Lord of the Flies: Imagine a world where children are left entirely to their own guidance and education. One where the only instruction they ever receive is from peers. What kind of a world would that be?
The Internet Born: When the Internet was born, it was called the DARPANET. Initially its creators tried to maintain control over its growth and development, but as it grew, that control became untenable. Eventually, a dark side emerged there.
Sections of the Internet: The Internet can be subdivided into the Surface Web (that which you can Google) and the Deep Web. You may be surprised to hear that most of you regularly visit the Deep Web. Accounts such as Facebook, Twitter, or your company network that require sign-in credentials are not indexed by search engines and are a major part of the Deep Web. Estimates put the Deep Web as over 95% of the internet. The Dark Web is a subset of the Deep Web that is intentionally hidden, requiring a specific browse to access. No one really knows the size of the Dark Web, but most estimates put it at around 5% of the total internet.
The Dark Web: The Dark Web is best known as a place for illegal and nefarious activities. You can buy drugs, guns, credit card numbers, credentials, and hacked Netflix accounts. You can buy malware or pay hackers to breach your competition for intellectual property. There are even illicit E-Commerce sites. These sites have the same features as any e-retail operation, including ratings/reviews, shopping carts and forums. However, sellers have been known to suddenly disappear with their customers’ crypto-coins without providing the requested service. The old saying, “There is no honor among thieves,” applies. Imagine that.
Not All Nefarious: Not all activities on the Dark Web are illegal. Around half of the Dark Web is used for legitimate activities. It allows political dissidents to communicate anonymously with journalists without fear of persecution. People also go to the Dark Web for mundane activities too like joining a chess club or to exchange recipes. Even Facebook occupies some space there. The app is called BlackBook. You might not be that surprised to hear the New York Times has a Dark Web presence. In truth, the Dark Web attracts many who simply want to be anonymous.
How to Get There: The most common way to get on the Dark Web is through an anonymizing browser called Tor (the onion router). The Tor browser routes your web page requests through a series of proxy servers operated by thousands of volunteers around the globe, rendering your IP address unidentifiable and untraceable (ostensibly). It is difficult to find your way around, websites are not indexed by “normal” search engines, like Google. Popular Deep Web search engines include DeepPeep and IncyWincy. The experience is unpredictable, unreliable, and often incredibly slow.
Why Should I Care?: You may be thinking, “This is all very interesting, but I am not interested in a seedy journey to the Dark Web. Why should I care?” Here’s why. The Dark Web is full of Personally Identifiable Information (PII) and password credentials captured from breaches that are then bought and sold. Or sometimes just dumped to a site. Large identity theft companies, like Experian, offer services that search for your information on the Dark Web and notify you of their findings. You can also look to your trusted security advisor to obtain a Dark Web monitoring service that tracks your company’s domain information. For your own email address, you can check for yourself at www.haveibeenpwned.com. Enter your email address to see if your credentials have been caught in a breach. If so, it is time to change passwords and verify your account information (see my previous article on password hygiene).
In the novel Lord of the Flies, a group of boys is stranded on a deserted island. Their attempt at self-governance is a disaster. A dark side emerged. Civilization eroded and chaos reigned. Kind of like the Internet.