Story image

Voter databases available on the dark web - report

31 Oct 2018

Endpoint security service provider Carbon Black has announced the release of its Quarterly Incident Response Threat Report (QIRTR), aggregating key findings from incident response (IR) partner investigations during the last 90 days.

The QIRTR aggregates qualitative and quantitative input from 37 Carbon Black IR partners.

The report’s goal is to offer actionable intelligence for business and technology leaders, fueled by analysis of new threats, and insights on how to stop them.

This is Carbon Black’s second quarterly report since introducing the QIRTR in July.

Carbon Black chief cybersecurity officer Tom Kellermann, one of the report’s authors, says, “Our research found that today’s attackers are increasingly punitive, sophisticated and confident.”

“And because of the dark web, they have access to complex tools and compromised infrastructures, including voter databases. This allows attackers to exploit new security vulnerabilities and operate at a higher level of sophistication than before.”

Carbon Black researchers also found 20 different state voter databases available for purchase on the dark web, several from swing states.

Critical information in these offerings include voter IDs, full names, current / previous addresses, genders, phone numbers, and citizenship status, among other information.

According to the research, the dark web also offers hacking and influence campaigns targeting social media sites, as well as hackers for hire, who offer to target government entities for the purposes of database manipulation, economic/ corporate espionage, DDoS attacks and botnet rentals.

In conjunction with the report’s release, Carbon Black hosted its inaugural Incident Response Partner Advisory Council (IR Council) meeting in Chicago on October 30.

The IR Council provides the Carbon Black Incident Response partner community, which totals more than 100 partners, an opportunity to share knowledge and best practices with peers.

IR Council members include security thought leaders from Ankura, Critical Start, Crowe, Grant Thornton, HALOCK Security Labs, IBM, Kroll, Lifars, Nisos Group, NTT Security, Optiv, Rapid7, Sylint and Trustwave.

Five things MSPs need to keep in mind in 2019
A Datto APAC channel exec outlines the most important factors for MSP to being paying attention to in the coming year.
Survey: IT pros nostalgic over on-prem data centre visibility
There are significant security and monitoring challenges faced by IT staff responsible for managing public and private cloud deployments.
61% of CIOs believe employees leak data maliciously
Egress conducted a survey to examine the root causes of employee-driven data breaches, their frequency, and impact.
Opinion: BYOD can be secure with the right measures
Companies that embrace BYOD are giving employees more freedom to work remotely, resulting in increased productivity, cost savings, and talent retention.
Sonatype and HackerOne partner on open source vulnerability reporting
Without a standard for responsible disclosure, even those who want to disclose vulnerabilities responsibly can get frustrated with the process.
OutSystems and Boncode team up for better code analysis
The Boncode and OutSystems alliance aims to help organisations to build fast and feel comfortable that the work they're delivering is at peak quality levels.
Security top priority for Filipinos when choosing a bank - Unisys
Filipinos have greatest appetite in Asia Pacific to use biometrics to access banking services
Nuance biometrics fight back against fraud
Nuance Communications has crunched the numbers and discovered that it has prevented more than US$1 billion worth of fraud from being passed on to users of its Nuance Security Suite.