Skip to main content

Is AI rewriting cybersecurity rules



πŸ‘¨‍πŸ’» Is AI rewriting cybersecurity rules? Criminals are using LLMs to create natural-looking malware that evades detection.

πŸ›‘️ What’s happening:
» 10,000+ malware variants generated at scale.
» 88% trick tools like VirusTotal.
» Detection systems risk degradation over time.



 Cybersecurity researchers have found that it's possible to use large language models (LLMs) to generate new variants of malicious JavaScript code at scale in a manner that can better evade detection.

"Although LLMs struggle to create malware from scratch, criminals can easily use them to rewrite or obfuscate existing malware, making it harder to detect," Palo Alto Networks Unit 42 researchers said in a new analysis. "Criminals can prompt LLMs to perform transformations that are much more natural-looking, which makes detecting this malware more challenging."

With enough transformations over time, the approach could have the advantage of degrading the performance of malware classification systems, tricking them into believing that a piece of nefarious code is actually benign.

While LLM providers have increasingly enforced security guardrails to prevent them from going off the rails and producing unintended output, bad actors have advertised tools like WormGPT as a way to automate the process of crafting convincing phishing emails that are tailed to prospective targets and even create novel malware.


Back in October 2024, OpenAI disclosed it blocked over 20 operations and deceptive networks that attempt to use its platform for reconnaissance, vulnerability research, scripting support, and debugging.

Unit 42 said it harnessed the power of LLMs to iteratively rewrite existing malware samples with an aim to sidestep detection by machine learning (ML) models like Innocent Until Proven Guilty (IUPG) or PhishingJS, effectively paving the way for the creation of 10,000 novel JavaScript variants without altering the functionality.

The adversarial machine learning technique is designed to transform the malware using various methods -- namely, variable renaming, string splitting, junk code insertion, removal of unnecessary whitespaces, and a complete reimplementation of the code -- every time it's fed into the system as input.


"The final output is a new variant of the malicious JavaScript that maintains the same behavior of the original script, while almost always having a much lower malicious score," the company said, adding the greedy algorithm flipped its own malware classifier model's verdict from malicious to benign 88% of the time.

To make matters worse, such rewritten JavaScript artifacts also evade detection by other malware analyzers when uploaded to the VirusTotal platform.

Another crucial advantage that LLM-based obfuscation offers is that its lot of rewrites look a lot more natural than those achieved by libraries like obfuscator.io, the latter of which are easier to reliably detect and fingerprint owing to the manner they introduce changes to the source code.

"The scale of new malicious code variants could increase with the help of generative AI," Unit 42 said. "However, we can use the same tactics to rewrite malicious code to help generate training data that can improve the robustness of ML models.

The disclosure comes as a group of academics from North Carolina State University devised a side-channel attack dubbed TPUXtract to conduct model stealing attacks on Google Edge Tensor Processing Units (TPUs) with 99.91% accuracy. This could then be exploited to facilitate intellectual property theft or follow-on cyber attacks.

"Specifically, we show a hyperparameter stealing attack that can extract all layer configurations including the layer type, number of nodes, kernel/filter sizes, number of filters, strides, padding, and activation function," the researchers said. "Most notably, our attack is the first comprehensive attack that can extract previously unseen models."

The black box attack, at its core, captures electromagnetic signals emanated by the TPU when neural network inferences are underway – a consequence of the computational intensity associated with running offline ML models – and exploits them to infer model hyperparameters. However, it hinges on the adversary having physical access to a target device, not to mention possessing expensive equipment to probe and obtain the traces.

"Because we stole the architecture and layer details, we were able to recreate the high-level features of the AI," Aydin Aysu, one of the authors of the study, said. "We then used that information to recreate the functional AI model, or a very close surrogate of that model."

Comments

Post a Comment

Popular posts from this blog

Understanding and Mitigating DDoS Attacks

  Understanding and Mitigating DDoS Attacks: Strategies, Tools, and Best Practices   What Are DDoS Attacks? Distributed Denial of Service (DDoS) attacks overwhelm online services, causing disruptions that impact both businesses and individuals. Defining DDoS Attacks DDoS attacks involve multiple compromised systems targeting a single system. Attackers use these systems to flood the target with a high volume of traffic. This deluge results in service unavailability. Attackers often coordinate these attacks using botnets, networks of infected computers. How DDoS Attacks Work DDoS attacks exploit a target’s bandwidth or resources. Attackers accomplish this using three primary methods: Volume-Based : These attacks inundate the target with junk data. For example, sending flood pings to use up bandwidth. Protocol : These attacks consume server resources. They exploit vulnerabilities in network protocols (e.g., SYN floods, ping of death). Application Layer : These att...
Post a Comment
Read more

Tiger vires

Tiger Virus WELCOME TO TIGER VIRUS TOOL Tiger Virus Created By ASHIK K I *Best Virus Making Tool To Make Virus Applications and Messeges For Whatsapp And Other Chat Applications Tool by  The Devil Tigers *For more details see my youtube channel *Click :-  YouTube How to run this Tool "Tiger Virus" Commands _________ $ apt update $ apt upgrade -y $ pkg install git -y $ git clone  https://github.com/Devil-Tigers/TigerVirus.git $ cd TigerVirus $ bash TigerVirus.sh After Installation the Virus Applications or text file Send To Victim If Application copy and past on whatsapp and sent if Text Enjoy Screenshots 2 options at First *1) Virus Applications (new 2021 ) When Any One Install It. Their Phone Will Be Damaged and Reset! *2) Virus Messeges For Whatsapp And Other Chat Apps ! 4 options *Minimum Range for (under 2GB Ram Mobile Phones) *Medium Range for (More than 2GB Ram Mobile Phones) *Maximum Range for (4GB Ram or More than 4GB Mobile phones) *Tiger ...
Post a Comment
Read more

Cyber security free course with catificate

  Hey everyone! πŸ‘‹  Are you interested in learning about cyber security and enhancing your skills in this ever-evolving field? πŸ€” Well, I have some exciting news for you! πŸŽ‰ The government  Direct course -  Click here website, -  Click here is offering a FREE cyber security course with a certificate! πŸŽ“ Yes, you read that right, FREE! πŸ™Œ This is a great opportunity to upskill yourself and add value to your resume. πŸ’Ό Plus, who doesn't love a free certification, am I right? πŸ˜‰ So, don't wait any longer, join us on this learning journey and become a cyber security pro! πŸ’» #cybersecurity #upskill #governmentcertification #nielitup #freecourse πŸš€ #aashishraazkumar  NIELIT is a Premier institution for Education, Training, Research & Design and Consultancy in IT and Electronics. It is an Autonomous Scientific Society under the administrative control of Ministry of Electronics and Information Technology, Govt. of India. About website   National Institute...
Post a Comment
Read more