Introducing ETHOS: the Emerging Threat Open Sharing Platform

Apr 24, 2023 1:52:43 PM | Announcements Introducing ETHOS: the Emerging Threat Open Sharing Platform

An open-source, community-driven tool with the goal of sharing and comparing OT/ICS data to identify anomalies and indicators of new attacks in real time.

NetRise is thrilled to be working alongside a number of great organizations in the OT Security space on ETHOS, an open-source, community-driven tool with the goal of sharing and comparing OT/ICS data to identify anomalies and indicators of new attacks in real time.

Initial founding members of ETHOS include NetRise, 1898 & Co., ABS Group, Claroty, Dragos, Forescout, Network Perception, Nozomi Networks, Schneider Electric, Tenable, and Waterfall Security.

The open-source project will be hosted on GitHub, with the goal of releasing the first working proof of concept before 2024. Nozomi Networks has volunteered to host the first ETHOS server for beta testing.

At a high level, ETHOS will allow organizations to opt-in to sharing and receiving anonymized threat intelligence and anomalies that are detected in other ETHOS members' environments to allow for real-time monitoring of new threats. At NetRise, we are looking to bring our device- and firmware-level analysis capabilities to share SBOMs, configuration information, credential and cryptographic risk information, and more with this initiative.

In the future, any company or government agency will be able to independently host an ETHOS server. The host can allow selected participants and clients to connect and share information. To participate in an ETHOS server and receive notifications, an entity must also have an ETHOS client built with integration capabilities to send data.

Stay tuned for more updates as we continue to work together to build out this community-driven capability!

Thomas Pace

Written By: Thomas Pace

Prior to founding NetRise, Thomas spent 16 years working in security across multiple roles and disciplines. From serving in the United States Marine Corps, being responsible for ICS security within the Department of Energy and most recently serving as Global Vice President for Cylance, Thomas has been a proven leader and innovator within cybersecurity. Thomas has also responded to hundreds of security incidents globally and shared his experience at multiple security conferences such as RSA and Black Hat.