Information Security Heavy-Hitters Join Peerlyst SecureDrop Review Board
Journalists from VICE, Engadget, and CSO Online team up with top technical experts to vet anonymous tips on security vulnerabilities and breaches.
SAN FRANCISCO, Feb. 9, 2016 /PRNewswire/ -- Peerlyst, the preeminent information security community, announced the lineup of InfoSec journalists and experts to review vulnerabilities and breaches coming in via Peerlyst SecureDrop, a Tor network site for anonymously sharing data and documents. Featuring journalists from VICE, Engadget, and CSO Online, as well as some of the most renowned technical experts in the security field, the Peerlyst SecureDrop Review Board is a first-of-its-kind collaboration that examines anonymous submissions, determines merit, and decides next steps—including whether or not to go public with a story.
"In today's world, there is a definite need for a secure and vetted system for enabling anonymous security-related communications that might pose a liability for the participants if their identities were known," observed review board member Ian Amit, a vice president at ZeroFOX. "Having such a platform maintains and promotes everyone's safety and freedom—while encouraging higher engagement between citizens, consumers, companies, governments, and the media."
In the first stage of the process, highly ranked technical analysts from the Peerlyst security community will assess the material coming in via SecureDrop to see if it merits action. In addition to Amit, the members of the initial Peerlyst SecureDrop technical review board are Eric Michaud, CEO of Dark Sum; Adrian Sanabria, a senior security analyst at 451 Research; and Jake Williams, founder and principal consultant at Rendition InfoSec.
If the technical review board decides that it's warranted, information on security vulnerabilities will be passed on to one of the three journalists on the Peerlyst SecureDrop Review Board: Violet Blue of Engadget; Lorenzo Franceschi-Bicchierai of VICE Motherboard; and Steve Ragan of CSO Online. They will determine whether information on breaches and vulnerabilities will be shared with the affected parties, the Peerlyst online security community, and other news outlets.
"The journalists on our board decide whether or not a submission merits raising the alarm in the public interest of safety and needs to be reported," said board member Michaud. "In the latter case, the journalist will contact the affected party. That starts the clock on a responsible disclosure period—currently 90 days—that gives a breached enterprise, or a vendor whose product has been compromised, time to fix the problem before media exposure."
Anyone who would like to anonymously share data on breaches, information about vulnerabilities and threats—or any security story he or she believes the InfoSec community should know about—can securely submit information on https://www.peerlyst.com/secure-drop.
About Peerlyst
Peerlyst is the place where information security pros go to share knowledge and build their professional reputations. With an audience of more than half a million, Peerlyst is the preeminent platform for spreading InfoSec news, asking a question, finding an expert, or offering product insight. For more information, email [email protected] or visit peerlyst.com.
Media contact:
Limor Elbaz
718-501-5181
SOURCE Peerlyst
WANT YOUR COMPANY'S NEWS FEATURED ON PRNEWSWIRE.COM?
Newsrooms &
Influencers
Digital Media
Outlets
Journalists
Opted In
Share this article