Initial Access Brokers Report

Remote-access software, virtual private networks (VPNs), and other innovations have steadily swelled the remote workforce. As the adoption of those technologies has jumped suddenly and exponentially, threat actors have been quick to find ways to exploit network access tools. Initial access brokers (IABs) are among the threat actors benefitting from this situation, which has elevated their status in the cybercriminal underground to critical.

Digital Shadows’ Photon Team has been tracking these threat actors since 2016, and we’re now witnessing a “perfect storm“: a dramatic increase in remote working and an incredibly successful ransomware monetization model. To better understand this phenomenon and what it means for security practitioners, we analyzed more than 500 access listings between 1 Jan 2020 and 31 Dec 2020, and made some useful discoveries, covered in this report.

Previous Report

Vulnerability Intelligence: Do You Know Where Your Flaws Are?

Next Report

A Practical Guide to Reducing Digital Risk

This practical guide provides advice to help understand how to identify critical business assets, understan...

Digital Shadows Named #1 in Digital Risk Protection

Read Report

Return to Home

Brand Protection

Data Exposure

Cyber Threat Intelligence

Initial Access Brokers Report

Previous Report

Next Report

Most Recent Flipbooks

Photon Research Team uncovered 24 billion + exposed credential pairings available online. Read the full assessment and potential impact on account takeovers.

This Vulnerability Intelligence Solutions Guide covers the CVSS and beyond, Top 10 Priority Intelligence Requirements, and how to operationalize Vulnerability Intelligence.

This practical guide provides advice to help understand how to identify critical business assets, understand the threat, monitor for exposure, and take action.

Over the past 2.5 years, we have been analyzing how cybercriminals conspire to prey upon users of online services by “taking over” the accounts they all use...

We define the strengths and weaknesses of ACH in the cyber-threat domain, with a "customer-centric" view that can aid analysts in presenting intelligence to a decision maker.

Digital Shadows has contributed to Optiv's 2020 Threat Intelligence Landscape Estimate, which provides a view of the cyber-threat landscape to help organizations mitigate risk and strengthen their...

There are now 750 million more files exposed than we reported last year; not all of them are blatantly sensitive, but there is plenty of gold in these mountains.

We took a deep-dive into the cybercriminal underground to investigate the persistence of forums, uncovering several reasons they remain attractive amid appealing alternatives.

A technical assessment of the most popular mitigation for account takeover attacks

A quick guide to understanding how your company looks to attackers.

This Solutions Guide to learn how to protect your organizations social footprint with the top Social Media Monitoring use cases Digital Shadows has identified.

In this report, Digital Shadows’ Photon Team analyzed a data set of more than 175,000 impersonating domains raised to our clients over four months of 2021.

This guide outlines what potential data sources, detection methods, context, and remediation actions to consider if you want to effectively monitor domains and mitigate the risk of data loss, exposed

This guide shares years of operational best practices and expands on where dark web intelligence is useful and can be effectively leveraged into action for security teams.

This guide outlines how to detect, analyze, and remediate data leakage–including a treasure chest of free tooling.

This guide outlines best practices for cyber threat intelligence and features resources to leverage when developing or improving your organization's cyber threat intelligence capabilities.