You are likely accustomed to the internet as you use it for business, shopping, browsing, research and lots of other activities. Yet there is a lot of other data that is transferred on the Internet such as transactional information, email and a variety of other types of information that never appears on the internet that you use. This is called the deep web.
Finally, there is a third type of web technology, called the Dark Web. This is where information is brokered, illegal operations are supported and is generally hidden from public view. Did you ever wonder what happens when there is a breach of personally identifiable information on the web? Well, that information ends up for sale on the Dark Web. Usually the information is sold in batches and the purchaser uses the information to extort money from the people whose data has been compromised.
Here is a real world scenario. LinkedIn experiences a breach and 21 million passwords are revealed. This information is brokered on the Dark Web and the purchaser composes an email starting with the user’s password and then indicating that they have been monitoring their computer and have recorded them viewing pages of a pornographic nature. The email goes on to say that the recipient must pay a certain amount of bitcoin in order for the perpetrator from revealing “the business” to all of the users contacts.
The only thing that may be true in the email is the password. But used in a context that may be plausible, it allows the perpetrator to monetize a list of passwords obtained on the Dark Web.
The information can also be used in conjunction with other publicly available information to build a user Identity leading to Identity theft. If you are someone that posts to social media often with default settings then it is easy to gather information about you and your family which can lead to more successful attempts to impersonate you or a family member.
Triella monitors your domain for breaches using a combination of automation and human analysts. When information is compromised relating to your domain and shows up for sale on the Dark Web, you are notified. You can then have the targeted user change their password(s) thereby making the information useless to the perpetrator, all before it can be exploited.
You don’t have to be a Triella client to receive monitoring alerts. It can be done for any domain anywhere in the world. If you are interested in Dark Web monitoring please contact Faraz at 647.426.1004 x227.
Charles Bennett is the Principal Consultant at Triella. We are a technology consulting company specializing in providing technology audits, planning advice, project management and other CIO-related services to small and medium-sized firms. Charles can be reached at 647.426.1004. For additional articles, go to our blog page. Triella is a VMware Professional Partner, Microsoft Certified Partner, Citrix Solution Advisor – Silver, Dell Preferred Partner, Authorized Worldox Reseller and a Webroot Reseller.
© 2020 by Triella Corp. All rights reserved. Reproduction with credit is permitted.