At Intezer information sharing is a key component of our makeup and reflected in our technology. In the spirit of industry collaboration and with the intent of bringing the research community closer together, we interviewed nine well-known researchers to hear about some of the more interesting malware and cyber campaigns they have investigated.
- A common theme among the interviewees is the importance of information sharing. The researchers would like to see more industry collaboration between security vendors.
- Researchers must weigh the benefits and consequences when disclosing their research publicly. Some researchers steer on the side of caution while others believe the pros outweigh the cons. In one instance a researcher published two vulnerabilities found in a popular IP security camera. The publication was read by hackers who implemented the vulnerabilities and exploits to create a large botnet. Another researcher argues that not adhering to responsible disclosure leads to safety and security implications.
To access the report please visit https://www.intezer.com/wp-content/uploads/2018/11/The-researcher-view-final.pdf.
We want to thank the researchers who participated in this project. The list of interviewees, in alphabetical order by last name, are: Yaniv Balmas (security research group manager, Check Point Software Technologies), Christiaan Beek (lead scientist and senior principal engineer, McAfee), Ari Eitan (VP research, Intezer), Vitali Kremez (director of research, Flashpoint), Kenzo Masamoto (director of security research center, Macnica Networks Corporation), Costin Raiu (director, global research and analysis team, Kaspersky Lab), Florian Roth (CTO, Nextron Systems), Masatoshi Sato (director, national security laboratory, LAC Co., ltd), and Amit Serper (head of security research, Nocturnus group at Cybereason).