Suspected Russian Hacker Charged Over Void Blizzard Cyber Espionage Campaign

A suspected Russian hacker has been transferred to United States custody and charged in connection with an alleged cyber espionage operation linked to the Russia-aligned hacking group known as Void Blizzard. U.S. authorities say the campaign targeted numerous American organisations and formed part of a broader effort aimed at gathering sensitive information from entities aligned with Western interests.

Denis Obrezko, 36, appeared in federal court in Boston on Tuesday after being extradited from Thailand, where he was arrested last year. Prosecutors have charged him with conspiracy to commit unauthorised access to a protected computer.

US Links Suspect To Cyber Espionage Network

According to court filings, investigators allege that Obrezko played a role in supporting cyber operations conducted by Void Blizzard, a hacking group previously identified by Microsoft as being aligned with Russian government interests.

The U.S. Department of Justice’s National Security Division is leading the prosecution. Obrezko is currently being held without bond while legal proceedings continue.

Authorities claim that the case is connected to a large-scale cyber espionage campaign that focused on obtaining access to email accounts and sensitive communications from targeted organisations.

Void Blizzard Targeted NATO And Ukraine-Related Organisations

Microsoft identified Void Blizzard in a report published in May 2025, describing it as a relatively new cyber espionage group active since at least April 2024.

According to the company’s assessment, the group primarily targeted organisations linked to Russian strategic interests. Its activities reportedly focused on entities in NATO member states and Ukraine across a range of sectors, including government, defence, transportation, healthcare, media and non-governmental organisations.

Investigators say the group’s operations centred heavily on mass email harvesting campaigns designed to obtain valuable intelligence and internal communications.

FBI Identifies Multiple US Victims

An FBI affidavit filed as part of the criminal case states that at least 11 U.S. companies have been identified as victims of the hacking campaign.

However, investigators believe the true number of affected organisations is significantly higher. The filing describes the identified victims as only a fraction of the entities potentially compromised by the group.

Authorities allege that the cyber operations targeted a broad range of American industries and business sectors, highlighting the extensive reach of the campaign.

Cryptocurrency Transactions Tied To Infrastructure

According to charging documents, the FBI traced cryptocurrency transactions allegedly linked to Obrezko. Investigators say the funds were used to purchase a virtual private server and a domain name that supported cyberattacks against organisations in the United States and other countries.

Prosecutors argue that this infrastructure played a role in facilitating the broader espionage campaign carried out by Void Blizzard.

Neither the U.S. Department of Justice nor Obrezko’s court-appointed lawyer immediately commented on the allegations. The charges remain accusations, and Obrezko is presumed innocent unless proven guilty in court.

The case underscores growing concerns among Western governments about state-linked cyber espionage operations targeting critical institutions, businesses and strategic sectors. It also highlights increasing international cooperation in pursuing cybercrime suspects across national borders.

With inputs from Reuters