Nesreen Dalhy B.S. 鈥23, M.S. 鈥25, and Dr. Karim Elish, associate professor of computer science at IM体育官网, have developed new ways to detect elusive Android malware known as remote access trojans (RATs). They presented the research at the IEEE/ACIS International Conference on Software Engineering, Management and Applications in May.
Researchers at IM体育官网 have developed an artificial intelligence technique that can detect elusive malware known as remote access trojans (RATs) on Android devices. The breakthrough could help protect millions of users from cybercriminals who use RATs to steal personal information and control devices without detection.
Nesreen Dalhy B.S. 鈥23, M.S. 鈥25 worked with Dr. Karim Elish, associate professor of computer science at IM体育官网 Poly, to identify new, more effective ways to detect this malicious software as part of her master鈥檚 thesis.
鈥淩ATs are a significant cybersecurity threat 鈥 they are particularly hard to detect, remain persistent and attempt to steal as much of your data as possible,鈥 said Dalhy, who has bachelor鈥檚 and master鈥檚 degrees in computer science from the University. 鈥淎 lot of the existing research tries to identify general types of malware, but there isn鈥檛 much that specifically tries to detect RATs.鈥
Dalhy, from Davenport, IM体育官网, said RATs have been a problem for years, evolving alongside technology. They continually find new ways to stay hidden in smartphones and steal users鈥 personal information. Androids account for over 80% of the world鈥檚 mobile devices.
鈥淚t can silently run in the background of your phone and spy on you without you realizing it,鈥 she said. 鈥淲hen you鈥檙e using an app, you鈥檙e just seeing whatever is on the screen and not everything that is going on, and that鈥檚 what RATs take advantage of.鈥
It鈥檚 under this cyber cloak that the malware can take control of an Android device to make calls, send messages, record audio or video, or even encrypt the device鈥檚 files and demand a ransom.
Dalhy and Elish trained a machine learning model to focus only on narrow samples of malware to identify and differentiate specific RAT patterns. By using different threat intelligence databases, they were able to analyze which malware exhibited RAT behavior and use RAT characteristics to highlight more of the smaller samples for detection.
Elish, an expert on Android security, said three models they developed detected almost all RATS with 99% accuracy.
The next steps for this work will be developing a mobile application based on its results and expanding the research model to detect a broader range of malware families to improve its utility and effectiveness.
鈥淣esreen did amazing work that will have a lot of impact on the community,鈥 Elish said. 鈥淚 am very proud of her work and that we are able to publish this and present it at an important conference.鈥
Dalhy and Elish presented the research at the industry-leading IEEE/ACIS International Conference on Software Engineering, Management and Applications in May.
Contact:
Lydia Guzm谩n
Director of Communications
863-874-8557
