Being mentioned on the Dark Web makes a company far more likely to face cyberattacks
Hackers are planning their attacks on dark web forums
Just being mentioned on the dark web makes a company far more likely to suffer a cyberattack, new research has claimed.
A report from Searchlight Cyber and the Marsh McLennan Cyber Risk Intelligence Center looked to see if the presence of data relating to an organization on the dark web increases risk of cyberattacks.
The ‘dark web’ is the part of the internet that cannot be accessed via a browser in a usual manner, and is generally used by cybercriminals to share resources, sell goods and services, and communicate.
Combined sources for more risk
Analyzing Searchlight’s dark web dataset against a sample of 9,000+ organizations with an overall breach rate of 3.7% between 2020 and 2023, the report found a significant correlation - if a dark web mention contains compromised users, there is 2.56 times higher chance of that company being struck by a cyberattack.
The mention of an organization or data related to an organization on a dark web market increases the likelihood of a cyberattack 2.41 times. Also, the mention of an organization or data related to an organization on plain-text repositories increases the chance 1.88 times.
To make matters worse, combining multiple sources provides an even stronger indication of increased risks.
“If security teams can identify their exposure on the dark web they have a huge opportunity to proactively act, adjust their defenses, and effectively stop attacks before they are launched by cybercriminals,” commented Ben Jones, Co-Founder and CEO of Searchlight Cyber.
Are you a pro? Subscribe to our newsletter
Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!
More from TechRadar Pro
- What is the dark web?
- Here's a list of the best firewall software around today
- These are the best endpoint security tools right now
Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.