Huntress Employee Allegedly Informs Ransomware Operator of FBI Investigation

Huntress Employee Allegedly Informs Ransomware Operator of FBI Investigation

First seen 1 Jul 2026, 18:04 UTC TheregisterCybernews 77% similarity 48.9
Share:

Article Content

Browse articles
ThreatCluster

Huntress CEO Kyle Hanslovan addressed allegations that a current employee tipped off ransomware operator Devman about an FBI investigation. Former analyst Ben Folland claimed that the employee disclosed sensitive communications from law enforcement, which he argues constitutes an insider threat. Hanslovan acknowledged the poor judgment but stated that the disclosure was not illegal and emphasized that Huntress allows engagement with threat actors for research purposes. The incident has raised concerns about the company's internal practices and the potential risk to clients. Folland, who left Huntress in February, asserted that the employee's actions could lead to reputational damage and put clients at risk. The FBI has been notified of the situation, but no further details have been released. Huntress is continuing its investigation and has implemented new policies for its researchers.

Key Points: • A Huntress employee allegedly informed ransomware operator Devman about an FBI probe. • The CEO stated the disclosure was poor judgment but not illegal, allowing engagement with threat actors for research. • Former analyst Ben Folland claims this constitutes an insider threat and could endanger clients.

ThreatCluster AI

Timeline

2026-06-30
Huntress CEO addresses insider threat allegations
Kyle Hanslovan confirmed that a current employee disclosed FBI communications to a ransomware operator, labeling it as poor judgment.
Theregister
2026-06-30
Former analyst accuses Huntress employee of insider threat
Ben Folland alleged that a Huntress employee forwarded sensitive FBI communications to Devman, putting clients at risk.
Theregister
2026-07-01
Cybernews reports on Huntress CEO's defense
Kyle Hanslovan defended the employee's actions in a blog post, stating that while the disclosure was poor judgment, it was not illegal.
Cybernews

Community

Browse all →