CodeHunter
Company Details
Linkedin ID:
code-hunter
Website:
Employees number:
38
Number of followers:
2,841
NAICS:
541514
Industry Type:
Homepage:
codehunter.com
IP Addresses:
4
Company ID:
COD_2898669
Scan Status:
Completed
CodeHunter Company CyberSecurity Posture
codehunter.com
CodeHunter is a complete malware-hunting solution that automatically identifies, analyzes, and provides intelligence on the most advanced malware threats lurking inside and outside of your environment, just waiting to do damage. Our cloud-based technology identifies zero-day, multi-part, and custom malware threats invisible to existing security measures.
CodeHunter A.I CyberSecurity Scoring
CodeHunter Risk Score (AI oriented)Between 650 and 699
CodeHunter
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
CodeHunter Global Score (TPRM)XXXX
CodeHunter
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
CodeHunter Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
HardBit Ransomware
Ransomware
Rankiteo Explanation
Attack threatening the organization’s existence
Description: In the latest cybersecurity incident, HardBit ransomware version 4.0 has been deployed, utilizing advanced obfuscation techniques to evade detection and complicate the efforts by security analysts. By deleting Volume Shadow Copies and manipulating system recovery options, the ransomware incapacitates victims' ability to restore encrypted files. Persistent attacks are executed by mimicking legitimate system processes and disabling Windows Defender features. Although the initial method of spreading is undetermined, it's suspected to involve brute force attacks. This serious breach in security has the potential to disrupt operations, escalate to significant financial and reputational damages, and cause customer and employee data leaks.
CodeHunter Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for CodeHunter
Incidents vs Computer and Network Security Industry Average (This Year)
No incidents recorded for CodeHunter in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for CodeHunter in 2025.
Incident Types CodeHunter vs Computer and Network Security Industry Avg (This Year)
No incidents recorded for CodeHunter in 2025.
Incident History — CodeHunter (X = Date, Y = Severity)
CodeHunter cyber incidents detection timeline including parent company and subsidiaries
CodeHunter Company Subsidiaries
CodeHunter is a complete malware-hunting solution that automatically identifies, analyzes, and provides intelligence on the most advanced malware threats lurking inside and outside of your environment, just waiting to do damage. Our cloud-based technology identifies zero-day, multi-part, and custom malware threats invisible to existing security measures.
Loading...
CodeHunter Similar Companies
CrowdStrike
CrowdStrike (Nasdaq: CRWD), a global cybersecurity leader, has redefined modern security with the world’s most advanced cloud-native platform for protecting critical areas of enterprise risk — endpoints and cloud workloads, identity and data. Powered by the CrowdStrike Security Cloud and world-clas
Palo Alto Networks, the global cybersecurity leader, is shaping the cloud-centric future with technology that is transforming the way people and organizations operate. Our mission is to be the cybersecurity partner of choice, protecting our digital way of life. We help address the world's greatest s
.png)
CodeHunter CyberSecurity News
December 08, 2021 08:00 AM
Cybersecurity startup CodeHunter launches malware hunting SaaS platform
After a few years of work and development, it eventually led to the creation of CodeHunter. Roshfeld has been building out the company over the...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
CodeHunter CyberSecurity History Information
Official Website of CodeHunter
The official website of CodeHunter is http://www.codehunter.com.
CodeHunter’s AI-Generated Cybersecurity Score
According to Rankiteo, CodeHunter’s AI-generated cybersecurity score is 669, reflecting their Weak security posture.
How many security badges does CodeHunter’ have ?
According to Rankiteo, CodeHunter currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does CodeHunter have SOC 2 Type 1 certification ?
According to Rankiteo, CodeHunter is not certified under SOC 2 Type 1.
Does CodeHunter have SOC 2 Type 2 certification ?
According to Rankiteo, CodeHunter does not hold a SOC 2 Type 2 certification.
Does CodeHunter comply with GDPR ?
According to Rankiteo, CodeHunter is not listed as GDPR compliant.
Does CodeHunter have PCI DSS certification ?
According to Rankiteo, CodeHunter does not currently maintain PCI DSS compliance.
Does CodeHunter comply with HIPAA ?
According to Rankiteo, CodeHunter is not compliant with HIPAA regulations.
Does CodeHunter have ISO 27001 certification ?
According to Rankiteo,CodeHunter is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of CodeHunter
CodeHunter operates primarily in the Computer and Network Security industry.
Number of Employees at CodeHunter
CodeHunter employs approximately 38 people worldwide.
Subsidiaries Owned by CodeHunter
CodeHunter presently has no subsidiaries across any sectors.
CodeHunter’s LinkedIn Followers
CodeHunter’s official LinkedIn profile has approximately 2,841 followers.
NAICS Classification of CodeHunter
CodeHunter is classified under the NAICS code 541514, which corresponds to Others.
CodeHunter’s Presence on Crunchbase
Yes, CodeHunter has an official profile on Crunchbase, which can be accessed here: https://www.crunchbase.com/organization/affirmlogic.
CodeHunter’s Presence on LinkedIn
Yes, CodeHunter maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/code-hunter.
Cybersecurity Incidents Involving CodeHunter
As of December 02, 2025, Rankiteo reports that CodeHunter has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
CodeHunter has an estimated 2,887 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at CodeHunter ?
Incident Types: The types of cybersecurity incidents that have occurred include Ransomware.
Incident Details
Can you provide details on each incident ?
Title: HardBit Ransomware 4.0 Incident
Description: HardBit ransomware version 4.0 has been deployed, utilizing advanced obfuscation techniques to evade detection and complicate the efforts by security analysts. By deleting Volume Shadow Copies and manipulating system recovery options, the ransomware incapacitates victims' ability to restore encrypted files. Persistent attacks are executed by mimicking legitimate system processes and disabling Windows Defender features. Although the initial method of spreading is undetermined, it's suspected to involve brute force attacks. This serious breach in security has the potential to disrupt operations, escalate to significant financial and reputational damages, and cause customer and employee data leaks.
Type: Ransomware
Attack Vector: Brute force attacks
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Ransomware.
Impact of the Incidents
What was the impact of each incident ?
Incident : Ransomware COD000071824
Data Compromised: Customer data, Employee data
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Customer Data, Employee Data and .
Data Breach Information
What type of data was compromised in each breach ?
Incident : Ransomware COD000071824
Type of Data Compromised: Customer data, Employee data
Data Encryption: Encrypted files
Ransomware Information
Was ransomware involved in any of the incidents ?
Additional Questions
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident were Customer data, Employee data and .
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were Customer data and Employee data.
.png)
Latest Global CVEs (Not Company-Specific)
Description
vLLM is an inference and serving engine for large language models (LLMs). Prior to 0.11.1, vllm has a critical remote code execution vector in a config class named Nemotron_Nano_VL_Config. When vllm loads a model config that contains an auto_map entry, the config class resolves that mapping with get_class_from_dynamic_module(...) and immediately instantiates the returned class. This fetches and executes Python from the remote repository referenced in the auto_map string. Crucially, this happens even when the caller explicitly sets trust_remote_code=False in vllm.transformers_utils.config.get_config. In practice, an attacker can publish a benign-looking frontend repo whose config.json points via auto_map to a separate malicious backend repo; loading the frontend will silently run the backend’s code on the victim host. This vulnerability is fixed in 0.11.1.
Risk Information
cvss3
Base: 7.1
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
Description
fastify-reply-from is a Fastify plugin to forward the current HTTP request to another server. Prior to 12.5.0, by crafting a malicious URL, an attacker could access routes that are not allowed, even though the reply.from is defined for specific routes in @fastify/reply-from. This vulnerability is fixed in 12.5.0.
Risk Information
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 21.0.2, 20.3.15, and 19.2.17, A Stored Cross-Site Scripting (XSS) vulnerability has been identified in the Angular Template Compiler. It occurs because the compiler's internal security schema is incomplete, allowing attackers to bypass Angular's built-in security sanitization. Specifically, the schema fails to classify certain URL-holding attributes (e.g., those that could contain javascript: URLs) as requiring strict URL security, enabling the injection of malicious scripts. This vulnerability is fixed in 21.0.2, 20.3.15, and 19.2.17.
Risk Information
cvss4
Base: 8.5
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Gin-vue-admin is a backstage management system based on vue and gin. In 2.8.6 and earlier, attackers can delete any file on the server at will, causing damage or unavailability of server resources. Attackers can control the 'FileMd5' parameter to delete any file and folder.
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Portkey.ai Gateway is a blazing fast AI Gateway with integrated guardrails. Prior to 1.14.0, the gateway determined the destination baseURL by prioritizing the value in the x-portkey-custom-host request header. The proxy route then appends the client-specified path to perform an external fetch. This can be maliciously used by users for SSRF attacks. This vulnerability is fixed in 1.14.0.
Risk Information
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=code-hunter' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
