Free Guide
16 Questions You MUST Ask Before Hiring Any IT Company
The dark web has become a mainstream topic in recent years due to a significant rise in illegal activities on several dark web forums. A likely explanation for this sudden rise is the increased bandwidth of The Onion Router (Tor) browser, savvier cyber-criminals and the continued success of cybercrime. The dark web holds the world’s third-largest economy, and that economy is growing, which is bad news for businesses.
What is the dark web?
The world wide web (commonly known as the web) comprises three sections: the Surface Web, the Deep Web, and finally, the Dark Web. The contents of the surface web, which consist of 10% of the total content of the web, can be accessed using standard search engines such as Google, Bing and others. The deep web consists of the other 90% of the web’s content hidden is typically gated behind a password or paywall, such as company intranets, online banking and most social media. Regular search engines cannot index the information on the deep web. You need the Tor browser to navigate the extent of the Dark Web by cloaking them with a veil of anonymity.
Take a look at traffic patterns on The Onion Router (TOR), the most popular dark web browser:
Like the Bermuda Triangle – a small region in the western part of the North Atlantic Ocean where many aircraft and ships are said to have disappeared – the dark web is also a tiny and infamous portion of the deep web, which is a hotbed of all the nefarious activities. For a layman, it is an unexplorable area, but for wicked cybercriminals, it is their workplace — a lucrative space for money-making. Cybersecurity Ventures predicted that the dark web would inflict about $6 trillion in damages worldwide in 2021, and they were on the mark.
What happens on the dark web?
Although the dark web offers a legitimate space for identity protection to journalists and political bloggers living in countries with the threat of censorship and political imprisonment, those aren’t the only people using the dark web. Dark web forums are hotbeds of criminal activity. Popular activities on dark web sites and forums include trafficking illegal goods, guns, drugs, intellectual property, stolen data and cybercrime tools and services like black hat hacking.
Among the services bought and sold on the dark web, 90% are from people looking to hire hackers who can infiltrate websites and steal databases. Another 7% of people on the dark web are hackers who offer Hacking as a Service (HaaS) to potential buyers. Many of these service providers provide exciting offers to their clients as there has been a significant rise in the forums offering HaaS in recent years. The remaining 4% of dark web traffic comes from the people frequenting dark web forums for hacking services related to website hacking and malicious code injection and meeting with like-minded professionals.
Cybercrime as a Service is a booming industry
Cybercrime as a Service (CaaS) is a booming business with many branches including Phishing as a Service (PhaaS) and Ransomware as a Service (RaaS). Hiring cybercrime contractors is cheap and easy. PhaaS follows the Software as a Service model (SaaS) that many legitimate tech companies use. In a PhaaS scenario, bad actors engage cybercriminals developers to cook up the elements of a phishing campaign like false sign-in page development, website hosting, spoofed emails and credential parsing. PhaaS operators can also perform a wide variety of smaller a la carte services like hosting a single phishing site or providing a template for a one-time send. A PhaaS group’s subscription prices vary dependent on a host of factors, but in general, the service can cost about $800 per month. That’s a worthy and affordable investment for ransomware groups looking to score hundreds of thousands of dollars in ransom money every month.
While many assume highly skilled programmers are behind ransomware or other malware, many cybercrime groups don’t write their own code; they might not even have personnel on board who know how to write it. Instead, these days malware is commonly packed as plug-and-play software complete with a user manual. An estimated 300,000 thousand new pieces of malware are created daily. Malware as a service (MaaS) and its offshoot Ransomware-as-a-Service(RaaS) is a business model that offers the usage of ‘pay-and-use’ malware for conducting cybercrime. The dark web is set to be a significant contributor to the rise in global ransomware damage cost, which is predicted to exceed $265 billion annually by 2031.
It’s cheap and easy to buy stolen data
With the significant growth of the dark web, the dark web markets have everything from social media credentials, business credentials, and critical business information to credit card details. According to the Dark Web Price Index 2022, cybercriminals can acquire credit card details and online banking login information for as little as $50 from various dark web marketplaces, forums, and websites. The same research revealed that hackers on dark web forums sell a variety of stolen data, such as:
Scammers can buy all the necessary credit cards details, such as CVV number, card number, and associated dates, enabling them to perpetrate digital fraud quickly and easily. With the rapid growth of the cryptocurrency market, many dark web forums also sell digital wallets of platforms such as LocalBitcoins and Coinbase for less than $250. Credentials are also a hot commodity. Cybercriminals can quickly get their hands on vast quantities of credentials that have been snatched or stolen in cyberattacks, sometimes without spending a dime. Researchers at Digital Shadows have determined that right now there are 24.6 billion complete username and password sets available on the dark web.
Source: ID Agent