As a current study of 26.000 companies and 80 industries shows, data leaks mean that a lot of German company data is available for download or purchase on the dark web. Almost 60 percent of all companies and state facilities are affected. Some companies may not even know this.
The security researchers from Botiguard Bayern searched in their “Darknet Study Germany 2023″for companies on the dark web and for data leaks. The broad Study included more than 26.000 companies from 80 industries and categories. The Situation picture for Germany is worrying and worse than previously assumed.
Germany: situation report worrying
The dark web was searched for data leaks affecting German companies. The focus here was exclusively on company and employee data. A company can also be affected if a business partner or supplier is hacked. In this way, a lot of data gets into the dark web, even without the knowledge of the companies concerned.
Data leaks make hackers life easier.
Over time, companies and employees leave many data trails on the Internet. Hackers collect this data from a wide variety of sources and offer these on the dark web and on illegal sites. Especially after a security incident masses of data get into the dark web. There are now huge collections of data emerged, which continues to grow with new entries and millions of companies regarding. This makes credible and effective attacks possible, for example Targeted attacks on individual employees and executives, the IT infrastructure or classic spam.
Partner company and supply chain risk
In a highly connected world, a security incident occurs at a partner company or suppliers are also problematic. It can even then data of your own Company drain, although security in your own company is good is ordered. Example: A medium-sized company uses a travel agency to book business trips. The Employees each have a user account to log in to the business travel portal register travel agencies. The travel agency is now being hacked. get through this incident various employee and access data to the dark web, although it is about IT security is well ordered in your own company. It becomes even more complex if a downstream airline or intermediary is hacked.
In focus: listed companies and energy
🔎 Data from these sectors of German companies can be found on the Darknet (Image: Botiguard).
58,5 percent of the analyzed organizations were affected by data leaks. Few surprisingly, all already hacked by blackmail trojans (ransomware). Enterprises were also affected by data leaks, ranking first on. Listed companies on the DAX, TecDAX, MDAX and SDAX with a hit rate of 97%. But these usually have their own Crisis teams and IT security experts. The risks should therefore largely known and taken into account.
Energy companies followed in third place with one Hit rate of 71%. These included municipal utilities and private power producers. Straight this area is strictly regulated by BSI KRITIS specifications. But there is one for details Cooperation with industry representatives and, if necessary, with the Federal Office for Information security necessary.
Up to 300.000 records available
The biggest find was for a listed conglomerate with more than 300.000 leaked records. In the state sector was a Central German City administration with almost 48.000 hits most conspicuous. At the aid organizations an international aid organization with more than 6.200 data sets stood out.
7x higher risk
The study explored the risk companies have in an attack Suffering from blackmail trojans (ransomware) when these also leak data are affected. Two groups were formed for this purpose. The first group was already made up of 56 hacked companies. A control group of 59 unhacked companies formed the second group. Companies affected by data leaks have a 7-times higher risk of being blackmailed by cybercriminals.
This is how companies and individuals can protect themselves
Among other things, companies should ensure that cyber security is a purchase criterion. Business partners and software vendors should have contractual Commitments for IT security are obtained. regular security checks, that also take data leaks into account also provide effective protection. The However, search for data leaks in the dark web should be carried out by external service providers to avoid legal risks. Employees and individuals should always use different passwords for each user account use. A password manager is even after a short familiarization phase more comfortable. Many providers now offer 2-factor authentication. Such Offers should definitely be used.
Conclusion: Darknet Study Germany 2023
The picture of the situation in Germany is bleaker than previously assumed. Previous Estimates considered a hit rate of 40% to be high. In fact, this represents the low end. The study considered dates several weeks or even years ago were leaked. Although the vast majority of data leaks are not recent, we recommend companies to collect the current status and use it for the future to learn. Hackers also have to work efficiently and first look for existing ones data leaks. Even if only 10% of the data was still usable, it might be 5.000 gateways for targeted attacks on employees, industrial espionage or ransom
Blackmail. The study is available online for download.
About Botiguard
Botiguard is a cyber security startup from Chiemgau with know-how based on a large number of cyber security audits conducted worldwide. We specialize in encryption and ransomware attacks. In addition to safety tests and certifications, we also advise our customers personally.