware attacks for financial gain. This group targets opportunistically, without prioritizing any specific sector or region.
Description last updated: 2024-11-05T22:01:59.279Z
What's your take? (Question 1 of 5)
Help tune the shared Cybergeist dataset, assist your peers, and earn karma. Expand the panel to get started.
Aliases We are not currently tracking any aliases
Miscellaneous Associations
Other elements of context that could aid in the identification of relevance
Ransomware
Malware
Vulnerability
Facebook
Telegram
Ransom
Exploit
Extortion
Sandbox
Linux
Google
Encryption
Zero Day
Cybercrime
Crowdstrike
Data Leak
Tool
RaaS
Analyst Notes & Discussion
Be the first to leave your mark here! Log in to share your views and vote.
Associated Malware
To see the evidence that has resulted in these malware associations, create a free account
Alias DescriptionAssociation TypeVotes
The Hive Malware is associated with Hunters. Hive is a form of malware, specifically ransomware, designed to exploit and damage computer systems. It infiltrates systems through suspicious downloads, emails, or websites, often without the user's knowledge. Once inside, Hive can steal personal information, disrupt operations, or hold data hostagUnspecified
4
Associated Threat Actors
To see the evidence that has resulted in these threatActor associations, create a free account
Alias DescriptionAssociation TypeVotes
The Hunters International Threat Actor is associated with Hunters. Hunters International, an active threat actor group since October of the previous year, has been identified as a significant cybersecurity concern. The group has taken over and rebranded the Hive ransomware, despite their disputes about this association. This development followed the disbandment of Unspecified
4
The Lapsus Threat Actor is associated with Hunters. Lapsus is a significant threat actor that has been active since its inception in early 2022. The group gained notoriety for its cyberattacks, including a high-profile breach of Nvidia, an American multinational technology company, in the same year. This attack led to the leak of thousands of passworUnspecified
4
The Hive Ransomware Threat Actor is associated with Hunters. Hive ransomware, a prominent threat actor active in 2022, was known for its widespread malicious activities in numerous countries, including the US. The group's modus operandi involved the use of SharpRhino, which upon execution, established persistence and provided remote access to the attackers, eUnspecified
3
The Shinyhunters Threat Actor is associated with Hunters. ShinyHunters, a notorious threat actor group, has been involved in several significant data breaches, posing a serious cybersecurity concern for businesses worldwide. The group is known for its malicious activities targeting corporate entities, with the intent of stealing proprietary information. BeUnspecified
2
Source Document References
Information about the Hunters Malware was read from the documents corpus below. This display is limited to 20 results, create a free account to see more
PreviewSource LinkCreatedAtTitle
InfoSecurity-magazine
a day ago
Krebs on Security
4 days ago
Securityaffairs
17 days ago
Flashpoint
21 days ago
CrowdStrike
a month ago
Unit42
2 months ago
Securityaffairs
2 months ago
InfoSecurity-magazine
2 months ago
Malwarebytes
2 months ago
Flashpoint
3 months ago
Unit42
3 months ago
Securelist
3 months ago
Securityaffairs
4 months ago
CrowdStrike
4 months ago
Securityaffairs
4 months ago
ESET
5 months ago
Unit42
5 months ago
CISA
6 months ago
CrowdStrike
6 months ago
DARKReading
7 months ago