Twitter proves better than the Dark Web for assessing vulnerability risk

The latest report from risk management and cyber security company Nopsec looks at the use of social media in risk analysis. Twitter in particular seems to be becoming the go-to resource for security researchers and attackers looking to disseminate proof-of-concept exploits. While some vulnerabilities have thousands of Twitter interactions -- counted by tweets mentioning their CVE identifier -- most vulnerabilities are never tweeted about or are tweeted only once. The most tweeted CVEs reflect interactions focused on well-publicized, dangerous vulnerabilities. Trying to locate similar risk indicators on the Dark Web yields mixed results, partly because it only shows what is visible from… [Continue Reading]