• Trend Micro
  • About TrendLabs Security Intelligence Blog
Search:
  • Home
  • Categories
    • Ransomware
    • Vulnerabilities
    • Exploits
    • Targeted Attacks
    • Deep Web
    • Mobile
    • Internet of Things
    • Malware
    • Bad Sites
    • Spam
    • Botnets
    • Social
    • Open source
Home   »   Author / Weimin Wu (Threat Analyst)

Weimin Wu

Threat Analyst

Adversarial Sample Generation: Making Machine Learning Systems Robust for Security
  • Posted on:August 2, 2018
  • Posted in:Machine Learning, Malware
  • Posted by:
    Weimin Wu (Threat Analyst)
0

The history of antimalware security solutions has shown that malware detection is like a cat-and-mouse game. For every new detection technique, there’s a new evasion method. When signature detection was invented, cybercriminals used packers, compressors, metamorphism, polymorphism, and obfuscation to evade it. Meanwhile, API hooking and code injection methods were developed to evade behavior detection. By the time security solutions started using machine learning (ML)-based detection technologies, it was already expected that cybercriminals would develop new tricks to evade ML.

To be one step ahead of cybercriminals, one method of enhancing an ML system to counter evasion tactics is generating adversarial samples, which are input data modified to cause an ML system to incorrectly classify it. Interestingly, while adversarial samples can be designed to cause ML systems to malfunction, they can also, as a result, be used to improve the efficiency of ML systems.

Read More
Tags: adversarial machine learningadversarial sample generationartificial intelligence

OS X Zero-days on the Rise—A 2015 Midyear Review and Outlook on Advanced Attack Surfaces
  • Posted on:August 12, 2015
  • Posted in:Exploits, Targeted Attacks, Vulnerabilities
  • Posted by:
    Weimin Wu (Threat Analyst)
0

2015 has so far been a very busy year for security researchers. The data leaked from Hacking Team shocked many, thanks to the multiple zero-days that were disclosed, as well as emails discussing the unscrupulous trade in exploits and “tools”. Cybercriminals (including exploit kit authors) have been hard at work integrating these newly-discovered flaws into their “products”…

Read More
Tags: 0dayandroidExploitsFlashInternet ExplorerJavaOSXvulnerabilityWindowszero day

Hacking Team Flash Zero-Day Tied To Attacks In Korea and Japan… on July 1
  • Posted on:July 8, 2015
  • Posted in:Malware, Vulnerabilities
  • Posted by:
    Weimin Wu (Threat Analyst)
2

Earlier this week several vulnerabilities were disclosed as part of the leak of information from the Italian company Hacking Team. We’ve noted that this exploit is now in use by various exploit kits. However, feedback provided by the Smart Protection Network also indicates that this exploit was also used in limited attacks in Korea and Japan….

Read More
Tags: AdobeExploitHacking Team leakvulnerabilityzero day

Deploying a Smart Sandbox for Unknown Threats and Zero-Day Attacks
  • Posted on:February 20, 2015
  • Posted in:Exploits, Vulnerabilities
  • Posted by:
    Weimin Wu (Threat Analyst)
0

Zero-day exploits pose some of the most serious risks to users everywhere. The absence of a patch means that it is up to users (and whatever security products they use) to protect against these attacks. One of the tools that can be used in mitigating these attacks is advanced network detection solutions like Trend Micro Deep Discovery,…

Read More
Tags: 0dayexploit kitExploitssandboxVulnerabilitieszero day

Vulnerability Research and Disclosure: Evolving To Meet Targeted Attacks
  • Posted on:February 13, 2015
  • Posted in:Targeted Attacks, Vulnerabilities
  • Posted by:
    Weimin Wu (Threat Analyst)
0

Recently, both HP’s Zero Day Initiative (ZDI) and Google’s Project Zero published vulnerabilities in Microsoft products (specifically, Internet Explorer and Windows 8.1) because Redmond did not fix them within 90 days of the vulnerabilities being reported. This has resulted in an argument between security researchers and software vendors on how vulnerabilities should be disclosed. A case where…

Read More
Tags: 0dayAdobedisclosureExploitstargeted attacksvulnerabilityzero day
Page 1 of 3123

Security Predictions for 2018

  • Attackers are banking on network vulnerabilities and inherent weaknesses to facilitate massive malware attacks, IoT hacks, and operational disruptions. The ever-shifting threats and increasingly expanding attack surface will challenge users and enterprises to catch up with their security.
    Read our security predictions for 2018.

Business Process Compromise

  • Attackers are starting to invest in long-term operations that target specific processes enterprises rely on. They scout for vulnerable practices, susceptible systems and operational loopholes that they can leverage or abuse. To learn more, read our Security 101: Business Process Compromise.

Popular Posts

  • The Need for Managed Detection and Response: Persistent and Prevalent Threats in North America’s Security Landscape
  • New Underminer Exploit Kit Delivers Bootkit and Cryptocurrency-mining Malware with Encrypted TCP Tunnel
  • How Machine Learning Can Help Identify Web Defacement Campaigns
  • Malware Targeting Bitcoin ATMs Pops Up in the Underground
  • Ransomware as a Service Princess Evolution Looking for Affiliates

Stay Updated

  • Home and Home Office
  • |
  • For Business
  • |
  • Security Intelligence
  • |
  • About Trend Micro
  • Asia Pacific Region (APAC): Australia / New Zealand, 中国, 日本, 대한민국, 台灣
  • Latin America Region (LAR): Brasil, México
  • North America Region (NABU): United States, Canada
  • Europe, Middle East, & Africa Region (EMEA): France, Deutschland / Österreich / Schweiz, Italia, Россия, España, United Kingdom / Ireland
  • Privacy Statement
  • Legal Policies
  • Copyright © Trend Micro Incorporated. All rights reserved.