Have you ever wondered what the Dark Web is all about? How does information end up there and what kind of information can you find there?
Let’s cover the different web levels:
(Surface) Web
The level where data is PUBLIC. Only 4% of the web consists of indexed public websites that are visible to all web users through ordinary search engines such Bing and Google.
Deep Web
The level where data is PRIVATE. The largest part of the internet is made of protected information and is only located and accessed by a direct URL or IP address. Typically, access to the deep web requires security access like password credentials.
That includes: web based applications, SharePoint, Teams, online banking, social media pages and profiles. It’s used for legit purposes. Most of us access the Deep Web every day.
Dark Web
The level where data is ANONYMOUS. Below the Deep Web is the part of the internet called the Dark Web. It’s a complex encrypted system that’s not visible to traditional search engines and can only be accessed by a special browser like Tor. Transactions, internet addresses, profiles, and locations, are totally anonymous, making it the perfect place for many illegal activities to happen. It’s not illegal by itself but that’s where criminal sites live.
Is it all bad? No. But it’s quite bad
There are several legit businesses operating on the Dark Web. Companies like Facebook and The New York Times are present on the Dark Web. It doesn’t mean it’s safe to do business there. The anonymity of the place attracts criminals trading illegal artifacts like guns, drugs and stolen data.
Everything has a price
Dark Web businesses have the same structure as any legit e-commerce business does, including ratings and reviews, shopping carts, and forums. Kits for scamming and phishing are sold for as little as $100 and stolen credentials to bank accounts can be found starting at $200 per account. The larger the available balance of an account, the higher its selling price. Credit card details are sold in bulk at reduced prices. Among the most valuable stolen credentials are keys that unlock privileged access to corporate networks, going for as much as $120,000.
How all this data ended up here
A 2021 study found that 85% of breaches involved the human element. Phishing was present in 36% of breaches. Furthermore, 61% of breaches involved credential data. 95% of organisations suffering credential-stuffing attacks had between 637 and 3.3 billion malicious login attempts through the year. The median for incidents with an impact was $21,659, with 95% of incidents falling between $826 and $653,587.
The takeaway? Prevention is still the best plan.
What your data is worth*
TV On Demand Credentials . . . . . . . . . . . . . $10
Scamming & Phishing Kits . . . Starting at $100
Bank Account Credentials . . . Starting at $200
Credit Card Information . . . Bulk sales available
Access to Corporate Network . . . . . . $120,000
*Average prices based on recent Dark Web studies.
61% of data breaches involved credential data
It won’t happen to your business. Until it does.
Whether by user negligence or as a result of hacking, the chances of data exposure are high.
The good news is that there are effective and affordable ways to prevent it.
See some examples below.
Cyber security solutions
Protect your business against internal and external threats with a comprehensive cyber security solution.
Dark web monitoring
Get constant monitoring to ensure your company’s data doesn’t find its way to the Dark Web without you knowing.
Security awareness training
Teach your team how to ensure the links they click and websites they visit are authentic and are not putting your business at risk.
Stay Cyber Safe.
Contact us (02) 9114 9920 or to find the right solution for your business.