Organizations with exposure to dark web are more vulnerable, the report reports
Compromised accounts and market lists of Double cyber -fraud risks
Cumulative dark web sources increase organizational cyber security threats
A study Through searchlight cyber in collaboration with Marsh McLennan Cyber Risk Intelligence Center, a direct correlation has revealed between exposure to dark web and increased risks in the field of cyber security.
The analysis of more than 9,000 organizations gave insight into how data on the dark web considerably increases the risk of cyber attacks, especially against companies without sufficient protection.
That is why, by monitoring dark web exposure, companies can better understand and reduce these risks, protect their data and reduce the opportunities for expensive infringements.
Dark web information and cyber risks
The study analyzed dark web information sources against the losses of cyber insurance reported from 2020 to 2023 and found an infringement percentage of 3.7% for four years, suggesting that organizations with any form of dark web exposure were a much higher risk to experience a cyber incident .
Each of the nine nine -d afterered web information sources, such as compromised user accounts, dark web market lists and outgoing dark web traffic, show statistically significant correlations with the risk of cyber security. The data points not only emphasize individual risk factors, but also emphasize the compound risk that emerges when several dark web sources act on each other.
Moreover, specific dark web activity increases the chance of cyber attacks. The presence of compromised user accounts linked to an organization turned out to increase the risk of an infringement by 2.56 times. Dark Web Market Listings, where an organization or its data is mentioned, increased the risk by 2.41 times, while the traffic between the network of an organization and the dark web resulted in an increased risk of 2.11 times.
Other forms of exposure, such as Open-Source Intelligence (OSINT) results and leaks of the sites sites, have also contributed to increased risks. Plaats results showed an increase of 88% in the likelihood of an incident, while the OSINT results correlated with a 2.05 -time risk. The presence of the data of an organization in forums, telegram chats and dark web pages also contributed to the increased risks, although to a slightly lesser extent.
It is also important for organizations to consider multiple sources of dark web information together. For example, an organization that has been identified in five categories with a high risk turned out to be 77% more likely to infringe a cyber security compared to organizations without such exposure. That is why a combination of sources such as sticky results, osint and market lists offered the strongest indication of cyber risks.
Organizations are therefore encouraged to accept dark web monitoring practices. Organizations are also encouraged to improve cyber security practices to defend themselves against the risks of dark web exposure, including guaranteeing strong password policy, using multi-factor authenticator apps and maintaining up-to-date security protocols to the risk to minimize accounts on compromised accounts.
In addition, following regular cyber security training for employees can help organizations to better detect and respond to phishing attempts or other malicious activities, which are often initiated through compromised references on the Dark Web.
“The core finding of the analysis of Marsh McLennan is that all data related to your organization on the dark web are strongly correlated with your chance of a cyber attack,” ald dark web forums, market places and in hidden communication channels, and the study has the risk of Each of these areas of dark web exposure for the first time quantified. “
“If security teams can identify their exposure on the dark web, they have a huge opportunity to act proactively, adjust their defense and attack effectively before they are launched by cyber criminals. The first step is to get visibility: to understand where the threat on the dark web comes from, where the organization becomes the target, and to constantly control itself to give itself the best chance of identifying a cyber security incident and to stop. “
Maybe you like it too