Technology

What really happens on the dark web and how to stay safe

Published

5 months ago

November 1, 2025

What really happens on the dark web and how to stay safe

NEWYou can now listen to Fox News articles!

The dark web often feels like a mystery, hidden beneath the surface of the internet that most people use every day. But to understand how scams and cybercrimes actually work, you need to know what happens in those hidden corners where criminals trade data, services and stolen access.

Cybercriminals rely on a structured underground economy, complete with marketplaces, rules and even dispute systems to operate safely away from law enforcement. By learning how these systems function, you can better understand the threats that could reach you and avoid becoming the next target.

Sign up for my FREE CyberGuy Report
Get my best tech tips, urgent security alerts and exclusive deals delivered straight to your inbox. Plus, you’ll get instant access to my Ultimate Scam Survival Guide — free when you join my CYBERGUY.COM newsletter.

5 SOCIAL MEDIA SAFETY TIPS TO PROTECT YOUR PRIVACY ONLINE

Learn how to protect your personal information from dark web threats with simple cybersecurity habits and tools. (Phil Barker/Future Publishing via Getty Images)

Inside the hidden layers of the internet

The internet is often divided into three layers: the clear web, the deep web and the dark web. The clear web is the open part of the internet that search engines like Google or Bing can index, including news sites, blogs, stores and public pages. Beneath it lies the deep web, which includes pages not meant for public indexing, such as corporate intranets, private databases and webmail portals. Most of the content in the deep web is legal but simply restricted to specific users.

The dark web, however, is where anonymity and illegality intersect. It requires special software such as Tor to access, and much of its activity happens behind encryption and invitation-only walls. Tor, short for The Onion Router, was originally developed by the U.S. Navy for secure communication but has since become a haven for both privacy advocates and criminals.

It anonymizes users by routing traffic through multiple encrypted layers, making it almost impossible to trace where a request truly came from. This anonymity allows criminals to communicate, sell data and conduct illegal trade with reduced risk of exposure.

Over time, the dark web has become a hub for criminal commerce. Marketplaces once operated like eBay for illegal goods, offering everything from drugs and stolen credit card data to hacking tools and fake identities. Many of these platforms have been shut down, but the trade continues on smaller, more private channels, including encrypted messaging apps such as Telegram. Vendors use aliases, ratings and escrow systems to build credibility.

Ironically, even among criminals, trust is a critical part of business. Forums often have administrators, verified sellers and mediators to settle disputes. Members who cheat others or fail to deliver are quickly blacklisted, and reputation becomes the main currency that determines who can be trusted.

The criminal economy and how scams are born

Every major cyberattack or data leak often traces back to the dark web’s underground economy. A single attack typically involves several layers of specialists. It begins with information stealers, malware designed to capture credentials, cookies and device fingerprints from infected machines. The stolen data is then bundled and sold in dark web markets by data suppliers. Each bundle, known as a log, might contain login credentials, browser sessions and even authentication tokens, often selling for less than $20.

Another group of criminals, known as initial access brokers, purchases these logs to gain entry into corporate systems. With that access, they can impersonate legitimate users and bypass security measures such as multi-factor authentication by mimicking the victim’s usual device or browser. Once inside, these brokers sometimes auction their access to larger criminal gangs or ransomware operators who are capable of exploiting it further.

Some of these auctions are run as competitions, while others are flash sales where well-funded groups can buy access immediately without bidding. Eventually, this chain of transactions ends with a ransomware attack or an extortion demand, as attackers encrypt sensitive data or threaten to leak it publicly.

Interestingly, even within these illegal spaces, scams are common. New vendors often post fake listings for stolen data or hacking tools, collect payments and disappear. Others impersonate trusted members or set up counterfeit escrow services to lure buyers.

Despite all the encryption and reputation systems, no one is truly safe from fraud, not even the criminals themselves. This constant cycle of deception forces dark web communities to build internal rules, verification processes and penalties to keep their operations somewhat functional.

What you can do to stay ahead of dark web-driven threats

For ordinary people and businesses, understanding how these networks operate is key to preventing their effects. Many scams that appear in your inbox or on social media originate from credentials or data first stolen and sold on the dark web. That is why basic digital hygiene goes a long way. Below are some steps you can take to stay protected.

MAJOR COMPANIES, INCLUDING GOOGLE AND DIOR, HIT BY MASSIVE SALESFORCE DATA BREACH

From password managers to antivirus software, experts share practical ways to keep hackers out of your data. (Annette Riedl/picture alliance via Getty Images)

1) Invest in personal data removal services

A growing number of companies specialize in removing your personal data from online databases and people search sites. These platforms often collect and publish names, addresses, phone numbers and even family details without consent, creating easy targets for scammers and identity thieves.

While no service can guarantee the complete removal of your data from the internet, a data removal service is really a smart choice. They aren’t cheap, and neither is your privacy. These services do all the work for you by actively monitoring and systematically erasing your personal information from hundreds of websites. It’s what gives me peace of mind and has proven to be the most effective way to erase your personal data from the internet. By limiting the information available, you reduce the risk of scammers cross-referencing data from breaches with information they might find on the dark web, making it harder for them to target you.

Check out my top picks for data removal services and get a free scan to find out if your personal information is already out on the web by visiting Cyberguy.com.

Get a free scan to find out if your personal information is already out on the web: Cyberguy.com.

2) Use unique passwords and a password manager

One of the easiest ways to stay safe online is to use unique, complex passwords for every account you own. Many breaches happen because people reuse the same password across multiple services. When one site is hacked, cybercriminals take those leaked credentials and try them elsewhere, a technique known as credential stuffing. A password manager eliminates this problem by generating strong, random passwords and securely storing them for you.

Next, see if your email has been exposed in past breaches. Our No. 1 password manager (see Cyberguy.com) pick includes a built-in breach scanner that checks whether your email address or passwords have appeared in known leaks. If you discover a match, immediately change any reused passwords and secure those accounts with new, unique credentials.

Check out the best expert-reviewed password managers of 2025 at Cyberguy.com.

3) Install strong antivirus protection

Antivirus software remains one of the most effective ways to detect and block malicious programs before they can steal your information. Modern antivirus solutions do far more than just scan for viruses. They monitor system behavior, detect phishing attempts and prevent infostealer malware from sending your credentials or personal data to attackers.

The best way to safeguard yourself from malicious links that install malware, potentially accessing your private information, is to have strong antivirus software installed on all your devices. This protection can also alert you to phishing emails and ransomware scams, keeping your personal information and digital assets safe.

Get my picks for the best 2025 antivirus protection winners for your Windows, Mac, Android and iOS devices at Cyberguy.com.

4) Keep your software updated

Outdated software is one of the biggest entry points for attackers. Cybercriminals often exploit known vulnerabilities in operating systems, browsers and plugins to deliver malware or gain access to systems. Installing updates as soon as they are available is one of the simplest yet most effective forms of defense. Enable automatic updates for your operating system, browsers and critical applications.

5) Enable two-factor authentication

Even if your password gets leaked or stolen, two-factor authentication (2FA) adds an additional barrier for attackers. With 2FA, logging in requires both your password and a secondary verification method. This includes code from an authentication app or a hardware security key.

6) Consider identity theft protection services

Identity theft protection can provide early warnings if your personal information appears in data breaches or on dark web marketplaces. These services monitor your sensitive data, such as Social Security numbers, bank details or email addresses. If anything suspicious is detected, they alert you. Many providers also offer recovery assistance, helping you restore stolen identities or close fraudulent accounts. While no service can prevent identity theft entirely, these tools can shorten your response time and limit potential damage if your data is compromised.

See my tips and best picks on how to protect yourself from identity theft at Cyberguy.com.

SCAMMERS NOW IMPERSONATE COWORKERS, STEAL EMAIL THREADS IN CONVINCING PHISHING ATTACKS

Protecting your identity starts with strong passwords, two-factor authentication and regular software updates. (Jens Kalaene/picture alliance via Getty Images)

Kurt’s key takeaway

The dark web thrives on the idea that anonymity equals safety. But while criminals may feel protected, law enforcement and security researchers continue to monitor and infiltrate these spaces. Over the years, many large marketplaces have been dismantled, and hundreds of operators have been caught despite their layers of encryption. The takeaway for everyone else is that the more you understand how these underground systems function, the better prepared you are to recognize warning signs and protect yourself.

Do you think law enforcement can ever truly catch up with dark web criminals? Let us know by writing to us at Cyberguy.com.

CLICK HERE TO DOWNLOAD THE FOX NEWS APP

Kurt “CyberGuy” Knutsson is an award-winning tech journalist who has a deep love of technology, gear and gadgets that make life better with his contributions for Fox News & FOX Business beginning mornings on “FOX & Friends.” Got a tech question? Get Kurt’s free CyberGuy Newsletter, share your voice, a story idea or comment at CyberGuy.com.

Related Topics:cybercrime Featured Privacy software

Click to comment

Technology

The best deals we’ve found from Amazon’s Big Spring Sale (so far)

Published

7 hours ago

March 29, 2026

Press Room

The best deals we’ve found from Amazon’s Big Spring Sale (so far)

Amazon loves to manufacture an event. March is historically a dry spell for deals; however, with Amazon’s third annual Big Spring Sale, which runs through March 31st, the retail behemoth is hoping to lure in would-be shoppers with the promise of steep(ish) savings and discounts on more seasonal, spring-centric items to hold folks over until Prime Day surfaces at the onset of summer.

The bulk of the deals we’re seeing right now aren’t quite on par with Black Friday or Prime Day, and, as with most shopping events, not everything on sale is worth picking up. That said, Amazon’s latest sale is one of the first big opportunities we’ve seen this year to save — and bypass some tariff-induced pain — especially since some of our favorite gadgets are currently matching their lowest prices to date, including headphones, robot vacuums, and a slew of charging accessories.

To help you sift through it all, we’re focusing squarely on the gadgets that are actually worth picking up, many of which we’ve tested and recommend even at full price. You’re not limited to Amazon, either. Retailers like Best Buy and Walmart are offering the same deals in a lot of cases, meaning you don’t necessarily need to succumb to shopping at the so-called “Everything Store” just to save a buck (or 50).

Headphone and earbud deals

Streaming and soundbar deals

Fitness tracker and smartwatch deals

Other Verge-approved deals

Update, March 28th: Adjusted to reflect current pricing / availability and several new deals, including those for Apple’s latest entry-level iPad, the Breville Barista Express, and JBL’s Flip 7 speaker.

Technology

Why that $4 charge on your statement could be fraud

Published

7 hours ago

March 29, 2026

Press Room

Why that charge on your statement could be fraud

NEWYou can now listen to Fox News articles!

A $4 charge is easy to ignore. It might appear as a parking fee, a small purchase or a vague merchant name that doesn’t raise any red flags. Consumer protection groups and law enforcement say scammers are counting on that.

Recent warnings describe a pattern sometimes called “ghost tapping,” where small, unfamiliar charges show up on contactless payment cards without a clear point of purchase. The amounts are easy to miss, but they can signal unauthorized access to your payment method rather than a simple billing error.

Sign up for my FREE CyberGuy Report. Get my best tech tips, urgent security alerts and exclusive deals delivered straight to your inbox. Plus, you’ll get instant access to my Ultimate Scam Survival Guide — free when you join my CYBERGUY.COM newsletter.

GHOST-TAPPING SCAM TARGETS TAP-TO-PAY USERS

A small, unfamiliar charge can be the first sign your payment details are being tested without your knowledge. (Leonie Asendorpf/picture alliance via Getty Images)

How does ghost tapping work?

Better Business Bureau (BBB) warnings use the term “ghost tapping” to describe these incidents in consumer alerts. In simple terms, it means a payment can be triggered without you actively making a purchase.

One reported method involves compromised payment terminals that quietly process low-value contactless charges. Another involves unauthorized NFC readers operating at close range, sometimes in crowded places. In these cases, a card or mobile wallet can be charged within inches.

Because these transactions run through standard contactless payment networks, they appear as normal card-present purchases. There is usually no clear sign on your statement that anything was wrong.

The small charges aren’t arbitrary

Low-dollar transactions are used to confirm that a card can be charged without being declined. When a small charge goes through, it signals that the payment details are active and usable. Once that charge goes through, it establishes a working payment path. Scammers can then run additional transactions using the same card details, sometimes across different merchants or terminals. Many people only notice these charges after they post to an account. At that point, the transaction appears as a completed purchase, not a pending authorization.

Why acting quickly matters

This means a charge that looks harmless could actually be the first step in a larger fraud attempt. Over time, these fraudulent charges may extend beyond a single card. If your payment details have been exposed or are stored in a compromised system, they can be reused until you cancel the card. That can result in multiple charges over several days or even billing cycles.

Delays in reporting also affect how quickly you can stop fraud. The Federal Trade Commission (FTC) advises you to report unauthorized charges as soon as they are identified. In practice, that means contacting your card issuer as soon as you see a charge you don’t recognize, either through the issuer’s app or customer service line.

Credit cards typically offer stronger fraud protections than debit cards, where money may be withdrawn directly from your bank account. Under federal law, liability for unauthorized credit card charges is limited, but those protections depend on when you report it.

Scammed? What federal agencies say to do next

If you spot a charge you don’t recognize, acting quickly can limit damage and protect your rights under federal law.

Review transactions as they post

The FTC recommends checking account activity regularly and flagging any unfamiliar charges as soon as they appear.

Contact your card issuer immediately

The Consumer Financial Protection Bureau (CFPB) advises reporting the charge right away and opening a dispute through your issuer’s app or customer service line.

Submit a formal dispute within 60 days

To preserve protections under the Fair Credit Billing Act, you must send a billing error notice within 60 days of the statement that includes the charge.

Understand the investigation timeline

Card issuers must acknowledge your dispute within 30 days and resolve it within two billing cycles, typically no more than 90 days.

Confirm the charge details before disputing

Check the merchant name, date and amount, since some transactions may appear under payment processors or parent companies.

Replace or block the card if needed

If the charge is unauthorized, the issuer can cancel the card and issue a replacement to stop further transactions.

Scammers often use small charges to confirm your card works before making larger unauthorized transactions. (Clara Margais/picture alliance via Getty Images)

Simply keeping an eye on your accounts may not be enough

Even if you check your statements regularly, small charges can still slip through and delay detection.

Timing can work against you

A lot hinges on when you check your account. If you review transactions infrequently or rely on monthly statements, unauthorized charges may only surface after they’ve already posted. By then, multiple transactions can appear across different dates or merchant names, making them harder to spot.

Alerts don’t always catch small charges

Notifications are not always consistent across accounts. Some banks alert you only after a transaction is completed, while others set thresholds that don’t flag low-dollar amounts. That can allow small charges to slip through without notice. If the same payment details are used elsewhere, activity may not appear in one place.

Ways to protect yourself from ghost tapping

These simple steps can help reduce your risk and catch suspicious charges before they turn into bigger fraud.

1) Turn on transaction alerts

Set up real-time alerts for all charges, even small ones, so you can spot suspicious activity immediately.

2) Use mobile wallets when possible

Apple Pay and Google Pay use tokenization, which means your real card number is not shared with merchants.

3) Keep your card secure in crowded places

Contactless cards can be read at close range, so avoid leaving them exposed in busy environments.

4) Check your accounts more frequently

Do not rely on monthly statements. Review transactions every few days to catch issues early.

How broader monitoring can help

Even with these steps, some suspicious activity may not show up in one place or right away. That’s where broader monitoring comes in. Identity and credit monitoring services are designed to track changes tied to your financial and personal information as they happen. This can include transaction monitoring along with three-bureau credit monitoring, so activity linked to your identity can be seen across accounts and credit files at the same time. That includes new inquiries, account openings and changes that would not appear in any one banking app.

Some services also scan known data breach records and dark web marketplaces for exposed personal information. If your data appears in those sources, you can receive an alert tied to the specific identifier that was found.

HOW DEBIT CARD FRAUD CAN HAPPEN WITHOUT USING THE CARD

If suspicious activity is detected, many platforms offer tools to take action quickly. This may include locking your credit file and working with a U.S.-based fraud resolution team to contact card issuers, dispute charges and close affected accounts.

Some identity protection services also include insurance coverage, often up to $1 million per adult, to help cover eligible losses and legal fees, along with 24/7 fraud resolution support to help restore your identity.

No service can prevent every kind of identity theft. If it happens, monitoring and guided support can make recovery easier to manage.

How to check if your personal information was exposed

If you are unsure whether your personal information has already been exposed, take action now. Our No. 1 identity theft protection pick includes a free identity breach scan, which allows you to see whether your data appears in known leaks. Early detection gives you more control and helps you respond before fraud spreads.

See my tips and best picks on Best Identity Theft Protection at Cyberguy.com.

Catching a suspicious charge early and reporting it quickly can help stop further fraud before it escalates. (M. Scott Brauer/Bloomberg via Getty Images)

Kurt’s key takeaways

A small charge is easy to ignore, especially when it blends in with everyday purchases. But as these reports show, that’s exactly what scammers are counting on. A few dollars can be the first sign that your payment details are active and vulnerable, giving attackers a way to test and expand access without raising alarms.

The sooner you catch it, the easier it is to stop. This is one of those situations where habits matter. Checking your transactions regularly, acting quickly on anything unfamiliar and adding an extra layer of monitoring can make a real difference. Fraud doesn’t always start big, but it often starts small.

Have you ever spotted a small charge you almost ignored that turned out to be fraud, and how did you handle it? Let us know by writing to us at Cyberguy.com.

CLICK HERE TO DOWNLOAD THE FOX NEWS APP

Technology

Suno leans into customization with v5.5

Published

19 hours ago

March 28, 2026

Press Room

Suno just released one of its biggest updates yet with v5.5 of its AI music model. Where previous updates focused mostly on improving fidelity and creating more natural vocals, v5.5 is about giving users more control. It includes three new features: Voices, My Taste, and Custom Models.

In the release notes, Suno says that Voices is its most requested feature. It lets users train the vocal model on their own voice. They can upload clean accapellas, finished tracks with backing music, or just sing directly into the mic on their phone or laptop. The cleaner and higher quality the recording, the less data is required. And to prevent someone from simply stealing another person’s voice, Suno requires the user to also speak a verification phrase. Though, this might be possible to fool with existing AI models of celebrity voices.

Once the Voices feature is trained, users can then have an AI version of themselves sing on uploaded music or AI-generated outputs.

To further personalize outputs, Custom Models allows users to train Suno on their own music. Users will need to upload at least six tracks from their catalog and give the custom model a name. Then they’ll be able to use it to guide v5.5 responses to prompts.

Lastly, My Taste learns tastes and preferences over time. What genres, moods, and artists you routinely come back to for prompts, and applies them when using the magic wand to autogenerate styles.

While My Taste will be available to all users, Voices and Custom Models are reserved for Pro and Premier subscribers.