The study, underwritten by Bromium, offers
Dr. McGuire's research provides details of first-hand intelligence gathered from covert discussions with dark net vendors, alongside analysis from a panel of global industry experts across law enforcement and government. The study found that 4 in 10 dark net vendors are selling targeted hacking services aimed at FTSE 100 and Fortune 500 businesses. The dark net has become a haven for custom-built, targeted malware, with a 20% rise in the number of dark net listings with a direct potential to harm the enterprise since 2016 and threats tailored to specific industries or organisations outnumbering off-the-shelf varieties 2:1.
Furthermore, access to corporate networks is sold openly, with 60% of vendors approached by researchers offering access to more than ten business networks each. Of the dark net vendors who were engaged, 70% invited researchers to talk on encrypted messaging applications, like Telegram, to take conversations beyond the reach of law enforcement. More than 40% of attempts by researchers to request dark net hacking services targeting companies in the Fortune 500 or FTSE 100 received positive responses from dark net vendors.
Dr. Mike McGuire said: "Almost every vendor offered us tailored versions of malware as a way of targeting specific companies or industries. The more targeted the attack, the higher the cost, with prices rising even further when it involved high-value targets like banks. The most expensive piece of malware found was designed to target ATMs and retailed for approximately $1,500. These services typically come with service plans for conducting the hack, with prices ranging from $150 to $10,000 depending on the company involved and the extent to which the malware was customised for targeted attacks.
0 comments:
Post a Comment