MalwareDiariesList? why not?

[malwarediaries]

I'm still working on the List, which I like to call Clearing House.

As far as people infecting themselves, I'd like to put a "Terms and Conditions" thing.... which basically would clear us of any liabilities.

People will have a username / password, very similar to what offensivecomputing does.

You know this public domain thing... Do you think that companies like Hitwise or Commtouch would give away their URLs for free? No way Jose... you have to pay. It takes money to run servers and what not. If you can pay the costs out of your own pocket then you must really be a good soul.

We already share samples with other companies / people. I think sharing URLs in the same way would be good.

We'll see.

Jerome

[malwarediaries]

to speak from partners, non-disclosure and all this stuff is not productive to keep the live-cycle of these criminal acts as short as possible.

-- gerhard

I agree completely.

In order to win this fight the security has to cooperate and share their findings. Disclosing as much as possible is a must.

Hey SysAdmin, I'm cool to share stuff with other partners. Just not anybody out there.

I've always shared whatever malware I discover through our FTP server, which many of the top AV vendors have access to.

Also, on the blog posting links and such. So it's not like I'm retaining all the good stuff to myself.

Jerome

[SysAdMini]

to speak from partners, non-disclosure and all this stuff is not productive to keep the live-cycle of these criminal acts as short as possible.

-- gerhard

I agree completely.

In order to win this fight the security has to cooperate and share their findings. Disclosing as much as possible is a must.

Hey SysAdmin, I'm cool to share stuff with other partners. Just not anybody out there.

I've always shared whatever malware I discover through our FTP server, which many of the top AV vendors have access to.

Also, on the blog posting links and such. So it's not like I'm retaining all the good stuff to myself.

Jerome

Hi Jerome,

what about people are unable to pay for those information? What about people who are not famous researchers?
Aren't they worth to get those information ?

Don't take offence, but what your are planning looks only like another way of making money than a contribution to security.

[malwarediaries]

Hi Jerome,

what about people are unable to pay for those information? What about people who are not famous researchers?
Aren't they worth to get those information ?

Don't take offence, but what your are planning looks only like another way of making money than a contribution to security.


[/quote]


Hi,

I already share info with many independent security folks that I trust. They have access to a repo of malware samples, and I don't expect anything in return.
What happens is during the course of my blog or conferences I get to meet people, we chat and such and if the relationship is good, I open up the gates.

I find it important to establish trust in this industry. If you open up your service to the world, you have no control over who is going to use the information. You'll have people that steal your hard work and take credit for it, or worse use the info in their product and make money off your back without even saying thank you.

By the way, I'm not a famous researcher 

Jerome

[sparsha]

Hi Jerome,

Welcome to MDL!

We @ MDL have a simple mission "Bust the bad guys" and nothing more. We hope your contribution to security continues!

Cheers,
Sparsha

[malwarediaries]

Hehe thanks Sparsha... exposing the bad guys makes my day 

[cleanmx]

Hi Jerome,

good decision to share your data

please provide us this a link or method to obtain these url's !

-- gerhard

[malwarediaries]

Update:

http://blogs.paretologic.com/malwarediaries/index.php/2009/11/02/mdl-url-clearing-house/

[SysAdMini]

Thanks.