Hello, you are using an old browser that's unsafe and no longer supported. Please consider updating your browser to a newer version, or downloading a modern browser.

Global Accelerated Learning • Est. 1999
Glossary Term Initial Access Broker (IAB)

Training Camp • Cybersecurity Glossary

What is Initial Access Broker (IAB)?

An initial access broker IAB breaches organizations and sells the access to ransomware actors, fueling the cybercrime-as-a-service economy.

Glossary > Threats, Malware & Attacks > Initial Access Broker (IAB)

Understanding Initial Access Broker (IAB)

An initial access broker IAB is a cybercriminal who breaches organizations and then sells that established access to other threat actors, most notably ransomware affiliates, on underground forums. Access is typically obtained through stolen VPN or RDP credentials, exploited vulnerabilities, or phishing, and is monetized as a commodity. IABs have become a key part of the ransomware-as-a-service economy by specializing in the intrusion phase of attacks.

Learn More About Initial Access Broker (IAB):

Ready to Get Certified?

Turn knowledge into credentials with our instructor-led cybersecurity boot camps.

View All Courses →