machine learning for malware detection

Question

Hello experts,

I have a question about machine learning for malware detection.
How does "machine learning" work at Sophos? How can you imagine that? I see many analyzes in the reports from Sophos labs intelix that draw on an enormous database. How is this different from data mining? Ultimately, an assessment is suggested to me based on this database. Where can I see the "learning success" of machine learning?
I'm currently investigating the AI support of Sophos Intercept X as part of a master's thesis.
I would be happy to start a discussion about machine learning here. We are a Sophos customer ourselves and, in addition to the UTM, we also use the XGS together with Intercept X.

Many greetings

This thread was automatically locked due to age.

Sophos User930 · Accepted Answer

Maybe some of these will be helpful. If you search Google for Sophos and Joshua Saxe that will throw up some good material, such as 
 www.sophos.com/.../machine-learning-how-to-build-a-better-threat-detection-model.pdf www.sophos.com/.../MachineLearningforCybersecurityDemystifiedbySophos.pdf i.blackhat.com/.../us-18-saxe-Deep-Learning-For-Hackers-Methods-Applications-and-Open-Source-Tools.pdf https://www.youtube.com/watch?v=VwTlTnF7ofY https://www.cse.fau.edu/~xqzhu/courses/cap6619/deep.neural.network.based.malware.detection.pdf ieeexplore.ieee.org/.../stamp.jsp

machine learning for malware detection

Top Replies