Article Details

Hunters International ransomware claims attack on Tata Technologies. The Hunters International ransomware gang has claimed responsibility for a January cyberattack attack on Tata Technologies, stating they stole 1.4TB of data from the company. Tata Technologies provides engineering and digital solutions for manufacturing industries worldwide. Founded in 1989 and based in Pune, it operates in 27 countries with over 12,500 employees, specializing in automotive, aerospace, and industrial sectors with product development and digital transformation services. The Indian tech giant reported in January 2025 that it had suffered a security breach by ransomware actors, which disrupted parts of its IT systems. The company noted that the incident's impact on its operations was minimal, while client delivery services were not affected at all. Tata said it was already restoring impacted IT systems and promised to share more updates as soon as its internal investigations, aided by experts in the field, produced results. With no further updates have been shared by the company for over a month, Hunters International added an entry of Tata Technologies on its extortion page on the dark web, claiming responsibility for the attack. The threat actors claim to have stolen 1.4TB of data from Tata Technologies, consisting of 730,000 files. The ransomware gang threatens to release the stolen files in exactly one week if a ransom demand is not met. However, Hunters International did not post any samples of the stolen files or elaborate on what kind of documents they hold. BleepingComputer has contacted Tata Technologies about the threat actor's allegations, but a comment wasn't immediately available. Hunters International is a ransomware group that had had high-profile attacks since late 2023, when it emerged as a potential rebrand of Hive. The gang's attacks include breaches of U.S. Navy contractor Austal USA and Japanese optics giant Hoya. The threat group also became notorious for showing no ethical barriers, even engaging in individual extortion targeting Fred Hutch cancer patients. Although many of their claims were validated, there have been cases of dispute, like the one from the U.S. Marshals Service in August 2024, which denied that its systems were breached by Hunters contrary to the threat actor's allegations.