BT Shares Malware Data With Rival ISPs To Combat Cyber Threat

BT is to share the malware data it gathers with its fellow Internet Service Providers (ISPs) in the UK.

BT said it has become the first telecommunications provider in the world to start sharing information about malicious software and websites on a large scale with other ISPs. IBM in 2015 undertook a similar initiative.

To help in this information sharing, the former UK incumbent has launched a collaborative online platform called the Malware Information Sharing Platform (MISP) to allow fellow broadband providers to share threat intelligence data in a safe and secure manner.

Its Good To Share

The move by BT comes amid a constant cyber threat to British consumers, businesses and public sector bodies from the high volumes of relatively unsophisticated attacks that occur daily in the UK.

The free information sharing platform BT has created is said to be linked to the National Cyber Security Centre’s Active Cyber Defence strategy initiative, which aims to detect and prevent online attacks against the UK.

What will happen going forward is that BT will “alert other ISPs in the UK to any malicious domains associated with malware control that it identifies using its advanced threat intelligence capabilities.”

It is then up to each ISP as to whether it decides to take action by blocking harmful malware.

BT said that it has so far identified and shared over 200,000 malicious domains since initiating the sharing of threat information at the end of last year.

“BT’s global team of more than 2,500 cyber security experts are currently preventing the delivery of 50 million malicious emails with 2,000 unique malicious attachments every month – that’s almost 20 malicious emails every second,” said the ISP.

BT also said it was actively supporting the Government’s Active Cyber Defence Strategy which utilises Domain Name System (DNS) filtering.

BT said it is automatically blocking tens of millions of malware infections which try to cross its infrastructure every week.

“This is an important step in helping the Government achieve its aim of making the UK the safest place to live and do business online,” explained Mark Hughes, CEO BT Security.

“We believe that only by working together with Government and the rest of the telecommunications industry can we collectively succeed in stemming the tide of cyber-crime,” said Hughes. “That’s why we’re urging other ISPs to join us in sharing threat information in a more open and collaborative way.”

“We’ve been taking a more proactive and automated approach to blocking malicious code and harmful website content on our infrastructure for some time, in line with the NCSC’s Active Cyber Defence strategy,” he added. “This allows us to mitigate a high volume of cyber threats before they have a chance to take hold and impact our customers. By sharing our malware data, we’re empowering other ISPs to provide their customers with the same level of protection, should they choose to take action.”

Fantastic Initiative

And BT’s move has been warmly welcomed by the UK’s National Cyber Security Centre.

“This is a fantastic initiative that will help provide broader protection of cyber threats facing the UK,” said the Centre’s Technical Director, Dr Ian Levy.

“Networks will be able to exchange detections in real time so that UK citizens can be protected by their ISP by default and for free, as part of the National Cyber Security Centre’s Active Cyber Defence programme,” Dr Levy added.

“This unprecedented level of sharing and exchange will have a positive impact across the whole security community by helping us to collectively understand our adversaries and reduce the impact of cyber attacks,” Dr Levy said.

It now remains to be seen whether other British ISPs will join BT’s lead.

Do you know all about security in 2017? Try our quiz!

Tom Jowitt

Tom Jowitt is a leading British tech freelancer and long standing contributor to Silicon UK. He is also a bit of a Lord of the Rings nut...

View Comments

  • Sharing information in cybersecurity, as in medicine, is passive. What is needed is an active shared PROJECT to produce a solid cybersecurity architecture to defeat or at least mitigate the onward march of malware. I have documented at least 20 disparate worldwide efforts (countries and organisations) to crack the cybersecurity issue and as such, they haven't a hope of producing a synergistic result. I have been preaching this mantra for 2 years now and many people agree with it but, as Mark Twain observed 'Everybody is talking about the weather, nobody is doing anything about it'.

Recent Posts

Spyware Maker NSO Group Found Liable In US Court

Landmark ruling finds NSO Group liable on hacking charges in US federal court, after Pegasus…

1 day ago

Microsoft Diversifying 365 Copilot Away From OpenAI

Microsoft reportedly adding internal and third-party AI models to enterprise 365 Copilot offering as it…

1 day ago

Albania Bans TikTok For One Year After Stabbing

Albania to ban access to TikTok for one year after schoolboy stabbed to death, as…

1 day ago

Foldable Shipments Slow In China Amidst Global Growth Pains

Shipments of foldable smartphones show dramatic slowdown in world's biggest smartphone market amidst broader growth…

1 day ago

Google Proposes Remedies After Antitrust Defeat

Google proposes modest remedies to restore search competition, while decrying government overreach and planning appeal

1 day ago

Sega Considers Starting Own Game Subscription Service

Sega 'evaluating' starting its own game subscription service, as on-demand business model makes headway in…

1 day ago