I would recommend that anyone interested in the serious study of criminal activity on the dark web should pick up a copy of James Martin’s Drugs on the Dark Net:...
DDoS extortion and ransomware attacks have featured heavily in the headlines recently. But the practice of obtaining money through threats is not new.
Like any business, cybercriminals offering criminal services need to develop and maintain a brand and reputation in order to attract customers.
It’s been said that money makes the world go round. People expect to be paid for their time, goods, and services, and cyber criminals are no different.
Last month, TalkTalk disclosed that they been the victim of a cyber attack on its website.
There are perhaps tens of thousands of forums and sites in the visible and dark webs dedicated to criminal activity.
In 2015 we are seeing new trends emerge with respect to Exploit Kits in the wild. These trends are particularly interesting in that they suggest that the frequency of 0-day exploits made available in these kits is growing while the time to integrate said 0-days from the time of discovery to inclusion in the kits is shrinking rapidly.
Extortion is nothing new for organised crime. For centuries, gangs have been operating protection rackets and kidnappings to successfully extract ransom money from their victims. And as with many things in modern life, these old techniques have been successfully brought over to the cyber realm.
A look at emerging markets and services, specifically at ransomeware-as-a-service.