How the Dark Web enables access to corporate networks

Image: Getty Images/iStockphoto

The Dark Web is location to a thriving marketplace for cybercriminals who privation to bargain oregon merchantability amerciable and malicious goods and services. Advertisements and forum messages hawk everything from recognition cards and slope accounts to aesculapian records to relationship credentials to fake IDs to counterfeit products. But 1 of the astir lucrative items up for merchantability is web access.

SEE: The Dark Web: A usher for concern professionals (free PDF) (TechRepublic)

Getting the keys to an organization's full web tin easy pave the mode for a big of attacks, including malware, information exfiltration, firm espionage, and ransomware. A report released Wednesday by information supplier Positive Technologies looks astatine the selling of web entree connected the Dark Web and examines however this menace continues to grow.

To get the shot rolling, hackers tin snag web entree done a assortment of methods. Account compromises are ever a fashionable tactic, whether done regular idiosyncratic accounts, admin oregon domain accounts, and VPN oregon RDP (Remote Desktop Protocol) accounts.

For its report, Positive Technologies analyzed 10 fashionable Russian and English forums connected the Dark Web that supply entree to firm networks on with ads seeking hackers for prosecute oregon hacking partners. Over time, these forums person collected much than 8 cardinal registered users, much than 7 cardinal speech threads, and much than 80 cardinal messages.

Throughout the past fewer years, these forums person seen a dependable summation successful ads with each quarter, astir of them selling entree to firm networks that had already been breached. In 2020, Positive Technologies recovered 707 caller ads, 7 times the fig of caller ads discovered successful 2019. The archetypal 4th of 2021 unsocial revealed 590 caller ads. The measurement of caller ads successful hunt of partners and hackers for prosecute besides jumped, apt owed to the enlargement of ransomware spouse programs, according to the report.

Around $600,000 worthy of firm web entree is sold connected the Dark Web each quarter. Though that fig seems low, selling prices connected the Dark Web thin to beryllium cheap, and the mean outgo keeps going down. Further, specified inexpensive entree is often sold by amateur criminals who fearfulness the risks of really carrying retired an attack.

"Gaining entree is lone the archetypal measurement successful an attack, and adjacent novice attackers tin instrumentality this step," Positive Technologies expert Yana Yurakova said. "They are not definite that they volition beryllium capable to silently determination further on the network, and to monetize their efforts, they enactment up ready-made entree for merchantability connected the forum connected the Dark Web."

Still, the prices of web entree alteration depending connected a scope of factors, including the fig of computers to beryllium compromised, relationship privileges, the size of the company, the industry, and the target's gross and different fiscal aspects. In 1 illustration cited successful the report, a hacker offered VPN/RDP entree for 3 computers astatine a U.S. institution with yearly gross of $300,000 astatine a starting terms of $1,000.

Most of the companies with web entree for merchantability connected the Dark Web were successful the services, manufacturing and probe and acquisition sectors. The networks of concern companies and fiscal institutions fell little connected the database arsenic they thin to beryllium much hard and costly to hack. The acquisition present is that the close information does marque a quality arsenic criminals ever similar to people easier victims.

How tin organizations amended support themselves from having their web entree compromised and sold connected the Dark Web? To reply that question, Yurakova offers the pursuing thoughts:

• Remember that your enactment tin beryllium a target. Don't presume that highly qualified and motivated attackers won't people your enactment oregon that your institution is not absorbing to them.
• Set up the close security. Install information updates for your software. Use a beardown password policy. And instrumentality multifactor authentication for entree to captious resources. Additionally, usage modern accusation information tools that tin rapidly observe immoderate anomalies connected your network.
• Train your employees. Teach your company's employees the basics of accusation information truthful that they don't autumn for societal engineering attacks.
• Make definite your information unit is qualified. Review and amended the qualifications of your accusation information employees. You privation to guarantee that they tin efficaciously usage your information tools and cognize however to correctly respond to a information incident.

Also see

• What your idiosyncratic individuality and information are worthy connected the Dark Web (TechRepublic)
• Dark Web: A cheat expanse for professionals (TechRepublic)
• Zero spot security: A cheat expanse (free PDF) (TechRepublic)
• How to go a cybersecurity pro: A cheat sheet (TechRepublic)
• Social engineering: A cheat expanse for concern professionals (free PDF) (TechRepublic download)
• Comparison chart: VPN work providers (TechRepublic Premium)
• Online information 101: Tips for protecting your privateness from hackers and spies (ZDNet)
• All the VPN presumption you request to know (CNET)
• Cybersecurity and cyberwar: More must-read coverage (TechRepublic connected Flipboard)