The Kaspersky Digital Footprint Intelligence team has discovered nearly 40,000 posts on the dark web (websites that are not publicly accessible and anonymous) over the past two years regarding the sale of internal company information.
These posts are created by cybercriminals to buy, sell, or distribute data stolen from various companies through cyberattacks.
The number of posts offering access to company infrastructure has increased by 16% year-on-year. Worldwide , third-party companies are frequently mentioned in dark web posts related to the sale of data or access.
According to observations by experts at Kaspersky Digital Footprint Intelligence, there are an average of 1,731 dark web messages per month regarding the buying, selling, and distribution of internal company databases and documents. From January 2022 to November 2023, there were a total of nearly 40,000 messages.
Another type of data available on the dark web is access to a company's infrastructure, allowing cybercriminals to purchase available access to a company, facilitating the optimization of their attacks.
Over 6,000 dark web messages advertised similar deals between January 2022 and November 2023. Currently, cybercriminals are providing increasing access, with the corresponding average monthly number of messages rising 16% from 246 in 2022 to 286 in 2023.
To avoid threats related to data breaches, Kaspersky recommends: Continuously monitoring the dark web to detect fake posts related to breaches, as well as tracking the increase in malicious activity; developing comprehensive incident response plans that include designated teams, communication channels, and protocols to enable rapid and effective handling of such incidents when they occur…
KIM THANH
Source
Comment (0)