Executives face higher risks than most employees when it comes to cybercrime. A study by GetApp, a business software directory, found that 72% of US executives have been targeted by cybercriminals at least once. In addition, 69% of employees at companies that experienced attacks against leaders reported that these incidents have increased over time.
Experts say the dark web has become a hub for criminals seeking corporate leaders’ personal and professional data. Vakaris Noreika is a cybersecurity expert at NordStellar who explained, “Corporate leaders are prime targets for cybercriminals because their credentials and personally identifiable data can grant cybercriminals access to sensitive resources or deploy sophisticated social engineering attacks to maximise the damage and profits.”
“The dark web is filled with bad actors — many financially motivated, others driven by political or ideological goals — making it a hub for threats against executives, from cyberattacks to physical assaults.”
High-profile cases have made the threats more visible. The assassination of the UnitedHealthcare CEO Brian Thompson showed how online attacks can intersect with physical danger, showing that executives can be targeted both digitally and in real life.
Noreika said that once data appears on the dark web, it is difficult to remove. Cybersecurity teams must be prepared with measures to prevent infiltration, contain threats, and respond quickly if an executive’s information is compromised.
More from News
- Gen Z Is The Most Digitally Literate, But Falls For Scams The Most. Here’s Why
- Can AI Go Green Without Losing Its Power?
- Experts Share: How To Stay Protected From Cybersecurity Risks Of Digital ID
- UK Government Invests £4.4 Million To Drone And Aviation Tech
- Could Google Remove The AI Search Feature?
- Crypto Scams Reach $2.3 Billion In 2025, Here’s Why
- Neon Goes Dark (Ironically), Exposing Users’ Private Data To Other Users
- How Is The UK Accelerating The Use Of AI In The NHS?
How Are Physical Security Teams Reacting?
Physical security teams are paying more attention to online threats. Ron Zayas, CEO of Ironwall by Incogni, a data removal service, noted that companies are increasingly concerned about executives being named directly in dark web posts. Credentials and personal information often appear alongside those of other employees, and some companies are explicitly targeted for access to senior management accounts.
Leaks containing location details raise particular alarm. Zayas explained that teams worry about executives being tracked to their homes or workplaces, which could increase the risk of assault. Other dangerous activity, such as planning or hinting at attacks, also draws close scrutiny from security personnel.
The rising interest in executive protection has been noticeable over the past eight months. Companies are looking for ways to monitor the dark web proactively, trying to catch threats before they escalate into physical or cyber incidents.
What Are The Main Cyber Threats For Execs?
Targeted cyberattacks rank as the largest online threat for executives. Noreika said, “In the most common cases, hackers use stolen credentials to infiltrate a network.
“However, they might also use personal information to launch phishing campaigns, tricking executives into downloading malware. They can also carry out business email compromise attacks, posing as corporate leaders to scam employees, partners, or vendors, or even use snippets of their voice for deepfakes. This enables them to steal company funds, fool third parties into payments, or leak sensitive data.”
Companies are advised to maintain strict access controls, multi-factor authentication, and segmented networks. Physical protection measures are equally important, with security protocols to protect executives outside the office. A decent response plan should cover containment, incident reporting and coordination with law enforcement.
Execs should receive training on cybersecurity to stay protected… or vigilant, at least. Raising awareness about all these threats can lower the chances of sensitive information being exposed.
