This site uses cookies. By continuing to browse this site you are agreeing to our use of cookies. Find out more.X

Competing businesses encouraged to share incident data as the attackers do

Share this article:
Competing businesses encouraged to share incident data as the attackers do
Competing businesses encouraged to share incident data as the attackers do

Sharing information between different sectors will help protect companies from attacks.

Speaking to SC Magazine, Tal Be'ery, web research team leader at Imperva, said that sharing information within a sector is more effective than sharing generally.

He said: “They [should] share between themselves and know about attacks and experiences; the attackers have the same rules when it comes to assessing attacks as they want the best return on investment on a tool.

“People are getting attacked, so sharing information and data with others is really important and really helps the defence side. Sharing characteristics can really help in the defence of an attack.”

According to the Imperva web application attack report that was released this week, some businesses reported a maximum of 3,006 attacks during a six-month period. Be'ery said that if attack characteristics are better shared, then victims will know what an attack looks like and know the source of the attack.

“With technology such as Big Data analytics, you can automatically determine a security threat and share it with others,” he said.

“You can use it as you need to, as you have got to share as it is important to acquire intelligence. You can also identify malicious traffic without investing resources in seeing what the traffic is doing.”

Asked if businesses could share with confidence that incidents would not be exposed and undermine their reputation, Be'ery said that when choosing sharing software, you need to make sure that you are not disclosing private details of users.

He said: “If it is not anonomised, you need to be careful not to share as the impact that can have is as bad as it ending up with the attackers.”

Imperva launched the ThreatRadar Community Defense crowd-sourced threat intelligence service earlier this year to aggregate and validate attack data.

Responding to a call from a CISO for vendors to better share intelligence between themselves, Imperva CTO and co-founder Amichai Shulman said that as Imperva sees the value in sharing threat data between customers of the same vendor, it makes sense to aggregate shared threat data from different, competing vendors.

Share this article:

SC webcasts on demand

This is how to secure data in the cloud

Exclusive video webcast & Q&A sponsored by Vormetric

As enterprises look to take advantage of the cloud, they need to understand the importance of safeguarding their confidential and sensitive data in cloud environments. With the appropriate security safeguards, such as fine-grained access policies, a move to the cloud is as, or more, secure than an on-premise data storage.

View the webcast here to find out more

More in News

VC cyber security funding tops £850 million

VC cyber security funding tops £850 million

A new study from US-based research firm CBI Insights reveals that corporate cyber security investments have risen five-fold since 2009, with 30 percent growth in the last year alone.

Russian/Chinese cyber-security pact raises concerns

Russian/Chinese cyber-security pact raises concerns

News that Russia and China are set to sign a cyber-security treaty next month have left Western cyber experts unsure whether it is a threat or a promising development.

UK police arrest trio over £1.6 million cyber theft from cash machines

UK police arrest trio over £1.6 million cyber ...

London Police have arrested three suspected members of an Eastern European cyber-crime gang who installed malware on more than 50 bank ATM machines across the UK to steal £1.6 million.