Not everyone is a target for cyberespionage. That's the premise on which many businesses built their threat models and cyber-defense capabilities. Unfortunately, that's rapidly changing. Hacker-for-hire groups that sell their services to private entities are popping up on the radar of security companies and creating a blindspot for many organizations that are not prepared to deal with advanced persistent threats (APTs).
Last week, security firms Kaspersky Lab and Bitdefender independently released reports about two such mercenary groups. One was seen targeting law firms and companies in the financial sector, while the other targets architectural and video production companies. These are just the latest examples in a series of similar reports over the past couple of years.