Vulnerability Disclosure in the Age of Social Media: Exploiting Twitter for Predicting Real-World Exploits

Authors: 

Carl Sabottke, Octavian Suciu, and Tudor Dumitraș, University of Maryland

Abstract: 

In recent years, the number of software vulnerabilities discovered has grown significantly. This creates a need for prioritizing the response to new disclosures by assessing which vulnerabilities are likely to be exploited and by quickly ruling out the vulnerabilities that are not actually exploited in the real world. We conduct a quantitative and qualitative exploration of the vulnerability-related information disseminated on Twitter. We then describe the design of a Twitter-based exploit detector, and we introduce a threat model specific to our problem. In addition to response prioritization, our detection techniques have applications in risk modeling for cyber-insurance and they highlight the value of information provided by the victims of attacks.

Open Access Media

USENIX is committed to Open Access to the research presented at our events. Papers and proceedings are freely available to everyone once the event begins. Any video, audio, and/or slides that are posted after the event are also free and open to everyone. Support USENIX and our commitment to Open Access.

BibTeX
@inproceedings {191006,
author = {Carl Sabottke and Octavian Suciu and Tudor Dumitras},
title = {Vulnerability Disclosure in the Age of Social Media: Exploiting Twitter for Predicting {Real-World} Exploits},
booktitle = {24th USENIX Security Symposium (USENIX Security 15)},
year = {2015},
isbn = {978-1-939133-11-3},
address = {Washington, D.C.},
pages = {1041--1056},
url = {https://www.usenix.org/conference/usenixsecurity15/technical-sessions/presentation/sabottke},
publisher = {USENIX Association},
month = aug
}
Download
Sabottke PDF
View the slides

Presentation Video 

Presentation Audio

Open access to the USENIX Security '15 videos sponsored by Symantec.