sb-as logo
Story image

The Dark Web: Is your company at risk?

27 Jul 2017

Written by Alastair Paterson, Digital Shadows CEO and co-founder

Approximately 250 years ago, Samuel Johnson said, “The next best thing to knowing something, is knowing where to find it.”

This is quite a fitting quote from the author of A Dictionary of the English Language and equally fitting today when it comes to understanding your digital risk.

There’s a great deal of intelligence organisations can find on the deep and dark web.  

Credit card numbers, bank account information, patient information and intellectual property are widely known to be for sale on forums.

Now some of the intelligence is more eye opening.

We’re seeing W-2 forms, and employee credentials available, making any organisation ripe for tax fraud or account takeover, respectively.

One of the most popular marketplaces on the dark web for such information is AlphaBay.

Not only is information related to a company’s assets available, but information about new techniques to compromise targets is for sale as well.

One of the latest is a tool to bypass SMS account verification, making multi-factor authentication that relies on SMS vulnerable.  

On such forums, you can also find configuration files for credential stuffing tools, like Sentry MBA, that is created for account takeover of specific companies.

There are dozens of marketplaces on the dark web and competition for business is steep.

In fact, some less popular marketplaces offer botnets devised to spam AlphaBay users with advertisements or special promotions in an attempt to entice them to switch forums.

Not all dark web sources are as readily accessible as AlphaBay, of course.

Some require human analyst expertise to also gain access to closed sources to get the most relevant view of the risks.

But for all the notoriety of these marketplaces, it is also important to remember that criminal activity isn’t limited to the dark web, particularly given the fact that some countries don’t extradite cybercriminals.

With minimal consequences, bad actors have no incentive to hide.

As a result, cybercrime is an Internet-wide problem, almost equally present on the deep and open web.

Deer.io is a prime example.

This all-in-one outsourced online shop provides hosting, design (based on WordPress-like templates) and a payment solution.

Additional items for sale on the marketplace include:

  • Bot-registered social media accounts (usually sold in bulk), typically with the intent of supporting social media spam and artificially increasing the popularity of other accounts/posts.
  • Stolen, legitimate social media accounts, which are advertised in small quantity but at higher prices compared to bot-registered accounts
  • “Coupons” to services that artificially increase the popularity of social media accounts or posts
  • Stolen accounts from other services including banks, payment, and gift and loyalty cards
  • Dedicated servers and domain names

The point is that criminal forums exist everywhere so focusing only on the dark web won’t give you a comprehensive view of your digital risk.

Furthermore, it isn’t enough to simply detect mentions of company assets and concerns.

You need context behind the information you see posted to have a better understanding of the actual risk to your organisation.

This requires a combination of technology and people.

Automated collection technology can provide visibility into incidents with context, as they happen, wherever they happen – across the open, deep and dark web.

For example, being able to see previous posts by other users on the marketplace on the same thread or post can provide a deeper understanding of how your company, employees or customers may be impacted.

It can also provide an overview of the user in question, with their name, data joined, activity levels and reputation.

Data scientists and intelligence experts are able to gain access to some closed sources that collection technology alone can’t penetrate and they need to be involved in qualifying the data collected.

With enhanced analytic capabilities and additional context, they can help determine the potential impact to the organisation, a possible timeline of events, and recommended action.

A comprehensive assessment of your digital risk starts with knowing where to find it.

With an approach that combines technology and human experts looking across the open, deep and dark web, you can understand not only where and when you are mentioned online, but also why, by whom and the likely impact on your organisation.

This breadth and depth of coverage are essential to protect against threats associated with forums and marketplaces and, ultimately, to formulate a successful digital risk management strategy.

Written by Alastair Paterson, Digital Shadows CEO and co-founder

Story image
Creating private data regulations for employees
Whether employees are hired on a part-time or full-time basis, everyone must know about data privacy regulations. Everyone needs to be responsible for keeping the organisation’s data secure. More
Story image
Women in cybersecurity – what is holding us back?
A robust and diverse workforce with wide-ranging skills and depth of experience is essential for providing balance, safety and continuity to both the industry and countries at large. More
Story image
Unbound seeks channel growth with new partner programme
Those who sign up will have access to Unbound’s security solutions, sales and partner enablement, deal registration and partner portal.More
Story image
Financial institutions in APAC region to invest millions in fraud prevention
"The pandemic is creating a lot of uncertainty, but the majority of FIs in APAC recognise that an end to end fraud management platform is strategic to differentiating themselves from the highly disruptive landscape they are playing in."More
Story image
Acronis expands global data centre network, including new facilities in NZ
The expansion ensures that the full range of Acronis Cyber Protection Solutions will be available to partners and organisations around the world.More
Story image
Gartner reveals the top strategic tech trends for 2021
“CIOs are striving to adapt to changing conditions to compose the future business - this requires the organisational plasticity to form and reform dynamically. Gartner’s top strategic technology trends for 2021 enable that plasticity.”More