IT Pro is supported by its audience. When you purchase through links on our site, we may earn an affiliate commission. Learn more

Strengthening cyber security in the age of the dark web

With the internet’s hidden recesses fuelling enterprise attacks, how can the channel boost security?

Dark Web

In their role as trusted advisors, channel partners are well-positioned to educate customers on new and emerging threats. One such threat is the theft of data, a much sought-after currency in today's digital world. Whether it's sensitive company data, employee records or customers' personally identifiable information (PII), all data has a value to cyber criminals.

A recent rise in data theft has been fuelled, in no small part, by the dark web, a dingy corner of the internet where stolen data can be bought and sold freely. But the dark web today does more than provide a trading post for data thieves; it actively enables cyber attacks by offering a variety of custom-built malware, network access tools and corporate espionage services to hackers.

Recent academic research shows the dark web has become a haven for custom-made, targeted malware, with threats tailored to specific industries or organisations outnumbering off-the-shelf varieties two to one. The enterprise, moreover, is directly in the firing line, with four in ten vendors selling targeted hacking services aimed at FTSE 100 and Fortune 500 businesses, with a 20% rise in the number of dark web listings with a direct potential to harm the enterprise since 2016.

The study discovered that access to corporate networks is sold openly - 60% of vendors approached by researchers offered access to more than ten business networks each. These include banking and finance, healthcare, ecommerce and education, as well as corporate networks. The methods for providing access vary - some involve stolen remote access credentials for sale for less than the price of a newspaper, while others involve backdoor access or the use of malware.

The relatively low cost and availability of these services mean that it's never been easier for hackers to launch a successful attack on an organisation. And, as we know, the fallout of a data breach can be devastating, causing untold financial and reputational damage. According to the Ponemon Institute, the average cost of a data breach in 2018 now exceeds $3.8 million. This, however, can also be seen as an opportunity for channel partners to help address the threats and differentiate themselves from other providers.

With such sophisticated and complex malware now easily available to hackers, it's vitally important that security-focused channel partners extend the conversation beyond the boundaries of traditional detection-based solutions, such as endpoint detection and response (EDR) and antivirus (AV), which can actually struggle to identify new threats.

In many instances, the kind of custom malware now available to cyber criminals will be unknown to conventional security systems and given a free pass to sail through undetected by the target network. Instead, channel partners need to help organisations adopt a layered security strategy that includes application isolation capabilities to contain threats. These capabilities can also generate in-depth threat telemetry that can be shared across security platforms to stop cybercriminals from obtaining persistent footholds in corporate networks.

Featured Resources

Accelerating AI modernisation with data infrastructure

Generate business value from your AI initiatives

Free Download

Recommendations for managing AI risks

Integrate your external AI tool findings into your broader security programs

Free Download

Modernise your legacy databases in the cloud

An introduction to cloud databases

Free Download

Powering through to innovation

IT agility drive digital transformation

Free Download

Recommended

HPE unveils new partner programme to boost XaaS practices
channel

HPE unveils new partner programme to boost XaaS practices

28 Jun 2022
Open source giant Red Hat joins HPE GreenLake ecosystem
automation

Open source giant Red Hat joins HPE GreenLake ecosystem

28 Jun 2022
HPE wins contract to provide The Home Depot with Aruba edge services
Network & Internet

HPE wins contract to provide The Home Depot with Aruba edge services

28 Jun 2022
Virgin Media O2 Business overhauls its approach to partner development
channel

Virgin Media O2 Business overhauls its approach to partner development

24 Jun 2022

Most Popular

Salaries for the least popular programming languages surge as much as 44%
Development

Salaries for the least popular programming languages surge as much as 44%

23 Jun 2022
The UK's best cities for tech workers in 2022
Business strategy

The UK's best cities for tech workers in 2022

24 Jun 2022
LockBit 2.0 ransomware disguised as PDFs distributed in email attacks
Security

LockBit 2.0 ransomware disguised as PDFs distributed in email attacks

27 Jun 2022