For more than five years, a hacker-for-hire company known as Void Balaur has been collecting emails and extremely sensitive material and selling it to customers with financial and espionage aims.
This prolific threat actor is advertising its services on Russian underground forums, with over 3,500 targets distributed across, practically, all continents.
The business plan of this actor, according to security experts at Trend Micro who are tracking Void Balaur’s activities, is to steal and sell it down the line to other interested consumers of such “[…] confidential and personal data of enterprises and individuals” .
Void Balaur is not only into hacking email mailboxes but is also in the business of selling the sensitive private information of its targets. This includes cell tower log data, passport details, SMS messages, and more. In addition, Void Balaur appears to target many organizations and individuals that are likely to have access to highly sensitive data on people.
Individuals and organizations in a variety of industries (telecommunications, retail, financial, medical, and biotechnology) are targeted, especially if they have access to large amounts of personal information.
Void Balaur’s Background
Although the earliest reference to Void Balaur dates back to September 2017, the hacking