Slashdot Mirror

← Back to Stories (view on slashdot.org)

New Site Aims To Be iTunes For Exploits

Posted by Soulskill on from the bet-they-won't-cost-99-cents dept.

Trailrunner7 writes "It's been tried before, but NSS Labs founder Rick Moy says his company's new Exploit Hub — a store front for exploit code — can work. In an interview, he explains why the current market for exploits doesn't work for the good guys, and why zero-day exploits don't help anyone. Above-board markets for software vulnerabilities have been around for close to a decade, but previous efforts to market exploits have had mixed results. The business of selling exploits versus vulnerabilities is fraught with danger, and organizations like WabiSabiLabi have operated eBay-style marketplaces for zero-day exploits for years, but haven't seen exploit writers beating a path to their door. The need for an above-board marketplace that can compete with the black market surely exists, but getting it to work is another matter entirely."

1 of 55 comments (clear)

  1. Moy didn't say "iTunes" by BadAnalogyGuy · · Score: 5, Informative

    He compared his company to "Craigslist", not "iTunes".

    I'm not sure that's the image you'd want to project for your company, but I'm not that guy.