Are you afraid of the dark (net)?

1 May 2017 Editor's Choice, Cyber Security

IT and business media are increasingly full of the threats posed by cybercrime. Based on my own extensive experience the threat is not exaggerated.

Many of the threats are underpinned by something called the Dark Web, or Dark Net. This term refers to an overlay network that exists in parallel to the Internet, which can only be accessed using specific software like a TOR (an application browser used on the dark web) browser, configurations or authorisation.

Dark nets are quite transient, appearing and disappearing at unexpected times. They contain a vibrant and thriving e-commerce sector in which participants trade in illegal goods and services. These markets offer goods like drugs, counterfeit money, stolen IDs, credit card details, and website and corporate access credentials.

Where do these thriving markets in this hidden cyber world get the goods they are selling in such quantities?

The answer is from you, or your network, often through a compromised device. Upon investigation, it is also clear that in almost every incident, the user and the people responsible for managing the computers and networks did not even know they had been compromised. In other words, they do not know to take post-factor remedial action.

An additional factor is that even a person with limited experience can quite easily access the tools and services needed to hack into sensitive data and credentials. In uncertain times, people look for new ways to make a little bit extra. These amateur hackers are compounding the already severe problem posed by criminal syndicates.

More attacks, more loot

As a result, we are seeing an unprecedented rise in the type and number of attacks on inexperienced and ill-prepared ecosystem users in an attempt to steal information or access records.

Here’s a typical scenario: a user innocently clicks on a link to view an ‘interesting’ news article. He or she is taken to a compromised advertising site and a piece of malware is surreptitiously delivered onto the user’s device. When this happens, users need to know instantly that something untoward has happened so they can react before too much damage is done.

The latest malware attacks typically do one or more of the following:

• Check Internet connection and security settings.

• Download and run malicious files or ransomware.

• Report status to the author or attacker.

• Execute instructions on the devices they have penetrated.

• Automatically upload information taken from devices and the networks to which they are connected.

• Change administration privileges and validate security certificates.

The only way to counteract these and similar threats is to commence with an approach and understanding that all networks are dangerous. By adopting this approach, you promote a culture of ‘secure thinking’, cognisance of the dangers which in turn leads to responsible usage by all staff and network administrators. But it is vital to also ensure that you have real-time visibility of anomalous activities on both the Internet and your devices connected to it.

Ask yourself, or better still, find out who can support you on your journey in terms of becoming a more informed member of the human firewall chain and ensure they ask:

• Do you know whether a new piece of software (or malware) has been loaded onto your device? Or any device on your network? Is data being copied to an external source in the background?

• Are new files being run that are collecting data in a central place on or off a trusted part of your environment?

If you do not have immediate visibility into unauthorised changes, you are most probably already at risk or even worse, are already a member of a growing member of the coalition of the compromised.

For more information contact J2 Software, +27 (0)11 794 8301, john@j2.co.za, www.j2.co.za



Credit(s)




Share this article:
Share via emailShare via LinkedInPrint this page



Further reading:

Using fingerprint recognition under COVID-19
Issue 4 2020, Suprema , Editor's Choice
COVID-19 is raising questions about how safe fingerprint authentication really is, as touching sensors can potentially spread viruses.

Read more...
From the editor's desk: The worst of times
Issue 4 2020, Technews Publishing , Editor's Choice
While the world is going through a tough time at the moment with the pandemic and seemingly endless economic problems, Hi-Tech Security Solutions and Technews Publishing has had an additional burden of ...

Read more...
Leaders in risk & security: Assessing threat, risk and vulnerability
Issue 4 2020, Sentinel Risk Management, Technews Publishing , Editor's Choice
After serving a 27-year ‘life sentence’ in the military, Andy Lawler has spent over ten years in the private security industry as a risk specialist.

Read more...
IDEMIA launches VisionPass facial recognition
Issue 4 2020, IDEMIA , Editor's Choice
IDEMIA has launched its VisionPass facial recognition solution in Africa, offering secure and contactless access control to companies of all sizes and in all markets.

Read more...
BioCote antimicrobial technology
Issue 4 2020, Salto Systems Africa , Editor's Choice
BioCote helps to reduce the spread of microbes around a building as microbes are not transferred from door to door and surface to surface.

Read more...
Customised personal security app for your workforce
Issue 4 2020, Technews Publishing , Editor's Choice
Zecure takes the idea of app-based security to the business world, providing employees with a suite of applications on hand to cater to their personal security needs.

Read more...
Fulcrum Biometrics expands into Africa
Issue 4 2020, Fulcrum Biometrics , Editor's Choice
Fulcrum Biometrics Southern Africa, a subsidiary of Fulcrum Biometrics in Texas, USA, has been launched in Johannesburg with a number of industry stalwarts at the helm.

Read more...
Paying the ransom doubles cost of recovery
Issue 4 2020 , Editor's Choice
Paying cybercriminals to restore data encrypted during a ransomware attack is not an easy and inexpensive path to recovery.

Read more...
Coping with COVID-19
Issue 4 2020, Sentinel Risk Management, Xone Integrated Security, ISF SFP, Technews Publishing , Editor's Choice
Hi-Tech Security Solutions spoke to four security service providers about their new business reality and how they are coping with the stringent regulations.

Read more...
Milestone forges ahead globally and in Africa
Issue 4 2020, Milestone Systems, Technews Publishing , Editor's Choice
Hi-Tech Security Solutions was given the opportunity to speak to Milestone’s Kenneth H. Petersen and Anders Johansson about the company’s annual performance and its regional plans.

Read more...