“Sharing complete information with all their customers, trusting them not to misuse it, has proved counterproductive,” said Keith Prabhu, founder and CEO of Confidis. “However, the approach of selective sharing of cybersecurity vulnerabilities will create doubts in the minds of customers about whether crucial information is actually being withheld from them. Enterprises would have to now augment their threat intelligence programs by getting feeds from other sources.”
That tension may already be prompting closer scrutiny from enterprises. Organizations are likely to demand stronger governance and oversight of vendor-managed threat intelligence programs, particularly when there is a risk that participants could misuse sensitive data shared through them, according to Praharsh Srivastava, practice director at Everest Group.
“On the flip side, Microsoft’s proactive response by revoking access amid suspicions of misuse demonstrates accountability and may restore confidence in the ability of vendors to enforce strict protocol controls,” Srivastava added.
