According to ITProPortal, the cybercrime economy could be larger than Apple, Google and Facebook combined. The industry has matured into an organized market place that is almost certainly a lot more lucrative than the drug trade.

Criminals use revolutionary and state-of-the-art tools to steal facts from big and modest organizations and then either use it themselves or, most typical, sell it to other criminals through the Dark Internet.

Small and mid-sized businesses have come to be the target of cybercrime and information breaches since they do not have the interest, time or money to set up defenses to shield against an attack. A lot of have thousands of accounts that hold Private Identifying Information and facts, PII, or intelligent house that could contain patents, research and unpublished electronic assets. Other compact enterprises operate straight with larger organizations and can serve as a portal of entry substantially like the HVAC business was in the Target information breach.

Some of the brightest minds have created inventive approaches to prevent valuable and private information from being stolen. These facts security programs are, for the most part, defensive in nature. They basically put up a wall of protection to hold malware out and the details inside protected and safe.

Sophisticated hackers discover and use the organization’s weakest links to set up an attack

Unfortunately, even the finest defensive programs have holes in their protection. Here are the challenges each organization faces according to a Verizon Information Breach Investigation Report in 2013:

76 % of network intrusions explore weak or stolen credentials
73 percent of on the internet banking users reuse their passwords for non-monetary sites
80 percent of breaches that involved hackers applied stolen credentials
Symantec in 2014 estimated that 45 percent of all attacks is detected by conventional anti-virus meaning that 55 percent of attacks go undetected. The outcome is anti-virus software program and defensive protection programs can not maintain up. The undesirable guys could currently be inside the organization’s walls.

Smaller and mid-sized firms can endure greatly from a information breach. Sixty percent go out of small business within a year of a information breach according to the National Cyber Security Alliance 2013.

What can an organization do to shield itself from a data breach?

For quite a few years I have advocated the implementation of “Ideal Practices” to safeguard personal identifying information inside the enterprise. There are standard practices each organization should really implement to meet the specifications of federal, state and business guidelines and regulations. I’m sad to say very few tiny and mid-sized businesses meet these standards.

The second step is something new that most businesses and their techs haven’t heard of or implemented into their protection programs. It requires monitoring the Dark Net.

The Dark Net holds the secret to slowing down cybercrime

Cybercriminals openly trade stolen facts on the Dark Internet. It holds a wealth of details that could negatively impact a businesses’ existing and potential clientele. This is where criminals go to buy-sell-trade stolen data. It is uncomplicated for fraudsters to access stolen information and facts they require to infiltrate small business and conduct nefarious affairs. A single data breach could put an organization out of enterprise.

Thankfully, there are organizations that continuously monitor the Dark Web for stolen information 24-7, 365 days a year. Criminals openly share this information and facts by way of chat rooms, blogs, websites, bulletin boards, Peer-to-Peer networks and other black industry web sites. They determine information as it accesses criminal command-and-manage servers from multiple geographies that national IP addresses can’t access. The quantity of compromised data gathered is outstanding. For instance:

Millions of compromised credentials and BIN card numbers are harvested each month
Approximately one million compromised IP addresses are harvested just about every day
This information and facts can linger on the Dark Internet for weeks, months or, occasionally, years just before it is applied. An organization that monitors for stolen information and facts can see just about quickly when their stolen information and facts shows up. The next step is to take proactive action to clean up the stolen information and facts and stop, what could come to be, a data breach or enterprise identity theft. The data, primarily, becomes useless for the cybercriminal.

What would take place to cybercrime when most small and mid-sized corporations take this Dark Web monitoring seriously?

The effect on the criminal side of the Dark Internet could be crippling when the majority of companies implement this plan and take benefit of the facts. The target is to render stolen details useless as speedily as attainable.

There won’t be substantially influence on cybercrime until the majority of modest and mid-sized enterprises implement this type of offensive action. Cybercriminals are counting on pretty few organizations take proactive action, but if by some miracle firms wake up and take action we could see a main impact on cybercrime.

Cleaning up stolen credentials and IP addresses is not complex or difficult once you know that the information and facts has been stolen. It really is the enterprises that never know their facts has been compromised that will take the most significant hit.

Is deep web onion to slow down cybercrime? What do you this is the ideal way to protect against a data breach or business identity theft – Solution one: Wait for it to come about and react, or Option two: Take offensive, proactive methods to discover compromised info on the Dark Net and clean it up?