+

Cookies on the Business Insider India website

Business Insider India has updated its Privacy and Cookie policy. We use cookies to ensure that we give you the better experience on our website. If you continue without changing your settings, we\'ll assume that you are happy to receive all cookies on the Business Insider India website. However, you can change your cookie setting at any time by clicking on our Cookie Policy at any time. You can also see our Privacy Policy.

Close
HomeQuizzoneWhatsappShare Flash Reads
 

These terrifying ads selling violent services don't show the true secret of the 'dark web' - that criminals behave a lot like regular companies

Jun 8, 2018, 04:04 IST

Amir Rashidi, an Internet security researcher who has worked with Telegram users who were victims of hacking, works at the offices of International Campaign for Human Rights in Iran, in the Brooklyn borough of New York, U.S., July 27, 2016. Picture taken July 27, 2016.Brendan McDermid/Reuters

Advertisement
  • Take a peek at some actual ads for services on the dark web.
  • What you can't see is that these cyber criminals behave among one another in much the same way legit businesses behave to legit customers, a security researcher tells Business Insider.


If you're a criminal hacker you probably spend a lot of time on the "dark web."

That's the corner of the internet where hackers do things like sell stolen credit cards; buy "exploit kits," aka software products that help them hack; hire "botnets," or networks of hacked computers that can be programmed to do their misdeeds; or even hire a contract killer. The dark web is not accessible through a regular browser.

If you are a cyber security researcher, like Ziv Mador, you also spend much your time on the dark web, infiltrating the online criminal networks, studying them, and using your knowledge to help businesses defend against them.

Mador has spent two decades doing that. He's currently a lead researcher for security company Trustwave and previously spent 14 years working in computer security at Microsoft.

Advertisement

One of the most surprising findings in his years on the dark web is that these criminal organizations operate with a code of ethics much like the same ethics used by legit businesses, he told Business Insider.

"These are vivid communications, very functional. These are communities where cyber criminals exchange a lot of information and are very helpful [to each other ] if they are looking for a piece of information," he described.

So just like a programmer can get advice from fellow programmers on Stack Overflow or an IT pro can get product recommendations from others in IT on Spiceworks, cyber criminals will freely help one another solve problems or find products to do their own dark sites on their community websites.

A trustworthy reputation

There's a good reason for this: their street cred is their most important asset.

Projection of cyber code on hooded man is pictured in this illustration pictureThomson Reuters

"Their reputation is very important to them. Much like it is in the business world," Mador says. "Even though they are involved with criminal or shady activities, they have their own rules of engagement and it's very similar to what people in the legit world do."

Advertisement

For instance, they don't share another's contact info without that person's permission. Spamming each other is a no-no and, above all else, they can't cheat or con one another.

Should they violate these ethics of behavior they would face any number of repercussions.

For one, they would lose customers to their competitors. "They are very competitive," Mador says.

Or, if they've really angered their fellow hackers, they could be "doxed," Mador says, meaning everything about their their real-life identity would be published for the other hackers to see. Unmasking a hacker's identity, especially in relation to a pissed off customer, is dangerous for them on all sorts of levels.

They are also price competitive with the products they sell. For instance, a handful of gangs sell exploit kits and compete aggressively on price and features. These kits must always be up-to-date on the latest security holes that can be used for hacking.

Advertisement

For the criminals that specialize in running botnets, networks of hacked computers for hire, they offer sophisticated realtime customer data analytics tools, similar to what any app developer wants from a cloud provider

"They have administration panels where their customers can login and see live data on infections," he describes.

Violence for sale

Even services that advertise a terrifying list of violent services are often run with similar code-of-conduct considerations.

For instance, these criminals often post a price list for the explicit acts of violence they will do from burning the car of an enemy to breaking bones.

When offering a hitman for hire, some outfits advertise the money saving option of hiring a novice who might fail. That could cost $5,000 compared to $200,000 to hire the most experienced killer on the roster.

Advertisement

Being a researcher on the dark web takes a level of courage but also patience, Mador says. It can take years to infiltrate such websites, getting criminals to trust that the fake identity of the researcher is indeed a fellow criminal and not the account of a researcher or law enforcement officer.

But once there, security researchers use their fake identities to monitor the underground, learning about things like stolen passwords, new types of malware and "what the next attacks are going to look like," Mador says.

He also shared with Business Insider a few examples of actual ads pulled from the dark web.

This hacker for hire offers a wide variety of services

This ad contains a resumè listing technical skills and qualifications

Perhaps not surprisingly, there's a fair share of postings in Russian

Here's the frightening translation of the above ad. We deleted certain portions of it due to foul language.

A small group of decisive and not particularly young people will work on "developing" information about wealthy people. The information is necessary for the successful implementation of "racket" (squeezing money under objective threats of death, what else?).

No virtual threats, but straight violence, and then a conversation with the person about finances. We have everything needed for work. Moscow (limited to that area only).

We do not buy information, but we are ready to take it in the development. If things work out, our informer will get 10-20% of the revenues (negotiable). Believe it or not, trust or not, you should decide. If you are not willing to trust, do not write.

...

What exactly we’re going to do with the beggar, we won’t say out loud. The leads will be checked with our methods. Truth to be told, the chance to get to an ambush is not so high. We are ready for that risk.

Do not whine about the lack of guarantees or about your own risks. If it does not suit you, just do not write.

...

In general, we can talk here, but specific talks will be over GPG encryption only.

You are subscribed to notifications!
Looks like you've blocked notifications!
Next Article