AMTSO, the cybersecurity industry’s testing standard community, today announced it is introducing the ThreatList, a new platform allowing cybersecurity companies and researchers to exchange critical malware samples they see in the wild. The objective of the ThreatList is to foster the collaborative exchange of threat intelligence in the industry among cybersecurity firms, researchers, CERTs, and independent test organizations.
“The elimination of Verizon’s ICSA WildList left a gap in the cybersecurity industry, which we are looking to fill with the AMTSO ThreatList. The goal is to provide a platform for next-generation threat intelligence sharing, based on a steady stream of malware samples allowing security companies and researchers to improve detection of cyber threats, and to give access to this threat intelligence for testers, supporting cybersecurity product testing based on the latest in-the-wild malware,” said Alexander Vukcevic, CTO at AMTSO.
Also Read: Improving Cyber-security with Robotic Process Automation
AMTSO will leverage the infrastructure of its existing AMTSO Real Time Threat List (RTTL) to host the ThreatList. The ThreatList backend is designed to provide a steady stream of samples of first and second-stage malware, and malware hosts (URLs). To provide a high-quality of samples, threat reporters are encouraged to submit only their most prevalent samples, and zero days seen in the wild. Samples submitted need to be free from any personally identifiable information (PII).
To ensure legitimate use of the ThreatList, access for non-reporters such as testers is limited and requires approval by the oversight board established by AMTSO. The oversight board is responsible for setting up and updating rules for threat reporting and access, voting on the admission of new reporters, and granting and removing access to threat samples.
For more such updates follow us on Google News ITsecuritywire News. Please subscribe to our Newsletter for more updates.
