Facebook has built a platform where the corporations can share security threats they encounter. This practice is aimed at defending cyberattacks. Many companies, through specialized industry groups, share information attacks. However, this act will also bring bad influence on these companies although they blindly attack companies in other industries.
On Tuesday, Facebook built this new platform, ThreatExchange. Nevertheless, more than one year ago, when several companies, Facebook included, were trying to propose a solution to stop a botnet to send spam, this idea of building a new platform was came out.
ThreatExchange was built on Facebook providing corporations with APIs (application programming interfaces) for checking or uploading new threat data. This information contains malicious domain names, malware samples and other indicators of compromise. Mark Hammell, a manager of the Threat Infrastructure team at Facebook, posted a blog Wednesday. In the blog he said “We quickly learned that sharing with one another was key to beating the botnet because parts of it were hosted on our respective services and none of us had the complete picture, during our discussions, it became clear that what we needed was a better model for threat sharing.”
Companies can only share certain information with select groups of organizations, because this is under control of mechanisms that built on the platform. Twitter, Yahoo, Tumblr and Pinterest joined in the program in the early time and they have tested the program when it was still being developed. Box and Bitly have participated recently.
ThreatExchange is designed to make organizations all over the world use ThreatExchange to learn from each other and make their systems safer, Hammel said. He also called on companies to work together on security, because when one company gets stronger, so do the rest of others.