Using the Dark Net as a Cybsersecurity Tool

Using the Dark Net as a Cybsersecurity Tool

August 27, 2018 Business Insurance and Risk Management, The Beacon Blog 0 Comments

The “Dark Net” is viewed correctly as a place for anonymous and frequently criminal activity. It therefore seems counterproductive to suggest that legitimate companies would want to go there. However, technology association ISACA recommends that with proper safeguards businesses should consider making it part of their cybersecurity measures.

What do companies have to gain?

  • The Dark Net is a place to gather intelligence including leaked corporate information.
  • Knowing what has been posted about it will help a company deal with it.
  • Monitoring hackers’ activity and conversations enables companies to plan a more effective defense.

Needless to say, companies enter the Dark Net at their own risk. If a company doesn’t have experienced IT professionals or a trustworthy third party service provider, they should hire a security specialist. Do not connect through a company network. Security measures including backups, disaster recovery plans, employee and supplier education, multi-factor authentication and strong passwords should be standard. Purchase cyber insurance, and be aware of any required security conditions.

According to data company DarkOwl, 100% of the Fortune 500 companies are exposed on the Dark Net, but those who have invested heavily in cybersecurity are likely to have smaller footprints. With data breach a virtual inevitability, it makes sense to take advantage of every possible strategy.




About the Author

Harry Cylinder

Harry Cylinder, CPCU, ARM has spent nearly fifty years in the insurance industry, the majority of the time as a consultant. He has been employed by The Beacon Group of Companies since 2008, specializing in the review and analysis of property and casualty coverage forms. Mr. Cylinder has been reviewing policy forms as they have evolved over the past decades. In 2008 he published an article in the CPCU Journal which was the first description of cyber insurance coverage for a general insurance audience. Since that time he has regularly written on cyber and other topics for The Beacon Companies’ blog.