Hunters

Malware updated 10 months ago (2024-11-29T14:45:20.861Z)
Download STIX
Preview STIX
Malware hunters, often referred to as bug hunters, play a critical role in cybersecurity by identifying and addressing vulnerabilities in software systems. In 2023, these professionals proved their worth at the Pwn2Own Toronto event where they identified 58 unique zero-day vulnerabilities, earning a total of $1,038,250 for their efforts. These specialists leverage a range of tools and technologies, including a framework designed to help them test software for potential flaws through a human-like workflow. This includes a code browser, debugger, reporter tool, and sandbox environment for running Python scripts and recording output. Artificial Intelligence (AI) is increasingly being integrated into the work of malware hunters to enhance threat identification and analysis. Google's team of zero-day hunters, for instance, have noted that AI can lead to improved automated threat identification and detect vulnerabilities that current tools may miss. Trend, a company at the forefront of AI innovation since 2005, has been empowering security operations center (SOC) analysts and threat hunters with technologies that streamline their operations and bolster risk response. Various malware types, including Hunters, have posed significant threats to digital security. Following the contested presidential elections in Venezuela on July 28th, 2024, hacktivist groups including Anonymous Venezuela and Cyber Hunters executed attacks against the Venezuelan government. Furthermore, SharpRhino, an attack tool used by Hunters International, aims to gain persistence and control over targeted systems to launch sophisticated ransomware attacks for financial gain. This group targets opportunistically, without prioritizing any specific sector or region.
Description last updated: 2024-11-05T22:01:59.279Z
What's your take? (Question 1 of 5)
Help tune the shared Cybergeist dataset, assist your peers, and earn karma. Expand the panel to get started.
Aliases We are not currently tracking any aliases
Miscellaneous Associations
Other elements of context that could aid in the identification of relevance
Ransomware
Malware
Exploit
Extortion
Telegram
Google
Zero Day
Cybercrime
Ransom
Facebook
Vulnerability
Encryption
Sandbox
RaaS
Hacktivist
Data Leak
Linux
Tool
Phishing
Crowdstrike
Analyst Notes & Discussion
Be the first to leave your mark here! Log in to share your views and vote.
Associated Malware
To see the evidence that has resulted in these malware associations, create a free account
Alias DescriptionAssociation TypeVotes
The Hive Malware is associated with Hunters. Hive is a form of malware, specifically ransomware, designed to exploit and damage computer systems. It infiltrates systems through suspicious downloads, emails, or websites, often without the user's knowledge. Once inside, Hive can steal personal information, disrupt operations, or hold data hostagUnspecified
4
Associated Threat Actors
To see the evidence that has resulted in these threatActor associations, create a free account
Alias DescriptionAssociation TypeVotes
The Lapsus Threat Actor is associated with Hunters. Lapsus is a significant threat actor that has been active since its inception in early 2022. The group gained notoriety for its cyberattacks, including a high-profile breach of Nvidia, an American multinational technology company, in the same year. This attack led to the leak of thousands of passworUnspecified
6
The Hunters International Threat Actor is associated with Hunters. Hunters International, an active threat actor group since October of the previous year, has been identified as a significant cybersecurity concern. The group has taken over and rebranded the Hive ransomware, despite their disputes about this association. This development followed the disbandment of Unspecified
4
The Scattered Spider Threat Actor is associated with Hunters. Scattered Spider, also known as Octo Tempest, 0ktapus, and UNC3944, is a notorious threat actor group involved in major data extortion campaigns. This cybercriminal group has been associated with high-profile attacks on organizations like Caesars Entertainment and MGM, often in collaboration with thUnspecified
3
The Hive Ransomware Threat Actor is associated with Hunters. Hive ransomware, a prominent threat actor active in 2022, was known for its widespread malicious activities in numerous countries, including the US. The group's modus operandi involved the use of SharpRhino, which upon execution, established persistence and provided remote access to the attackers, eUnspecified
3
The Shinyhunters Threat Actor is associated with Hunters. ShinyHunters, a notorious threat actor group, has been involved in several significant data breaches, posing a serious cybersecurity concern for businesses worldwide. The group is known for its malicious activities targeting corporate entities, with the intent of stealing proprietary information. BeUnspecified
3
Source Document References
Information about the Hunters Malware was read from the documents corpus below. This display is limited to 20 results, create a free account to see more
PreviewSource LinkCreatedAtTitle
InfoSecurity-magazine
an hour ago
Krebs on Security
11 hours ago
InfoSecurity-magazine
21 hours ago
Checkpoint
2 days ago
InfoSecurity-magazine
12 days ago
InfoSecurity-magazine
15 days ago
InfoSecurity-magazine
16 days ago
Checkpoint
16 days ago
Securityaffairs
20 days ago
CrowdStrike
21 days ago
Securityaffairs
22 days ago
InfoSecurity-magazine
22 days ago
Securityaffairs
22 days ago
Securityaffairs
a month ago
Unit42
a month ago
Recorded Future
a month ago
InfoSecurity-magazine
a month ago
Krebs on Security
a month ago
Securityaffairs
2 months ago
Flashpoint
2 months ago