Cappuccino Chat - Episode4 - The Dark Web

today on cappuccino chat I am with Dan from ID agent ID agent is the company we use for our dark web scans when we're working with you and kind of showing you those results so let's just get right into it Dan when it comes to dark web and security what are you seeing today is kind of like the biggest threat so the biggest threat that's really facing companies today is the fact that they're using their credentials their work credentials their email address username and password that they're using for like their Active Directory or their email address like we were saying but they're using it on third-party sites so they might have a Dropbox account they might be their office manager with Staples it could be your bank account and you need to know if all of a sudden Amazon or staples is breached today they're not reporting it that day they're not reporting it sometimes they're not reporting it for 6 1224 months but those credentials are on the dark web and that one credential could lead to someone getting into your network so it's really important to have monitoring going on in knowing if your company's information is on the dark web because if one person's credentials there and they get in and can deploy ransomware you know exploit your business I mean there's just so many vulnerabilities now with all the third-party sites that we have to use to conduct business yeah and you know humans being humans were all kind of lazy right so we're gonna reuse that password we try to educate people you know you should really use a different password for everything that you do but that's really hard to do I mean it's a lot of these people are using you know 50 different sites they come up with 50 different passwords that you remember and then change them with good password security hygiene that you will it is really tough so I know I went to talk to a potential client for the first meeting and I just came in and I pre ran their domain just to see if anything came up and sure enough had some results in plain text so I'm talking with them and he said wait a second wait a second so he calls in the assistant general manager and he goes hey sit down you got to hear this so I kind of go through the spiel again I said hey I got a couple people's passwords or they see oh wait a second I know everyone's password so one having someone in your organization that knows everybody else's password can be a little dangerous as well but he knew by looking at the list that it actually was this person's password so as he's given me a tour of the facility it was kind of neat were going through the facility and we go by this person whose password I have shared that I have and he's walking about us oh hey this is Matt he's got your password we're gonna need to talk about you changing it later and then we kept on about our talk he stopped and as he was giving me the thing so now when we're going through and talking to people about the dark web a lot people don't understand what that is and they don't understand when I show them results they think okay was my computer somehow compromised did I do something wrong did my IT person do something wrong to my employee do something wrong and I have to explain that that's really not the case so can you kind of explain how people's information kind of gets out there on the dark web if you will yeah absolutely so a lot of people three like they like you just said they think it's their network they think it's their computer that's been breached and all that or the whole organization has been breached really what's happening is it's the third party sites we go on so LinkedIn is a great example a couple years ago millions of people's accounts were exposed and their passwords and email addresses were put on to the dark web with those being exposed and on the dark web those are out there for people to grab and they could log into your account that doesn't mean your business was breached that just means the account was taken over and Linkedin was the one that was all taken over so it could happen with target I mean target was the one that we saw in the news there third party supply vendor backdoored in through HVAC and got passwords and was able to cause a mega breach it doesn't mean that you know because my credit card was taken I was you know it was just me it's the collective groups that are getting hit and it's really important for businesses to know third-party website policies in their business do you really know where all your employees are logging into on a daily basis I have a great example of this and we were working with a client and this lady had been gone for three years and they said that's old data her she's been gone for three years but we said what was her job role well she was the head of HR we were able to log into four different categories one of them was banking one of them was like a Supply site one was a 401k site all had employee information ACH banking information and she'd been gone for three years and the reason is it was a third party website she logged into it she put all these different credentials put all this company information in there but nobody did anything when she left so whether that employee is still in the organization or they've left the organization it is extremely important to know where you're allowing your employees to put data what sites are they doing and when they leave your organization to make sure you're able to go in and shut them down because that's what's impacting businesses it's the fact that I can log in somewhere else other than my network input company data that's putting it your company at risk yeah and again most websites the username that you use is your email address right so most of us in business our email address is published right not too hard to find out somebody's email address so they're halfway to getting into the gate if you will and unlocking whatever they need to do and guessing the passwords hackers have a lot of different tools out there that allow them so if as you mentioned does it mean that you were just breached when that data shows up on the dark web but if all you do in your password hygiene is change the one to a two it doesn't take hackers very long to figure that out variations of your password now the thing I like about your tool again is it's it's that monitoring alerting we don't think about all these third parties and then not only those third parties our banks our suppliers and things but then who are their banks and their suppliers and that has and again like you spend with target they came through that other third party through a back door that target wasn't even in charge of so one of the many things is that alerting is very important because if I was to tell you before you got into your car your brakes are gonna fail what would you do I wouldn't be driving you wouldn't be driving you go get those brakes fixed as possible so if I tell if I never am able to tell you or alert you to the fact that your employee or your password is breached and somebody else knows it then I can't tell you that you need to change it so this again is a great alerting just to allow them the opportunity to to make that change yeah and I always say this to organizations too we put so many tools inside a network now I mean you know we put advanced threat protection we put in firewalls we have all these different protections inside the network the number one reason of data breaches and ransomware last year wasn't exposed password so a password outside on the dark web allows me to gain access to your network all these tools were buying and putting into place aren't effective unless we have the complete picture internal on the network and external on the network now I have a good picture of what's going on and you can really deal with the day-to-day threats correct yes I really like your product and it is a good product to have thinking gives you that alerting so that you can take action and do this stuff so this is cappuccino chat of course so we always talking about coffee still at the convention so coffee not that good dan I know I already asked you but you don't drink coffee so since you're not a coffee drinker what is your drink of choice if you will so my drink of choice is always a coke so a good old good old coca-cola some caffeine and keeping my energy go I've never adapted to coffee cappuccino any of that stuff I'm just a plain Jane polish coke guy nothing wrong with that damn thank you very much thank you see everybody next time you