Dark Web Monitoring
Protecting Your Company’s Most Valuable Asset – Your Digital Identity
The Dark Web is the part of the Internet that is only accessible by means of special software which allows users and website operators to remain anonymous or untraceable. The fact that users and web operators are anonymous is why criminals are attracted to it. They can perpetrate crimes with impunity.
How do my business email/password credentials end up for sale on the Dark Web?
There are numerous ways that a hacker can gain credentials from business users. And sometimes this is not even the direct result of the business being compromised. Rather, a business or service that the user frequents, such as Staples, Rogers, Bell, RBC, TD Bank, Dropbox, Citrix, Amazon, Facebook, LinkedIn, Gmail, etc. suffers a massive breach and very quickly millions of employee credentials are being bought and sold on the Dark Web.
How could hackers exploit my credentials if I use variations of them for different purposes?
Most people use the same passwords for multiple purposes. They also use variations of the same password, and often use these passwords for both business and personal reasons. Thus a compromise of a personal nature can easily become a compromise to the business as well.
Can I easily find out if employee credentials from my company have been compromised and are circulating on the Dark Web?
Yes. Watsec has determined that working with our Dark Web monitoring partner, ID Agent, is the most comprehensive and practical way to determine if employee credentials have been leaked. They offer Watsec the ability to check what is circulating on the Dark Web without actually going directly into it.
How is this service kept up to date?
Watsec’s Dark Web monitoring service is constantly scouring millions of sources including botnets, criminal chat rooms, peer-peer networks, malicious websites and blogs, bulletin boards, illegal black market sites, and other private and public forums. Every day thousands of new credentials are appearing on the Dark Web.
Can I do anything to mitigate the damage of compromised credentials after they are stolen or is it too late?
Absolutely. Damage control can and should be done as soon as possible. Even credentials exposed a number of years earlier can still have high value to hackers. Most users do not change passwords frequently, and when they do they often use a variation of the original password. Hackers exploit this tendency most of us have.
What is the best approach to quickly learn about newly compromised credentials before damage is done?
Can this be accomplished affordably on an ongoing basis?
Contact Watsec to find out more about the Dark Web monitoring service that we are offering to all of our clients and partners. A few years ago only the largest organizations could hope to find out what was being compromised. Now, our Dark Web monitoring service partner enables us to know within 24 hours whether credentials from your business’ email Domain have been freshly exposed to hackers. We then notify you to discuss a remediation plan to reduce your business exposure. We can also monitor specific email addresses, including personal addresses of specific employees such as members of your Board, C-level executives, etc.