Tata Technologies hit by Hunters International ransomware attack: 1.4TB (730K files) stolen. Gang threatens leak if ransom unpaid

Continue reading
Tata Technologies, a global leader in engineering and digital solutions for manufacturing industries, has been thrust into the spotlight following a ransomware attack claimed by the notorious threat group Hunters International. The breach, first detected in January 2024, allegedly resulted in the theft of 1.4 terabytes of sensitive data (approximately 730,000 files), raising concerns about industrial espionage, client confidentiality, and operational resilience in critical sectors like automotive and aerospace.
Despite repeated inquiries from media outlets like BleepingComputer, Tata has yet to confirm or deny Hunters’ claims. The lack of transparency has sparked criticism from cybersecurity experts, who argue that delayed disclosures exacerbate stakeholder risks.
Hunters International emerged in late 2023, suspected to be a rebrand of the dismantled Hive ransomware group, which extorted over $100 million from 1,500+ victims globally before being targeted by the FBI in 2022. Key facts about the group:
Tata Technologies, a subsidiary of the $128 billion Tata Group conglomerate, serves Fortune 500 clients in automotive (40% of revenue), aerospace, and industrial heavy machinery. The breach poses multifaceted risks:
The attack reflects broader trends in cybercrime targeting critical infrastructure:
While Tata Technologies asserts that its restoration efforts are “progressing,” stakeholders await clarity on the nature of the stolen data (IP, financial records, or client contracts) and whether a ransom payment will be made. Tata Group historically avoids negotiations, but exceptions exist. - Long-term reputational damage** in a sector where trust is paramount.

148 malicious npm packages masquerading as student proxy and school Wi-Fi bypass tools. Rather than compromising developers during installation