Feeds

Cybersecurity groups band together in malware fight

'A chain of trust'

The Essential Guide to IT Transformation

Three cybersecurity groups said Tuesday they plan to band together to combat the growing scourge of malware.

The Anti-Spyware Coalition, National Cyber Security Alliance, and StopBadware.org said the Chain of Trust Initiative will link together vendors, researchers, government agencies, network providers, and other groups involved in internet security. The members said they want to establish a united front against malware suppliers in much the way groups coalesced to successfully fight providers of adware several years ago.

"Organization and collaboration are out best tools against an enemy that doesn't play by any rules," StopBadware.org's manager, Maxim Weinstein, said in a statement announcing the alliance. "Just by nature of how the internet works, malware distributors have a technological advantage, but we can respond by strengthening our shared networks and by better understanding our shared responsibilities."

Maybe so, but it's clear that the participants have their work cut out. While the groups are looking to the the success the ASC, or Anti-Spyware Coalition, had in the past few years driving Gator, Zango and other adware and spyware purveyors out of business, fighting malware crooks will be a different thing altogether. Unlike most of the adware pushers, malware organizations don't tend to be legal entities located in the US.

The pressure exerted by the previous coalition forced adware vendors "to decide whether to become legitimate players in the marketplace...or go completely to the dark side," Ari Schwartz, the ASC's coordinator and vice president of the Center for Democracy and Technology, said, according to IDG News. Certainly, Schwartz must already know that malware distributors have dwelled on the dark side for years now.

It's also a little unclear what concrete tasks the new group plans to undertake. Tuesday's announcement says it will "lead the mapping effort and jointly develop ideas and initiatives to form stronger bonds between links on the chain." Is that a fancy way of saying it plans to figure out what its next step will be?

The group says it will release a "paper tracking the results of the mapping project and proposed initial recommendations to strengthen the chain." ®

Build a business case: developing custom apps

More from The Register

next story
14 antivirus apps found to have security problems
Vendors just don't care, says researcher, after finding basic boo-boos in security software
'Things' on the Internet-of-things have 25 vulnerabilities apiece
Leaking sprinklers, overheated thermostats and picked locks all online
iWallet: No BONKING PLEASE, we're Apple
BLE-ding iPhones, not NFC bonkers, will drive trend - marketeers
Only '3% of web servers in top corps' fully fixed after Heartbleed snafu
Just slapping a patched OpenSSL on a machine ain't going to cut it, we're told
Multipath TCP speeds up the internet so much that security breaks
Black Hat research says proposed protocol will bork network probes, flummox firewalls
How long is too long to wait for a security fix?
Synology finally patches OpenSSL bugs in Trevor's NAS
Israel's Iron Dome missile tech stolen by Chinese hackers
Corporate raiders Comment Crew fingered for attacks
Tor attack nodes RIPPED MASKS off users for 6 MONTHS
Traffic confirmation attack bared users' privates - but to whom?
Roll out the welcome mat to hackers and crackers
Security chap pens guide to bug bounty programs that won't fail like Yahoo!'s
prev story

Whitepapers

Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Boost IT visibility and business value
How building a great service catalog relieves pressure points and demonstrates the value of IT service management.
Why and how to choose the right cloud vendor
The benefits of cloud-based storage in your processes. Eliminate onsite, disk-based backup and archiving in favor of cloud-based data protection.
The Essential Guide to IT Transformation
ServiceNow discusses three IT transformations that can help CIO's automate IT services to transform IT and the enterprise.
Maximize storage efficiency across the enterprise
The HP StoreOnce backup solution offers highly flexible, centrally managed, and highly efficient data protection for any enterprise.