[HUNTERS] – Ransomware Victim: Mafi
Ransomware Group: HUNTERS
VICTIM NAME: Mafi
NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the HUNTERS Onion Dark Web Tor Blog page.
AI Generated Summary of the Ransomware Leak Page
The ransomware leak page pertains to the victim entity identified as “Mafi,” which is located in Austria. The incident was publicly disclosed on April 23, 2025, the same date as the attack, suggesting immediate reporting or detection. The attackers, associated with the group “hunters,” exfiltrated sensitive data, indicating a breach involving data theft that included both encrypted files and accessible information. The attack reportedly involved multiple known infostealer tools, such as Lumma, Predator, and RedLine, indicating the use of malware to harvest information from compromised systems. The leak page includes a screenshot showing internal details of the compromised environment.
The leak confirms that data was exfiltrated during the attack process, with references to encrypted data and stolen information. No specific details about the nature of the secret data were disclosed publicly. The incident affected a company in Austria, but activity in terms of business sector remains unspecified. The public archive includes links to downloads potentially exposing stolen information, though exact data contents or file sizes are not provided. Importantly, the leak page emphasizes the leak’s credibility and provides a visual confirmation through the included screenshot, which offers a glimpse into the compromised system environment.
A considerable amount of time and effort goes into maintaining this website, creating backend automation and creating new features and content for you to make actionable intelligence decisions. Everyone that supports the site helps enable new functionality.
If you like the site, please support us on “Patreon” or “Buy Me A Coffee” using the buttons below
To keep up to date follow us on the below channels.
