The Dark Web: what you need to know

March is Fraud Prevention Month. Sponsored by the Competition Bureau Canada, Fraud Prevention Month is an annual campaign that raises awareness about fraud, scams and deception online.

Helping Canadians recognize, reject and report fraud has never been more important, especially during the pandemic. Current fraud stats from the Canadian Anti-Fraud Centre are staggering.

Between March 6, 2020 and February 28, 2021, there have been 13,553 reports of COVID-19 fraud, 11,789 victims and $7.2 million in losses. So far in 2021 (as of January 31) there have been 4,833 reports of general fraud, 3,313 victims and $10.1 million in losses.

To mark Fraud Prevention Month, we want to help you understand more about the Internet’s underworld. Many fraudsters use the Dark Web as a source of information and intelligence when preying on people’s identity or finances.

Dark vs. Deep

The Internet we use every day (also known as the Open Web or Surface Web) comprises approximately three per cent of the Internet. It’s the part we access when we search Google, visit public-facing web pages and source general information.

There are other parts of the Internet that can’t be found on popular search engines because they aren’t indexed -- meaning search engines have not detected and digested the content and can’t access it for search purposes. CSO Online estimates that the Deep Web, where the Dark Web resides, makes up 96 – 99% of the Internet.

The Deep Web is not automatically illegal or malicious. The content there is simply not visible to search engines. Much of the content within the Deep Web needs to be secured, and to access it you often need a username name and password. Many of us use the Deep Web daily for common tasks including email, banking or accessing health records.

The Dark Web, located within the Deep Web, is intentionally hidden. It is more often associated with criminal or fraudulent activity. The Dark Web is encrypted, and users engage with it anonymously – using search engines like Tor and untraceable digital currencies like Bitcoin.

The lack of rules and renegade culture can make the Dark Web a wild and dangerous place – fertile ground for illegal marketplaces selling everything from stolen credit card numbers, usernames and passwords, drugs and guns to counterfeit money and even hackers for hire.

While typically associated with illegal activity, the anonymity of the Dark Web also appeals to intelligence agencies, whistleblowers, media and people that live in regions across the globe where free speech is suppressed. People are also on the Dark Web for legitimate purposes including chess clubs and social networking on BlackBook, considered to be the Facebook of Tor.

What’s the threat?

As an unregulated online space, it can be risky to visit the Dark Web. It’s fertile ground for viruses, malware and illicit content. Even if you don’t plan on exploring it anytime soon, the illegal marketplaces thriving on the Dark Web can still impact you. Personal information, including banking, credit card information, usernames and passwords are all valuable commodities on the Dark Web.

How can you protect yourself?

Be smart, be savvy, be consistent and be vigilant. Follow digital safety basics to reduce the chances of having your personal information circulated on the Dark Web:

• Educate yourself: follow the news about breaches – if you have an account or profile on a site that has been compromised, take action right away. Change your password, monitor your credit card statements and fully deactivate any hacked accounts you’re no longer using. While not exhaustive, the website, haveibeenpwned.com, allows you to check if your accounts have been compromised. If you find out your email address is part of any known hacks, there’s a good chance your information is for sale on the Dark Web - making it critical to change passwords immediately.
• Heed the warnings: if you receive notices from any corporation advising of a breach, take them seriously. Go online and at minimum change your password to protect your personal information.
• Create a separate online identity: you don’t always have to share all of your personal information online. Have a dedicated email address just for online activity and accounts. Create pseudonyms for sites that don’t require your legal name.
• Manage passwords proactively: create strong passwords, change them often and don’t use the same password across multiple sites. This way, if your login information from a particular site does get compromised, your other accounts remain secure and you’re better able to protect your personal information and identity.

The Dark Web will only continue to grow and proliferate as we live more of our lives online. By practicing vigilance and basic digital hygiene, you can protect yourself and your information from becoming a commodity for hackers and fraudsters.

For more tips to help you protect your personal information online, visit telus.com/wise.