5 YOUR COMPANY’S DATA IS FOR SALE ON THE DARK WEB. SHOULD YOU BUY IT BACK?

by Brenda R. Sharton

One day I got a call from the in-house counsel at a large financial institution. “Our [information security] team was doing a routine search and found a list of our employee passwords for sale on the dark web,” she told me. “The business folks want to buy it back. What should we do? Should we buy it ourselves? Are there any downsides?”

I get calls like this frequently, and the short answer is that, in most cases, the legal and reputational risks far outweigh the benefits of purchasing the information. Cybercriminals frequently use the dark web—a hub of criminal and illicit activity—to sell data from companies that they have gained unauthorized ...

Get The Year in Tech, 2024: The Insights You Need from Harvard Business Review now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

The Year in Tech, 2024: The Insights You Need from Harvard Business Review by Harvard Business Review, David De Cremer, Richard Florida, Ethan Mollick, Nita A. Farahany

5 YOUR COMPANY’S DATA IS FOR SALE ON THE DARK WEB. SHOULD YOU BUY IT BACK?

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly