New Ransomware Group Emerges with Hive's Source Code and Infrastructure

2023-11-13 12:12

The threat actors behind a new ransomware group called Hunters International have acquired the source code and infrastructure from the now-dismantled Hive operation to kick-start its own efforts in the threat landscape.

While it's common for ransomware actors to regroup, rebrand, or disband their activities following such seizures, what can also happen is that the core developers can pass on the source code and other infrastructure in their possession to another threat actor.

The threat actors behind it have sought to dispel these speculations, stating that it purchased the Hive source code and website from its developers.

"In general, as the new group adopts this ransomware code, it appears that they have aimed for simplification," Zugec said.

"While Hive has been one of the most dangerous ransomware groups, it remains to be seen if Hunters International will prove equally or even more formidable," Zugec noted.

"This group emerges as a new threat actor starting with a mature toolkit and appears eager to show its capabilities, [but] faces the task of demonstrating its competence before it can attract high-caliber affiliates."

News URL

https://thehackernews.com/2023/11/new-ransomware-group-emerges-with-hives.html

#hive #infrastructure #ransomware #sourcecode