In 2026, cybersecurity isn't just about software; it's about understanding the "criminal mind" behind the screen. Brett Johnson, once dubbed the "Original Internet Godfather" by the U.S. Secret Service, is the man who literally helped build the blueprint for modern cybercrime. From founding the notorious ShadowCrew to becoming a top consultant for the FBI, Johnson’s journey is a masterclass in how the dark web works and, more importantly, how you can stay safe from it.
The Dark Web is often shown in movies as a scary, neon-lit digital basement. But according to Brett Johnson, it’s actually much more like a regular shopping site—except instead of buying shoes, people are buying your bank password.
The Rise and Fall of ShadowCrew
In the early 2000s, before there was "Silk Road" or modern hacking forums, there was ShadowCrew. Co-founded by Johnson, this was the world’s first major "cybercrime mall." It was a place where 4,000 criminals could meet to trade:
-
Stolen Credit Cards: Thousands of numbers sold in bulk.Â
-
Counterfeit Documents: Fake IDs, passports, and birth certificates.
-
Hacking Tips: Step-by-step guides on how to trick people into giving up their data.Â
Johnson was so good at his job that he landed on the Secret Service Most Wanted list. After a high-stakes game of cat-and-mouse, he was arrested in 2005. He eventually served over eight years in prison, but not before he learned exactly how fragile our digital lives really are.
The Mechanics of a Modern Cyber-Heist
In his discussions with Business Insider, Johnson explains that stealing a million dollars doesn't always require a "genius" hacker. It usually requires three simple things:
-
Gathering Data: Criminals use "phishing" (fake emails) or "skimming" (devices on ATMs) to get your info. Â
-
The Transaction: They take that info to the Dark Web. In 2026, these marketplaces use AI-powered support bots and escrow systems to make sure the criminals don't rip each other off.
-
The Cash-Out: This is the hardest part. They use "Money Mules" or cryptocurrency to turn stolen digital numbers into cold, hard cash.
Why Do People Still Get Scammed?
Johnson says it’s not because people are "stupid." It’s because Trust is the entry point.
"Before a criminal can victimize you, they have to win your trust. If you don't trust me, you won't give me access, data, or cash."
Criminals use "Social Engineering"—a fancy way of saying they manipulate your emotions. They make you feel scared (like a fake tax bill) or excited (like a fake prize) so you click the link without thinking.
How to Protect Yourself: Pro Tips from a Former Fraudster
Now that he's on the "good side," Johnson spends his time telling businesses and regular people how to "force the attacker to move on." Here is his 2026 checklist for staying safe:
-
Freeze Your Credit: This is the #1 thing you can do. It prevents anyone from opening a new credit card in your name, even if they have your Social Security number.
-
Use a Password Manager: Stop using "Password123." Use a tool that creates long, crazy passwords like
jK9!Lp#2mQfor every site. -
Enable MFA (Multi-Factor Authentication): Always use the "second code" sent to your phone. It’s the digital equivalent of a second lock on your front door.Â
-
Set Account Alerts: Make sure your phone pings you every time $1 is spent. If you see a $0.50 charge you didn't make, someone is "testing" your card. Â
The Human Element
The biggest takeaway from the "Internet Godfather" is that 90% of cyberattacks succeed because of simple mistakes, not super-advanced technology. By closing the "common gaps" like reused passwords and unchecked third-party access, you make yourself a "hard target."16 Criminals are like burglars—if your house has a loud alarm and a big dog, they’ll just go to the next house.
