Keep an eye on social media for advanced cyber-attack warnings

More than one IT security expert has warned CISOs need to be proactive to thwart cyber attacks before they get started rather than be play defence. Usually this means getting onto the “dark Web,” where hackers buy and sell malware and stolen data, to find clues about immanent — or ongoing — attacks.

But there may be intel closer than that, writes Alastair Paterson, CEO and co-founder of Digital Shadows, a situation awareness service. Social media sites like Twitter, Facebook and sharing sites like Pastebin can also be early-warning sources.

Admittedly, these aren’t the places where infosec pros will find clues from criminals, but, more likely, hactivists. That’s because they want to be heard, Paterson argues. So groups often provide operation names and specify target lists. Post-attack evident can include claims of defacements, DDoS attacks and breaches.

His message is that while the dark Web is a great source of intel, CISOs shouldn’t overlook public news and social media sites as well.

Read the full column here


Howard Solomon
Howard Solomon
Currently a freelance writer, I'm the former editor of and Computing Canada. An IT journalist since 1997, I've written for several of ITWC's sister publications including and Computer Dealer News. Before that I was a staff reporter at the Calgary Herald and the Brampton (Ont.) Daily Times. I can be reached at hsolomon [@]

Would you recommend this article?


Thanks for taking the time to let us know what you think of this article!
We'd love to hear your opinion about this or any other story you read in our publication.

Jim Love, Chief Content Officer, IT World Canada

Featured Download

ITW in your inbox

Our experienced team of journalists and bloggers bring you engaging in-depth interviews, videos and content targeted to IT professionals and line-of-business executives.

More Best of The Web