UNDERSTAND YOUR EMPLOYEES’ EXPOSURE
by monitoring the surface web

A phishing attack against your employees is usually preceded by a short phase of reconnaissance of the targets. In targeted spear phishing attacks, fraudsters often take data from employees’ social media profiles. There are also email lists offered in hacker forums, and lastly, there are a number of hacking tools that search the Internet and Dark Web for information on the targets.

Higher-ranking CEOs & C-suite executives are usually more exposed to the public (their profile can often be found on the organization’s website), making them easier targets. For all other departments and employee types, it is difficult to assess the steps an attacker has to take to gather the information they need to reach their target. Only if you venture to perform the same information gathering as the hacker, can you assess the risk of your employees getting exposed to phishing attacks.

Request Quote Request Demo

Client Testimonials

Very good price to performance ratio, service is ready to be used and integrated based on it’s API first strategy
CEO
MSSP DACH
As an MSP we were searching for a solution that could provide Dark Web monitoring for stolen credentials and potential attacks, Kaduu exceeded expectations with the most competitive pricing model. would highly recommend Kaduu.
Security Vendor
MSSP Australia

The Threats

Employee Exposure: The greater an employee’s exposure on the Internet or Dark Web, the higher the likelihood of them becoming a victim of a social engineering attack, like phishing. Employees who register with their names and business email accounts on private websites put the whole organization at risk as this gives the hacker a bigger attack surface.

Stolen Credit Cards: In an era of digital transactions and online shopping, it’s no secret that financial fraud has adapted and evolved. Physical theft is no longer the sole means of pilfering credit cards, and, worryingly, your credit card may be spending time in another person’s ‘virtual’ wallet without your knowledge. Thats why its important to monitor all your employees credit cards in Kaduu.

Social Media Profiles: As the world grows more connected, an unprecedented danger has arisen, shadowing our digital interactions. This menace is social media spoofing, a sophisticated tactic used by cybercriminals to impersonate individuals or organizations, thereby creating an atmosphere of trust and credibility. It serves as a powerful weapon in phishing, Business Email Compromise (BEC), and similar online attacks.

Our Approach

What We Monitor

In Kaduu, we measure each employee’s exposure on the Internet and note where indications of activities related to the specific employee can be found. Sources include Redit, Youtube, Twitter and any website where the employees stored their email address. The more results in different sources, the bigger the exposure.

We also monitor all global darknet marketplaces in order to detect stolen credit cards.

To prevent social media spoofing attacks, we can monitor specific username or profile pictures and alert you, if they appear on any common social media plattform.

The Benefit

Everything that helps you reduce your attack surface can also limit future breaches. If you find any employee’s business email account on private websites, you will be able to create targeted user awareness training that helps them understand the consequences of such an exposure.

More information

Get Timely Notifications!

Using Kaduu’s domain monitoring service, you can create alerts that can be delivered via email in CSV, docx or JSON format, inside the dashboard or via REST API.

“If employees understand that their behavior on the Internet can potentially harm them directly as they become exposed to phishing attacks, you might be able to reduce the number of future attacks by providing targeted training.”