In a recent interview at the RSA Conference, John Fokker, Vice President of Threat Intelligence at Trellix, expressed his frustration with the glamorization of cybercriminals in the security industry. He emphasized that these individuals are not mythical figures but rather ordinary people using technology to commit crimes.
Debunking the Myth of Cybercriminals
Fokker’s comments come amid a trend where security vendors assign dramatic names to cybercrime groups, creating an almost mystical aura around them. He argues that this narrative does not benefit organizations or their security efforts. Instead, he suggests that the industry should adopt a more realistic view of these actors, referring to them with less flattering names.
The Dark Web Roast Initiative
To counter the glamorization of cybercriminals, Trellix has launched a blog series called the Dark Web Roast. This initiative uses humor and mockery to highlight the absurdities of criminal activities. The blog features memes and commentary on various cybercriminal incidents, with a disclaimer noting that while the content may be amusing, it reflects serious criminal behavior.
Highlighting Criminal Missteps
One recent edition of the Dark Web Roast discussed a ransomware gang that appeared to schedule their extortion attempts like a content calendar, suggesting that many of their victims might be fabricated. Another example featured an exploit developer known as cortana9000, who attempted to sell a Cisco remote code execution vulnerability, identified as CVE-2026-20045, for $70,000, only to be informed that the exploit had already depreciated in value.
Law Enforcement Strategies
Fokker also pointed out the evolving tactics of law enforcement in combating cybercrime. He referenced the UK’s National Crime Agency’s dismantling of the LockBit ransomware infrastructure, which involved public mockery of the group. Such strategies aim to fracture the trust among cybercriminals, making it harder for them to collaborate effectively.
Through initiatives like the Dark Web Roast and collaboration with law enforcement, Trellix seeks to undermine the confidence of cybercriminals and contribute to safer digital environments.
This article was produced by NeonPulse.today using human and AI-assisted editorial processes, based on publicly available information. Content may be edited for clarity and style.
