The dark web is a hive of cybercrime activity used to sell personal data, cybercrime tools, and company intelligence. A report released earlier this year by the Digital Shadows Photon Research team found more than 15 billion stolen credentials from 100,000 data breaches available to cybercriminals on the dark web.  Knowing what you are up against is an important part of fighting cybercrime.

What is the Dark Web?

The dark web is a part of the internet that is not indexed by search engines. It is a small section of the internet that requires special programs or technologies to access as nearly all traffic is encrypted. It is a treasure trove for stolen information that includes personal information from credit card numbers to health records. For companies, information shared on the dark web can be devastating. The average cost of a data breach in 2020 is $3.86 million, according to a report from IBM and the Ponemon Institute

Why Passwords are Problematic

While a strong password policy can help protect your organization, employees are likely to get careless and reuse passwords across multiple websites and applications. Hackers often use phishing techniques to gain access to an email account. Once an account is compromised, attackers will work diligently to see what else they can gain access to before they are found and locked out. An email compromise could lead to many other attacks on an organization, including ransomware attacks, stealing customer or employee information, transferring funds, or even stealing intellectual property. Some attackers like to share these exploits on the dark web and other drop locations. When this happens, organizations need a way to know their information is on the dark web. This is where dark web monitoring comes in.

What is Dark Web Monitoring?

Dark web monitoring actively monitors the dark web and alerts organizations when an employee’s credentials or passwords have been compromised. This can include email domains, IP addresses, or personal email addresses. Staying in the know about any potential malicious activity helps your organization go on an offensive defense by changing passwords for accounts found, notifying users of the compromise, and having them be on higher alert for potential phishing attacks.

Unfortunately, hackers are constantly finding ways to steal company data. Learn more about how LBMC Technology Solutions helps companies scale up their security resources here. If you would like more information about dark web monitoring, contact us today.