A new web portal is aiding cyber-threat incident responders by detailing vulnerabilities in popular malware, but its existence is causing debate among security professionals. Although intelligence sharing within the cyber-security community is vital, some community members have valid concerns about the publication of malware details. These include a potential loss of valuable intelligence for researchers conducting secretive operations. In addition, the vulnerabilities’ details could benefit cyber-threat actors who are pursuing constant improvements to their malicious tools. The portal, created by bug bounty hunter John Page, has yet to become popular; if it evolves into a primary resource for network defenders, it will inevitably also benefit their adversaries.

×
Want these
Threat Intelligence reports sent straight to your inbox?
Subscribe below!
Thank you!
Error - something went wrong!
Most Recent Flipbooks
Weekly Intelligence Summary 21 October
Main story: Ransom Cartel and REvil: Partners in cybercrime?
Weekly Intelligence Summary 14 Oct
Main story: Hacktivists fan flames of Iranian anti-regime protests
Weekly Intelligence Summary 07 Oct
Main story: ProxyNotShell spells déjà vu for MS Exchange Server defenders
Weekly Intelligence Summary 30 Sept
Main story: Rogue ex-developer leaks LockBit 3.0 builder
Weekly Intelligence Summary 23 Sept
Main story: Uber compromised by Lapsus$'s resurgence
Weekly Intelligence Summary 16 Sept
Main story: Cyber attacks shock the Italian energy sector
Weekly Intelligence Summary 09 Sept
Main story: Back to school for students and ransomware groups