LAS VEGAS—Researchers, even those from competing security and tech companies, sometimes come to the same table to share threat intelligence about a major incident. Last year, the discovery of the WireX botnet surfaced a number of questions to researchers at Akamai who discovered the malicious DDoS traffic affecting victims in a handful of industries. WireX, as it turned out, was a massive botnet of mobile Android devices and it took a collaborative effort between Akamai, Cloudflare, Flashpoint, Google, Oracle, and RiskIQ to put out that fire.
In this episode of the Collective Intelligence podcast recorded at Black Hat, Chad Seaman, senior engineer on the security intelligence response team at Akamai, explains the importance of this kind of work for the greater good and how it happens, even among companies that compete for the same customers.
Seaman is passionate about botnet and DDoS research and in this podcast, he explains how these collaborative efforts start with making personal connections with peers at events such as Black Hat. Those trusted relationships then extend into situations such as what arose with WireX nearly a year ago.
Seaman also explains some of the ground rules all the parties establish when collaborating and sharing threat-related data, as well as some of the challenges involved.
Get a direct download of this podcast here.
The Collective Intelligence Podcast, presented by Flashpoint and hosted by Editorial Director Mike Mimoso, features regular interviews with a diverse set of industry experts and Flashpoint analysts on the latest information security news and industry trends.