Security News > 2022 > September > Void Balaur Hackers-for-Hire Targeting Russian Businesses and Politics Entities

Dubbed Void Balaur, the cyber mercenary collective has a history of launching cyberattacks against biotechnology and telecom companies since 2015.

"Void Balaur primarily dabbles in cyber espionage and data theft, selling the stolen information to anyone willing to pay," Trend Micro noted at the time.

What's more, the attack infrastructure operated by Void Balaur encompasses more than 5,000 unique domains that claim to be email websites, authentication services, and public services portals.

In what appears to be an operational oversight, one of the domains controlled by the group resolved to an IP address that's owned and operated by the Russian Federal Guard Service in early 2022, suggesting a potential connection.

Although Void Balaur's attacks are aimed at individuals and organizations across the world, campaigns mounted in 2022 have singled out people that are involved in business and political situations that are of interest to Russia.

"Void Balaur remains a highly active and evolving threat to individuals across the globe. From the targeting of well known email services to the offering of hacking corporate networks, the group represents a clear example of the hack-for-hire marketm," Hegel said.

News URL

https://thehackernews.com/2022/09/void-balaur-hackers-for-hire-group-now.html