Some of Our Sources
- Slashdot
- Joshua Blankenship
- Pearsonified
- The Logo Smith
- Six Revisions
- Abduzeedo
- CSS Globe
- Stylized Web
- CSS Tricks
- Design Modo
Help Webnuz
Referal links:
July 19, 2019 03:23 pm
Original Link: http://rss.slashdot.org/~r/Slashdot/slashdot/~3/C7FmWOVCMks/researchers-easily-trick-security-firm-cylances-ai-based-antivirus-into-thinking-programs-
Researchers Easily Trick Security Firm Cylance's AI-Based Antivirus Into Thinking Programs Like WannaCry and Other Malware Are Benign
By taking strings from an online gaming program and appending them to malicious files, researchers were able to trick Cylance's AI-based antivirus engine into thinking programs like WannaCry and other malware are benign. From a report: AI has been touted by some in the security community as the silver bullet in malware detection. Its proponents say it's superior to traditional antivirus since it can catch new variants and never-before-seen malware -- think zero-day exploits -- that are the Achilles heel of antivirus. One of its biggest proponents is the security firm BlackBerry Cylance, which has staked its business model on the artificial intelligence engine in its endpoint PROTECT detection system, which the company says has the ability to detect new malicious files two years before their authors even create them. But researchers in Australia say they've found a way to subvert the machine-learning algorithm in PROTECT and cause it to falsely tag already known malware as "goodware." The method doesn't involve altering the malicious code, as hackers generally do to evade detection. Instead, the researchers developed a "global bypass" method that works with almost any malware to fool the Cylance engine. It involves simply taking strings from a non-malicious file and appending them to a malicious one, tricking the system into thinking the malicious file is benign. The benign strings they used came from an online gaming program, which they have declined to name publicly so that Cylance will have a chance to fix the problem before hackers exploit it. "As far as I know, this is a world-first, proven global attack on the ML [machine learning] mechanism of a security company," says Adi Ashkenazy, CEO of the Sydney-based company Skylight Cyber, who conducted the research with CTO Shahar Zini. "After around four years of super hype [about AI], I think this is a humbling example of how the approach provides a new attack surface that was not possible with legacy [antivirus software]."Read more of this story at Slashdot.
Original Link: http://rss.slashdot.org/~r/Slashdot/slashdot/~3/C7FmWOVCMks/researchers-easily-trick-security-firm-cylances-ai-based-antivirus-into-thinking-programs-
Share this article:
Tweet
View Full Article
Slashdot
Slashdot was originally created in September of 1997 by Rob "CmdrTaco" Malda. Today it is owned by Geeknet, Inc..More About this Source Visit Slashdot