Science
Cybercriminals Target Company Insiders via Dark Web Tactics
Cybercriminals are increasingly turning to the dark web to recruit insiders from various organizations, exploiting vulnerabilities within companies to gain access to sensitive information. This recruitment process often involves targeted posts on dark web forums as well as discreet approaches through professional networks like LinkedIn. By enlisting malicious employees, these criminals can directly access critical company resources, facilitating data theft or even extensive cyberattacks.
In a revealing study, researchers at NordStellar analyzed dark web posts from users actively seeking employees from specific companies over the past year. A notable number of these posts focus on insiders from social media and cryptocurrency platforms, highlighting a pressing concern for organizations in these sectors. For instance, in 2025, the cryptocurrency exchange Coinbase reported that cybercriminals managed to bribe its employees, resulting in the leakage of user information.
According to Vakaris Noreika, a cybersecurity expert at NordStellar, the methods employed by cybercriminals vary widely. Some openly advertise their need for insiders on dark web platforms, while others prefer a more covert approach. Over the last year, NordStellar identified 25 unique posts that explicitly sought out insiders, underscoring the growing threat posed by insider recruitment.
The Nature of Insider Threats
Insider threats present a unique challenge for organizations. Employees often have legitimate access to sensitive data, making it difficult for security teams to identify potential threats. “Employees can grant cybercriminals access to critical data, such as personal customer information and confidential business agreements,” explains Noreika. This data can then be exploited for various malicious activities, including ransomware attacks, selling sensitive information to competitors, or executing sophisticated phishing scams.
Noreika also notes that insider threats may remain undetected for extended periods as “insiders may not trigger typical security alerts, such as unusual login attempts or data transfers.” Since these employees are already trusted members of the organization, their behavior may go unchecked, allowing them to manipulate internal security policies to avoid raising suspicion.
Strategies for Safeguarding Against Insider Threats
To mitigate the risks associated with insider threats, organizations must adopt a proactive cybersecurity strategy that emphasizes high observability of system and data usage. Noreika emphasizes that any unexpected system behavior or access patterns should be flagged and thoroughly examined. “Patterns of unusual behavior are the first indicator that the user might be an insider,” he states. Security teams should closely monitor employees who frequently access sensitive information, ensuring that they possess the proper authorization.
Data exfiltration to external parties or devices also serves as a significant red flag. According to Noreika, having a well-defined incident recovery plan is essential for minimizing the impact of a cyberattack driven by insider threats. Such a plan should outline the necessary steps for incident detection, containment, and damage mitigation.
In related news, Google plans to discontinue its dark web monitoring tool, the Dark Web Report, which was designed to scan for exposed personal information. The shutdown will begin on January 15, 2026, when scans for new dark web breaches will cease, followed by the complete removal of the report and all associated data on February 16, 2026. Google has indicated a shift in focus towards tools that provide clearer, actionable steps for customers to protect their online information, although no specific new cybersecurity tools have been announced.
As cybercriminals continue to evolve their tactics, organizations must remain vigilant in their efforts to safeguard against insider threats. By implementing comprehensive monitoring systems and maintaining a proactive approach, businesses can better protect themselves from these insidious attacks.
iShares Core Dividend Growth ETF Faces Challenges; Alternatives Suggested
Discover 7 Scenic Hikes Near Calgary to Explore This Spring
Scientists Uncover Life’s Building Blocks in Ryugu Asteroid Samples
Windsor-Essex Unveils New Action Plan to Combat Substance Use
Boost Your Business Visibility with These Local SEO Strategies
East Algoma OPP Urges Public to Limit Travel Amid Hazardous Conditions
Universities Must Rethink Failure to Support Student Growth
Canada Invests $6.4 Million to Boost Green Shipping Corridors
Stony Plain Secures 14th Consecutive Award for Financial Reporting Excellence
Rhythm Pharmaceuticals Reports Strong Q4 Growth Ahead of FDA Decision
Brandon University’s Failed $5 Million Project Sparks Oversight Review
Microsoft Confirms U.S. Law Overrules Canadian Data Sovereignty
Discover Aritzia’s Latest Fashion Trends: A Comprehensive Review
Winnipeg Celebrates Culinary Creativity During Le Burger Week 2025
New SĆIȺNEW̱ SṮEȽIṮḴEȽ Elementary Opens in Langford for 2025/2026 Year
EngineAI Unveils T800 Humanoid Robot, Setting New Industry Standards
Montreal’s Groupe Marcelle Leads Canadian Cosmetic Industry Growth
Tech Innovator Amandipp Singh Transforms Hiring for Disabled
Dragon Ball: Sparking! Zero Launching on Switch and Switch 2 This November
Digg Relaunches as Founders Kevin Rose and Alexis Ohanian Join Forces
-
Education7 months agoBrandon University’s Failed $5 Million Project Sparks Oversight Review
-
Science8 months agoMicrosoft Confirms U.S. Law Overrules Canadian Data Sovereignty
-
Lifestyle4 months agoDiscover Aritzia’s Latest Fashion Trends: A Comprehensive Review
-
Lifestyle7 months agoWinnipeg Celebrates Culinary Creativity During Le Burger Week 2025
-
Education8 months agoNew SĆIȺNEW̱ SṮEȽIṮḴEȽ Elementary Opens in Langford for 2025/2026 Year
-
Business4 months agoEngineAI Unveils T800 Humanoid Robot, Setting New Industry Standards
-
Health8 months agoMontreal’s Groupe Marcelle Leads Canadian Cosmetic Industry Growth
-
Science8 months agoTech Innovator Amandipp Singh Transforms Hiring for Disabled
-
Technology8 months agoDragon Ball: Sparking! Zero Launching on Switch and Switch 2 This November
-
Technology3 months agoDigg Relaunches as Founders Kevin Rose and Alexis Ohanian Join Forces
-
Lifestyle4 weeks agoCanmore’s Le Fournil Bakery to Close After 14 Successful Years
-
Top Stories4 months agoCanadiens Eye Elias Pettersson: What It Would Cost to Acquire Him
-
Health7 months agoEganville Leader to Close in 2026 After 123 Years of Reporting
-
Education8 months agoRed River College Launches New Programs to Address Industry Needs
-
Business8 months agoBNA Brewing to Open New Bowling Alley in Downtown Penticton
-
Top Stories4 months agoNicol Brothers Shine as Wheat Kings Dominate U18 AAA Hockey
-
Business7 months agoRocket Lab Reports Strong Q2 2025 Revenue Growth and Future Plans
-
Lifestyle5 months agoEdmonton’s Beloved Evolution Wonderlounge Closes, New Era Begins
-
Education6 months agoAlberta Petition Aims to Redirect Funds from Private to Public Schools
-
Education8 months agoAlberta Teachers’ Strike: Potential Impacts on Students and Families
-
Technology6 months agoDiscord Faces Serious Security Breach Affecting Millions
-
Technology8 months agoGoogle Pixel 10 Pro Fold Specs Unveiled Ahead of Launch
-
Business8 months agoIconic Golden Lion Restaurant in South Surrey to Close After 50 Years
-
Lifestyle6 months agoCanadian Author Secures Funding to Write Book Without Financial Strain