The darknet is a part of the internet that is not accessible via conventional search engines and requires special software such as the Tor browser to access it.
The darknet is not automatically illegal. It was originally created to enable anonymous and censorship-free exchange – e.g. for journalists, activists or people in repressive states.
However, the darknet is also used for criminal activities, including:
Trade in stolen data, malware, weapons or drugs
Offer of hacking services
Exchange about security vulnerabilities, e.g. “zero-day exploits”
Usually not directly – but indirectly it can play a role, e.g:
When a company’s stolen access data or customer data appears on the Darknet
When cybercriminals obtain ransomware tools via the darknet, which they then use to attack SMEs
When IT security companies scan the darknet to provide early warnings of potential attacks
Use strong passwords and two-factor authentication
Use regular darknet monitoring services to detect data leaks at an early stage
Sensitize employees to phishing, credential theft and social engineering
Install security updates consistently
The darknet is not a mystical place, but it plays a central role in cybercrime. Companies should not go there – but know that they could be talked about there.
