The debate over the virus sample has highlighted a rift between the more the conservative antivirus industry and a group of security researchers that do not adhere to the industry’s stance against publishing virus code and associating with virus writers.
Many security researchers believe that open disclosure of security vulnerabilities leads to better security. As those researchers begin to study viruses, worms and bot software, they argue that the same logic means the open discussion of threatening vectors for worms.
Last month, security researcher Kevin Finisterre admitted to creating the three versions of the OSX/InqTana worm and sending them to antivirus companies as a way to highlight weaknesses in Apple’s operating system.
“We work with people on a trust basis, people who have been in the industry and are known to us,” said Joe Telafici, director of operations for the antivirus emergency response team (AVERT) at security firm McAfee.
Graham Cluley, senior technology consultant at rival antivirus firm Sophos, also mentioned the articles as a reason for questioning the group’s conduct. “Right now, none of us can protect against this virus because we haven’t seen the code,” Cluley said.
http://www.securityfocus.com/news/11379?ref=rss