Why are there so many hackers?
Well hacking is actually quite easy now. Getting started just takes a couple of clicks and boom you are in. Since you can get a computer pretty cheap, a specific skill set is not needed and all of the tutorials on the dark web; learning how to hack has never been easier.
Bob Clary, our Chief investigator was able to buy a hacking kit on the darkweb for $16 in bitcoin. The kit came loaded with a bunch of tutorials that actually teach you how to hack and use the system. We also found that we could buy bulletproof hosting sites. Which is where the bad guys will actually monitor your systems to make sure you do not get hacked.
The services they offer are:
-DDoS Protection
-BACKUPS
-24 X 7 Monitoring
-IP/KVM
-BULLETPROOF/FASTFLUX
-REMOTE CONTROL
-SECURITY AUDITS
So, the bad guys are doing pen testing on themselves to make sure they don’t get hacked. Which is actually quite ironic.
When Bob was using the Crimeware kit he bought it took five minutes to find the code on the Dark Web, buy it, download it and compile it. Then it took five minutes to modify it and recompile it as a zero day threat. He changed the code slightly so it can make the Malware untraceable. To get this stuff is easy, cheap and super quick to build malware. Once we have the Malware builder and Command and Control center to host on your bulletproof server you are good to go. Not only will you be able to hack without much skill set but it is very easy to stay anonymous.
How to prevent yourself from becoming a victim
First hire a security partner, they will collect intelligence for you. Make sure you pentest your network, it does not matter if you are big or small. Lastly, have a partner that understands incident response. It will cost you more money in the long run if you don’t prep yourself in advance. Make sure there is a pentest done every year.
