Christoffer S.

I've started experimenting with a broader collection concerning "Breach Events". The idea is to selectively monitor News sources for signs of organizations having suffered some sort of cyber incidents.

Would anyone be interested in having this sort of feed added to ORLYSEC?

Basically something like this:
- Monitor sources tagged 'news'
- Determine if breach related
- Extract victim entity
- Extract origin source

Toot:
Alleged breach involving <entity> originally reported by <origin_source>, and first reported by <news_source>

The idea is to slowly build a set of sources covering global, and eventually also begin to do 'national' events monitoring and reporting.

Yes, no? Pointless?

Apr 6 at 7:53amWeb
Show threadKenan20h ago
@nopatience
I'll be interested tbh. Sorry what is ORLYSEC? Looks like I have missed something 🙃
Show threadChristoffer S.20h ago
@agon163
Hah no worries. I'm making assumptions. @orlysec :)
Show threadshellsharks10h ago

@nopatience I always think of this: https://www.board-cybersecurity.com/incidents/tracker

In fact, I have a whole list of breach tracking sites: https://shellsharks.com/infosec-tools#breaches-incidents--leaks

But maybe your thing could fill in some gaps where these tools don't cover?

Either way, always like a new tool to add to the list! 😎

Cybersecurity Incident Tracker - Board Cybersecurity

Cybersecurity resources for Boards Directors, corporate executives and investors

Board Cybersecurity
Show threadChristoffer S.9h ago

@shellsharks Yupp, that's pretty much exactly what I had in mind, but not monitor SEC, but rather only news sources.

And I do know there are quite a few of them around, but it was mostly about "reusing" something I've already built but apply it to something slightly different 🙂