Slashdot Mirror

← Back to Stories (view on slashdot.org)

Facebook Launches ThreatExchange To Let Companies Share Threat Info

Posted by samzenpus on from the protect-ya-neck dept.

An anonymous reader writes Facebook today launched ThreatExchange, described as "an API-based clearinghouse for security threat information." It's really a social platform, which Facebook naturally excels at building, which allows companies to share with each other details about malware and phishing attacks. Pinterest, Tumblr, Twitter, and Yahoo participated in ThreatExchange and gave feedback as Facebook was developing it. New contributors Bitly and Dropbox have also recently joined, bringing the initial participant list to seven major tech companies.

16 of 30 comments (clear)

  1. Nice by Anonymous Coward · · Score: 2, Interesting

    great place to find some cool exploits... :)

  2. Does it allow by invictusvoyd · · Score: 1

    selfies ? ( :grin: )

  3. Screw the commoners. Share amongst ourselves. by trippin_efnet · · Score: 4, Insightful

    I find this path troubling. I could see this becoming a thing where only mega corporations benefit from this sharing, while leaving small companies, small projects, and the lowly common folk. These kinds of things should be discussed in the open. If someone knows of an exploit, it is irresponsible to not share this info so we can all band together and fix our fucking systems. It shouldn't only be the elite few in the circles of trust who get to fix their systems first.

    1. Re:Screw the commoners. Share amongst ourselves. by Richard_at_work · · Score: 1

      Then make your own project and include everyone. This is Facebook using Facebooks money to do something that benefits Facebook. You aren't entitled to benefit from that.

    2. Re:Screw the commoners. Share amongst ourselves. by trippin_efnet · · Score: 1

      As I'm sure you're well aware, we have/had many open lists where vulnerabilities are/were shared openly, so I don't really need to personally create one. This is not about anyone feeling entitled. This is about the fact that these systems are more important than just their servers. A lot of the software and hardware used to power their systems are also powering banks, many governmental systems, hospital networks, and on and on and on. To take the approach that we'll patch a few and leave the rest open is terribly bad for everyone. If you can't see that, you're not looking wide angled enough. But thanks for snotty reply. :)

    3. Re:Screw the commoners. Share amongst ourselves. by circletimessquare · · Score: 1

      when a corporation or group of corporations inhabits a large enough of a market, society and government does in fact have a right to intervene and alter or reduce their power and make demands on them

      many people have this mental block where government demands or social demands on private corporations and individuals is the root of all evil

      when simple economic and historical fact shows that when private entities dominate public spaces, they abuse the privilege

      --
      intellectual property law is philosophically incoherent. it is your moral duty to ignore it or sabotage it
    4. Re:Screw the commoners. Share amongst ourselves. by circletimessquare · · Score: 1

      because facebook doesn't dominate the market where this topic is important, of course /s

      --
      intellectual property law is philosophically incoherent. it is your moral duty to ignore it or sabotage it
    5. Re:Screw the commoners. Share amongst ourselves. by quantaman · · Score: 1

      I think this is less the case of "we found a bug in package X" and more like "we've been getting a lot of attacks from phishing group Y, we've been doing Z to stop them".

      That's not the kind of info you can disclose publicly since it tells attackers where you're vulnerable, if you're going to do this kind of thing you're going to have to make it a small circle.

      --
      I stole this Sig
  4. Threat identified by Blaskowicz · · Score: 1

    I'm adding fb.com to my list of blocked hosts. Thanks, f***book.

  5. Re:'Which Facebook naturally excels as building'?? by grcumb · · Score: 1

    Try to get the dicks out of your mouth before you post.

    It's the fact that you used the plural that makes this true comedy.

    --
    Crumb's Corollary: Never bring a knife to a bun fight.
  6. Site for disclosing threats... by Anonymous Coward · · Score: 2, Informative

    ...and it's made using WordPress.

  7. Awesome site! by l0n3s0m3phr34k · · Score: 1

    So, you can go sign up, but there's nothing in my inbox from them. I even used my @hp.com email, nada.

    1. Re:Awesome site! by tepples · · Score: 1

      The alphabet agencies are now busy reading your mail right now.

      As opposed to what, the Kanji agencies?

    2. Re:Awesome site! by l0n3s0m3phr34k · · Score: 1

      Dear God I feel sorry for them. It's my work email, so it's just full of incident reports, Inspiration Emails from Meg Whitman and fellow execs, all the CRAP the former employee who had my email eddy signed up for (some HR drone, a dozen HR stuff about new government regs and crap per week), and...that's it. I'd love for my email to be added into the "haystack" they sift through - maybe it would help obfuscate some other data haha

  8. Yeah... by thephydes · · Score: 1

    and I'd trust Facebook? well no ....

    1. Re:Yeah... by Anonymous Coward · · Score: 1

      Was going to say... this seems like a ploy. Wow, the people who forcibly link your personal life to sell to marketers are going to start a privacy, confidentiality, and integrity focused website? Fat chance.