Security Magazine logo
search
cart
facebook twitter linkedin youtube
  • Sign In
  • Create Account
  • Sign Out
  • My Account
Security Magazine logo
  • NEWS
    • Security Newswire
    • Technologies & Solutions
  • MANAGEMENT
    • Leadership Management
    • Enterprise Services
    • Security Education & Training
    • Logical Security
    • Security & Business Resilience
    • Profiles in Excellence
  • PHYSICAL
    • Access Management
    • Fire & Life Safety
    • Identity Management
    • Physical Security
    • Video Surveillance
    • Case Studies (Physical)
  • CYBER
    • Cybersecurity News
    • More
  • BLOG
  • COLUMNS
    • Cyber Tactics
    • Leadership & Management
    • Security Talk
    • Career Intelligence
    • Leader to Leader
    • Cybersecurity Education & Training
  • EXCLUSIVES
    • Annual Guarding Report
    • Most Influential People in Security
    • The Security Benchmark Report
    • The Security Leadership Issue
    • Top Guard and Security Officer Companies
    • Top Cybersecurity Leaders
    • Women in Security
  • SECTORS
    • Arenas / Stadiums / Leagues / Entertainment
    • Banking/Finance/Insurance
    • Construction, Real Estate, Property Management
    • Education: K-12
    • Education: University
    • Government: Federal, State and Local
    • Hospitality & Casinos
    • Hospitals & Medical Centers
    • Infrastructure:Electric,Gas & Water
    • Ports: Sea, Land, & Air
    • Retail/Restaurants/Convenience
    • Transportation/Logistics/Supply Chain/Distribution/ Warehousing
  • EVENTS
    • Industry Events
    • Webinars
    • Solutions by Sector
    • Security 500 Conference
  • MEDIA
    • Videos
      • Cybersecurity & Geopolitical Discussion
      • Ask Me Anything (AMA) Series
    • Podcasts
    • Polls
    • Photo Galleries
  • MORE
    • Call for Entries
    • Classifieds & Job Listings
    • Continuing Education
    • Newsletter
    • Sponsor Insights
    • Store
    • White Papers
  • EMAG
    • eMagazine
    • This Month's Content
    • Advertise
  • SIGN UP!
CybersecurityManagementTechnologies & SolutionsSecurity Enterprise ServicesSecurity Leadership and ManagementLogical SecuritySecurity & Business ResilienceCybersecurity News

Leveraging breached data to unmask cybercriminals

By Luke Wilson
Outsourcing Data: Don't Take a Fairytale Approach
October 16, 2020

Companies lucky enough to avoid cybersecurity incidents can no longer turn a blind eye or claim these aren’t their problem. As the saying goes, there are two types of companies: those that have suffered a breach and those that will. In our digital economy, everything is interconnected and if your organization has something of value to a fraudster, they will eventually target your company. Alarmingly, cybercriminals can operationalize and use data that is pulled from a separate breached organization against yours.   

How are threat actors so successful? They gather breached data and information from open sources – think social media profiles or even voting records – to build digital profiles of individuals with just a few clicks. This can then lead to, among other attacks, phishing scams such as business email compromise, potentially inflicting a significant financial toll on an organization.

Most credentials stolen from companies are consumer-oriented and are useful on one platform to another – think usernames and passwords. Cybercriminals continue to re-release big combo packages with aggregated credentials gathered from newer, large-scale breaches. Every time these big combo packages surface, billions of email addresses or usernames associated with clear-text passwords recirculate in underground communities, making the data increasingly accessible for malicious use, such as account takeover and other identity-based attacks.

Oftentimes, these attacks are successful not because of lax security protocols, but because poor password hygiene is still an issue – password reuse is rampant. According a 2018 Verizon Data Breach Investigations Report, 81% of company data breaches resulted from poor password security. Companies must balance ease of access and usability with cybersecurity, and this means passwords are not something we can avoid in the near future. An easy preventative measure is mandatory cybersecurity awareness training. In 2019, it was reported that 43% of employees – nearly half – lacked regular data security training, which is too low.

During this extended remote work period, there are already so many threat vectors that companies must account for, and the last thing a company needs is a user error accidentally exposing sensitive information. Individuals must remain extra vigilant to avoid becoming the weakest link in their organization’s chain.

However, bad actors slip up as well. Their data is out there, because many of them are ordinary citizens. There’s a misunderstanding that you need advanced computer skills or sophisticated tools when all you really need is access to computers, data, and persistence. Just as threats actors leverage breached data, so can organizations that hold these treasure troves of data, such as financial and healthcare companies, or government agencies. Through identity attribution, it is possible to piece together the digital footprints of these threat actors to not only understand what the nature of the attack was, but also who was behind the attack and their motivation.

Despite criminals doing all they can to obfuscate their identities, breached data can assist with investigations into fraud, crime and other illicit activities, as well as protecting consumer identities. From unmasking adversaries to domain monitoring to password validation, cybercrime intelligence teams can effectively neutralize and disrupt offensive cyber operations and their infrastructure by utilizing breached data and quickly acting on intelligence.

Of course, speed to actionable intelligence is key. In the time period from occurrence to discovery to containment and remediation, cybercriminals are siphoning through the data, trying to figure out how to exploit it. Instead of playing whack-a-mole, identity intelligence now allows for companies to take a proactive approach to identifying the threat actor – helping thwart future attacks.

Moving forward, leveraging breached data, as well as open source intelligence, makes identity attribution not only possible, but reliable in a swift and efficient manner, especially as companies face reductions to their investments in cybersecurity. Identity information is proliferating in the surface, social, deep and dark webs and bad actors are using this information to launch new attacks. This problem isn’t going away anytime soon. Organizations should take advantage of the tools and data at their disposal and take a more proactive approach.

KEYWORDS: cyber security data breach information security risk management

Share This Story

Looking for a reprint of this article?
From high-res PDFs to custom plaques, order your copy today!

Luke square large

Luke Wilson is Vice President of intelligence at 4iQ. Luke brings a wealth of knowledge and expertise, with 15+ years working within federal law enforcement, department of defense, and the intelligence community.

 

Recommended Content

JOIN TODAY
To unlock your recommendations.

Already have an account? Sign In

  • Security's Top Cybersecurity Leaders 2024

    Security's Top Cybersecurity Leaders 2024

    Security magazine's Top Cybersecurity Leaders 2024 award...
    Security Leadership and Management
    By: Security Staff
  • cyber brain

    The intersection of cybersecurity and artificial intelligence

    Artificial intelligence (AI) is a valuable cybersecurity...
    Security Leadership and Management
    By: Pam Nigro
  • artificial intelligence AI graphic

    Assessing the pros and cons of AI for cybersecurity

    Artificial intelligence (AI) has significant implications...
    Logical Security
    By: Charles Denyer
Manage My Account
  • Security eNewsletter & Other eNews Alerts
  • eMagazine Subscriptions
  • Manage My Preferences
  • Online Registration
  • Mobile App
  • Subscription Customer Service

More Videos

Sponsored Content

Sponsored Content is a special paid section where industry companies provide high quality, objective, non-commercial content around topics of interest to the Security audience. All Sponsored Content is supplied by the advertising company and any opinions expressed in this article are those of the author and not necessarily reflect the views of Security or its parent company, BNP Media. Interested in participating in our Sponsored Content section? Contact your local rep!

close
  • Crisis Response Team
    Sponsored byEverbridge

    Automate or Fall Behind – Crisis Response at the Speed of Risk

  • Perimeter security
    Sponsored byAMAROK

    Why Property Security is the New Competitive Advantage

  • Duty of Care
    Sponsored byAMAROK

    Integrating Technology and Physical Security to Advance Duty of Care

Popular Stories

Internal computer parts

Critical Software Vulnerabilities Rose 37% in 2024

Coding

AI Emerges as the Top Concern for Security Leaders

Half open laptop

“Luigi Was Right”: A Look at the Website Sharing Data on More Than 1,000 Executives

Person working on laptop

Governance in the Age of Citizen Developers and AI

Shopping mall

Victoria’s Secret Security Incident Shuts Down Website

2025 Security Benchmark banner

Events

June 24, 2025

Inside a Modern GSOC: How Anthropic Benchmarks Risk Detection Tools for Speed and Accuracy

For today's security teams, making informed decisions in the first moments of a crisis is critical.

August 27, 2025

Risk Mitigation as a Competitive Edge

In today’s volatile environment, a robust risk management strategy isn’t just a requirement—it’s a foundation for organizational resilience. From cyber threats to climate disruptions, the ability to anticipate, withstand, and adapt to disruption is becoming a hallmark of industry leaders.

View All Submit An Event

Products

Security Culture: A How-to Guide for Improving Security Culture and Dealing with People Risk in Your Organisation

Security Culture: A How-to Guide for Improving Security Culture and Dealing with People Risk in Your Organisation

See More Products

Related Articles

  • security-breach-freepik.jpg

    UN computer networks were breached by cybercriminals

    See More
  • Revised NIST Cyber Security Framework - Security Magazine

    Leveraging packet data to improve network agility and reduce costs

    See More
  • ransomware - cyber

    Kia Motors allegedly suffers ransomware attack; cybercriminals demand $20 million to recover sensitive data

    See More
×

Sign-up to receive top management & result-driven techniques in the industry.

Join over 20,000+ industry leaders who receive our premium content.

SIGN UP TODAY!
  • RESOURCES
    • Advertise
    • Contact Us
    • Store
    • Want More
  • SIGN UP TODAY
    • Create Account
    • eMagazine
    • eNewsletter
    • Customer Service
    • Manage Preferences
  • SERVICES
    • Marketing Services
    • Reprints
    • Market Research
    • List Rental
    • Survey/Respondent Access
  • STAY CONNECTED
    • LinkedIn
    • Facebook
    • YouTube
    • X (Twitter)
  • PRIVACY
    • PRIVACY POLICY
    • TERMS & CONDITIONS
    • DO NOT SELL MY PERSONAL INFORMATION
    • PRIVACY REQUEST
    • ACCESSIBILITY

Copyright ©2025. All Rights Reserved BNP Media.

Design, CMS, Hosting & Web Development :: ePublishing