The going price on the Dark Web is $1 to $8 per credential. For less than some fancy coffees at a cafe a criminal can cripple your business or steal all your cash. But, how are your employee credentials exposed to start with?
Usually credentials are stolen from another internet service and not from the company that is being targeted. Studies over several years show that over 50% of adults use the same passwords for multiple online services. Some studies put the number at over 80%. Add to that the fact that employees often use their business password AND email for personal systems and the problem becomes much worse.
What can a criminal do with your (and your employees’) credentials?
Install Malware • Access Payroll Services, VPNs, Banking, and more such as Voice, CRM, or core ERP systems.
User names and passwords are the keys to the kingdom for criminals and it’s easy to by-pass a company’s defenses using hundreds or even thousands of credentials available on the Dark Web.
What to do?
Passwords are a twentieth-century solution to a modern-day problem. Unfortunately, user names and passwords are still the most common method for logging onto services including corporate networks, social media, e-commerce sites, and others.
While there is always a risk that attackers will compromise a company’s systems through advanced attacks, most data breaches exploit common vectors such as known vulnerabilities, unpatched systems, and careless employees. By using a range of tools including monitoring, data leak prevention, multi-factor authentication (MFA), and employee security training, executives can significantly reduce threats to their business from the Dark Web.
Many of your employees’ important credentials are most likely already available to criminals. RadiusBridge® deploys proactive and reactive systems to control internal data and limit future damage.