Fin7 created a fake company and announced job openings for tech workers, in order to expand its criminal doings.
What Do We Know About Fin7?
The group has been active since 2014. It’s operating in Russia, which is probably part of the reason why the country was excluded from the US cybercrime summit.
In addition, it has a history of creating fake companies to achieve its ends.
Hiring Tech Workers
Fin7 created yet another fake company – Bastion Secure and made a website for it. It advertised open positions for tech jobs, including reverse engineers, programmers, and system administrators.
According to researchers, the goal was to hire people that can take part in cyberattacks. The issued report also shows that the hackers were looking for cheap labor – they listed monthly salaries of between $800 and $1,200.
A Gemini source applied for one of the job openings. The first two interview rounds went as expected. During the third, however, “it became immediately clear the company was involved in criminal activity,” researchers explain.
This shows that hackers are more interested in ransomware these days, rather than POS software. This comes as no surprise, given that 46% of the companies victims of such cyberattacks pay the demanded amount of money.