Void BalaurVoid Balaur

Also known as: Void Balaur

Known aliases
1

Profile

Void Balaur is a highly active hack-for-hire / cyber mercenary group with a wide range of known target types across the globe. Their services have been observed for sale to the public online since at least 2016. Services include the collection of private data and access to specific online email and social media services, such as Gmail, Outlook, Telegram, Yandex, Facebook, Instagram, and business emails.

Aliases· 1

Void Balaur

Known victims· 12

  • Brazil
  • Central African Republic
  • Georgia
  • Kazakhstan
  • Moldova
  • Russia
  • Spain
  • Sudan
  • Taiwan
  • Ukraine
  • United Kingdom
  • United States

References

  1. https://www.sentinelone.com/labs/the-sprawling-infrastructure-of-a-careless-mercenary/
  2. https://blog.google/threat-analysis-group/countering-hack-for-hire-groups/
  3. https://documents.trendmicro.com/assets/white_papers/wp-void-balaur-tracking-a-cybermercenarys-activities.pdf
  4. https://www.amnesty.org/en/latest/research/2020/03/targeted-surveillance-attacks-in-uzbekistan-an-old-threat-with-new-techniques/
  5. https://equalit.ie/deflect-labs-report-6/

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Actor
Void Blizzard
Actor
Void Rabisu
Actor
Bahamut
Actor
Void Arachne
Actor
Void Manticore
Breach
Void.to
Sourced from MISP-Galaxy Threat Actor cluster. Curated by Adam Lundqvist, Founder at SQUR.