According to ITProPortal, the cybercrime economy could be larger than Apple, Google and Facebook combined. The industry has matured into an organized market place that is most likely far more profitable than the drug trade.

Criminals use revolutionary and state-of-the-art tools to steal data from massive and compact organizations and then either use it themselves or, most popular, sell it to other criminals by means of the Dark Web.

Modest and mid-sized organizations have become the target of cybercrime and information breaches due to the fact they do not have the interest, time or funds to set up defenses to guard against an attack. Quite a few have thousands of accounts that hold Personal Identifying Info, PII, or intelligent house that may well include things like patents, research and unpublished electronic assets. Other smaller firms perform straight with larger organizations and can serve as a portal of entry significantly like the HVAC organization was in the Target information breach.

Some of the brightest minds have developed creative ways to protect against precious and private info from being stolen. These information safety applications are, for the most element, defensive in nature. They basically place up a wall of protection to preserve malware out and the information and facts inside protected and secure.

Sophisticated hackers find out and use the organization’s weakest hyperlinks to set up an attack

However, even the finest defensive programs have holes in their protection. Here are the challenges each organization faces according to a Verizon Information Breach Investigation Report in 2013:

76 percent of network intrusions discover weak or stolen credentials
73 % of on the net banking customers reuse their passwords for non-financial web sites
80 percent of breaches that involved hackers utilized stolen credentials
Symantec in 2014 estimated that 45 % of all attacks is detected by conventional anti-virus which means that 55 percent of attacks go undetected. The outcome is anti-virus computer software and defensive protection applications can’t preserve up. The undesirable guys could currently be inside the organization’s walls.

Small and mid-sized enterprises can suffer significantly from a information breach. Sixty percent go out of organization inside a year of a information breach according to the National Cyber Security Alliance 2013.

What can an organization do to shield itself from a data breach?

For many years I have advocated the implementation of “Ideal Practices” to shield personal identifying facts within the enterprise. There are standard practices every business enterprise must implement to meet the needs of federal, state and market rules and regulations. I’m sad to say quite few compact and mid-sized firms meet these standards.

The second step is something new that most corporations and their techs have not heard of or implemented into their protection applications. It includes monitoring the Dark Internet.

The Dark Internet holds the secret to slowing down cybercrime

Cybercriminals openly trade stolen information on the Dark Internet. It holds a wealth of information that could negatively impact a businesses’ current and prospective clients. This is exactly where criminals go to purchase-sell-trade stolen data. dark web is quick for fraudsters to access stolen details they need to infiltrate business and conduct nefarious affairs. A single information breach could place an organization out of enterprise.

Fortunately, there are organizations that continuously monitor the Dark Internet for stolen information 24-7, 365 days a year. Criminals openly share this info by means of chat rooms, blogs, websites, bulletin boards, Peer-to-Peer networks and other black market web-sites. They determine data as it accesses criminal command-and-handle servers from numerous geographies that national IP addresses cannot access. The quantity of compromised info gathered is amazing. For example:

Millions of compromised credentials and BIN card numbers are harvested every month
Around one particular million compromised IP addresses are harvested every single day
This information can linger on the Dark Web for weeks, months or, sometimes, years prior to it is used. An organization that monitors for stolen information can see virtually quickly when their stolen information and facts shows up. The subsequent step is to take proactive action to clean up the stolen information and avoid, what could come to be, a data breach or company identity theft. The information and facts, basically, becomes useless for the cybercriminal.

What would occur to cybercrime when most little and mid-sized organizations take this Dark Web monitoring seriously?

The effect on the criminal side of the Dark Web could be crippling when the majority of companies implement this system and take advantage of the information and facts. The objective is to render stolen data useless as speedily as doable.

There will not be substantially effect on cybercrime till the majority of compact and mid-sized businesses implement this sort of offensive action. Cybercriminals are counting on pretty couple of enterprises take proactive action, but if by some miracle enterprises wake up and take action we could see a important effect on cybercrime.

Cleaning up stolen credentials and IP addresses is not complicated or hard as soon as you know that the information and facts has been stolen. It is the organizations that don’t know their information and facts has been compromised that will take the greatest hit.

Is this the finest way to slow down cybercrime? What do you this is the best way to shield against a data breach or enterprise identity theft – Option 1: Wait for it to take place and react, or Selection two: Take offensive, proactive actions to find compromised info on the Dark Internet and clean it up?