Ransomware Group: HUNTERS

VICTIM NAME: Eight8Ate Holdings, Inc

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the HUNTERS Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak page pertains to Eight8Ate Holdings, Inc., a company identified by the victim name. The attack was discovered on May 27, 2025, with the threat group “hunters” claiming responsibility. The breach involved the exfiltration of data, which was also encrypted, indicating a possible double extortion tactic. The compromised system is located in the Philippines, as indicated by the country code. The threat actors have published a link to their claim URL on the dark web, where they potentially offer leaked data for public viewing. The page includes a screenshot possibly showing internal data or relevant proof of the breach, emphasizing the severity of the incident.

According to the available information, the attack resulted in the theft and encryption of sensitive data, although specific details about the nature of the data are not provided. The presence of a download link or list of leaked files was not explicitly mentioned, but the mention of exfiltrated data suggests data has been leaked or sold. The cybersecurity aspect indicates a sophisticated attack involving encryption, complicating recovery efforts. The breach’s discovery timestamp and the dark web claim link confirm that the perpetrators are actively using the leak for potential ransom negotiations or data dissemination. The use of a dark web portal underscores the organized nature of this cybercriminal activity.