Rising cyberattacks threaten everything from medical records to critical infrastructure. Now a lab at Arizona State University is spotting hacker activity before cyberattacks occur.
The time to fix a security flaw is before it’s exploited — just ask the Clinton campaign or the World Anti-Doping Agency. So ASU’s Paulo Shakarian traces cyber threats to where they live: In the hard-to-access deep web and the secretive dark web.
The deep web are websites that "have special access restrictions that disallow Google and other search engines to index them," said Shakarian. “Likewise, there’s other sites that you need a special layer of secure software to anonymize your presence — one most common one is known as Tor — and these sites are collectively referred to as the dark web or dark net.”
The lab’s system, which uses machine learning and data mining to learn threat patterns, averages 305 cyber threat warnings each week.
“By understanding what the attackers are currently working on, we can better focus our resources to defend against what’s coming in the future," said Shakarian.