Real Horror Stories from the Dark Web, xylazine

 "The internet we commonly use is just a small fraction of the surface web.

 If you dig a little deeper, you might explore parts of the deep web, areas not indexed by regular search engines like Google.

What you’ll discover here is very different from what’s shown on social media, podcasts, or Netflix documentaries. The unsettling tales emerging from dark websites are a growing concern for law enforcement agencies around the globe.

For law enforcement, navigating the dark web is more than just a technical challenge; it's a battle against the constantly changing criminal subcultures."

Who Created the Dark Web?

"Surprisingly, criminals did not create this hidden, unindexed part of the internet. The dark web originated from a project by the US Department of Defense, designed to allow American spies to communicate securely without catching the eye of the general public or other nations. Although the original mission wasn't fully accomplished, the researchers behind the project continued their work to support activists.

Today, however, the dark web has become a hub for some of the world's worst criminals, with that number steadily increasing. From New York to Delhi, interest in dark websites has surged, attracting over 2.5 million daily visitors this year. More than half of these users are involved in illegal activities. This is why the FBI takes dark web operations seriously and frequently targets those responsible for running major scams."

"The Silk Road—

the first modern darknet market—was likely the platform that brought the dark web into the public spotlight. Even after this black market was taken down over a decade ago, numerous others emerged to fill the void. These platforms deal in illegal drugs, firearms, stolen credit card information, and more. They also offer malicious tools like keyloggers that capture your login details as you type, software to launch Distributed Denial of Service (DDoS) attacks that overwhelm servers with traffic, and hacking tutorials. Hydra, a Russian-language darknet marketplace, was once the crown jewel of the dark web, dominating its activities until it was shut down in April 2022."

Duolingo Data Breach

Hackers recently extracted the data of 2.6 million Duolingo users, and it quickly surfaced on a dark web forum. These cybercriminals reportedly accessed the information by exploiting an unprotected application interface (API).

The stolen data was put up for sale at the relatively low price of $1,500 on August 22, 2023. To prove the authenticity of the data, the hackers even offered a free sample of 1,000 accounts.

The compromised information included:

• Email addresses
• First and last names
• Usernames
• Other details provided to Duolingo

MGM Resorts Cyberattack

In September 2023, MGM Resorts acknowledged that hackers had stolen an unspecified amount of sensitive customer data during a cyberattack. The estimated financial impact of the breach was around $100 million.

The hacking group ALPHV/BlackCat, along with its subgroup Scattered Spider, took responsibility for the attack, which caused significant disruption across MGM’s operations. The stolen data, however, pertained to transactions that occurred before March 2019 and included:

• Names
• Contact information
• Date of birth
• Driver’s license numbers
• Gender
• Passport details
• Social Security numbers

The breach reportedly occurred after a brief, deceptive conversation between an MGM employee and a skilled phisher posing as a coworker on LinkedIn.

Clorox Cyber Attack

Clorox, the well-known cleaning products manufacturer, also fell victim to a serious cyberattack that severely impacted its revenue and stock prices. The attack disrupted Clorox’s supply chain and operations, leading to widespread product shortages across the United States.

Cyberattacks like these don’t just affect the digital realm—they can have significant real-world consequences. For instance, they can disrupt essential services such as power grids, water treatment facilities, and transportation systems.

The Clorox incident highlighted the vulnerability of businesses to increasingly sophisticated cyber threats, which can cause widespread disruption.

Protecting Yourself from Dark Web Threats

Given the rising number of data breaches, it’s increasingly likely that your personal information could end up on the dark web. If you find yourself in this situation, here’s what you should do:

• Stay calm and take a few deep breaths.
• Immediately change your passwords (using a password manager can help generate and store strong passwords).
• Enable multi-factor authentication (MFA) wherever possible.
• Participate in regular cybersecurity awareness training.
• Continuously monitor your networks for any unauthorized activity.
• Invest in robust antivirus software, firewalls, and intrusion detection systems.
• Regularly update and patch your software.
• Back up your data frequently.
• Consider using a dark web monitoring service.

Conclusion

Although the dark web was originally created to support secure and anonymous communication for activists, it has since evolved into a hub for illegal activities. Despite its dangers, the growing interest and engagement with the dark web ensure its continued presence in the digital world. Tools like the Tor Browser, which were developed to protect user anonymity, are now being exploited to shield criminals.

High-profile breaches, such as those experienced by Duolingo and MGM Resorts, demonstrate the severity of the threat and how easily data can be traded in dark web markets. However, by adhering to cybersecurity best practices, both individuals and organizations can reduce the risk of becoming targets in this shadowy underworld.