Facebook To Launch ThreatExchange Service To Tackle Malware
Facebook has announced to launch a new manifesto called ThreatExchange for security of the systems. The new repository will be used to share information about the potential threats of malicious software and guidelines for security.
ThreatExchange will look like Facebook and users will experience the same feeling of usage which they do in case of Facebook. It uses application program interfaces (APIs) which will help users in publishing and querying threat data.
Facebook is initiating the project in partnership with Pinterest, Tumblr, Twitter and Yahoo. Recently, Dropbox and bit.ly have also joined the team.
Mark Hammell, manager of the Facebook threat infrastructure team, told TechCrunch that the planning for this repository began when Facebook was itself fighting with a severe spam-driven malware attack. Hammell then contacted other companies to figure it out whether they were also experiencing attacks of the same nature.
Thus this contact laid the foundation of ThreatExchange because all the companies agreed to battle malware as a common enemy. Companies recognized that it was mandatory to exchange information about the threats and even to share the source domains and the IP addresses in order to fight with such sort of nasty attacks.
However, Facebook must be given credit of pragmatic attitude because none of the other companies has followed up with a concrete plan of action – despite of the fact that all agreed on the need of such a system.
Facebook, on the other hand, was taking action for the development of such a program which could be used to detect such threats. The company believed that using the Facebook graph it could accomplish task of forming the system which would later become ThreatsExchange. Facebook graph allows to see connections among friends, so it will be used to see connections related to hackers and their hacking strategies too.
“We volunteered to build an external version based on one we had in-house that would help these other companies share this kind of information with each other or with broader community-based privacy controls we built and they chose to use,” Hammell explained.
In past, one of the biggest reason which prevented companies from taking such an initiative was the compulsion of sharing of material which was too private. Facebook has made things easier for companies as they can share with their own will and to an extent which they themselves consider appropriate.
Additionally, the shared information will only be visible to the partner organizations. Which means the companies will be interdependent for their security.
“That’s the beauty of working together on security. When one company gets stronger, so do the rest of us,” Hammel wrote in a blog post.