Slashdot Mirror

← Back to Stories (view on slashdot.org)

Machine Learning Can Use Tweets To Spot Critical Security Flaws (wired.com)

Posted by msmash on from the how-about-that dept.

Researchers at Ohio State University, the security company FireEye, and research firm Leidos last week published a paper [PDF] describing a new system that reads millions of tweets for mentions of software security vulnerabilities, and then, using their machine-learning-trained algorithm, assessed how much of a threat they represent based on how they're described. From a report: They found that Twitter can not only predict the majority of security flaws that will show up days later on the National Vulnerability Database -- the official register of security vulnerabilities tracked by the National Institute of Standards and Technology -- but that they could also use natural language processing to roughly predict which of those vulnerabilities will be given a "high" or "critical" severity rating with better than 80 percent accuracy.

"We think of it almost like Twitter trending topics," says Alan Ritter, an Ohio State professor who worked on the research and will be presenting it at the North American Chapter of the Association for Computational Linguistics in June. "These are trending vulnerabilities." A work-in-progress prototype they've put online, for instance, surfaces tweets from the last week about a fresh vulnerability in MacOS known as "BuggyCow," as well as an attack known as SPOILER that could allow webpages to exploit deep-seated vulnerabilities in Intel chips. Neither of the attacks, which the researchers' Twitter scanner labeled "probably severe," has shown up yet in the National Vulnerability Database.

13 comments

  1. News Sites by Luthair · · Score: 2

    The BuggyCow vulnerability was been pretty broadly covered by the news which is probably the source that people on twitter are looking at. Wouldn't scanning news sites?

    Anyone who has observed or worked with NIST/Mitre would know their process is often slow so its hardly shocking that there are news stories before the CVEs are marked as disclosed.

  2. The other side of the blade. by Zorro · · Score: 1

    I could use tweets to sabotage a program.

    1. Re:The other side of the blade. by Anonymous Coward · · Score: 0

      Exactly. News story coming in 3...2....1...

      Machine Learning Can Use Tweets To Hide Critical Security Flaws

  3. Re: msmash is a MORON by Anonymous Coward · · Score: 0

    Paid in BizX Bucks, redeemable in pallet loads of curry puffs and shipping containers of oil filters and political favors.

  4. Sad news. by Anonymous Coward · · Score: 0

    It's a sad day on the Internet when people are using Twitter to report vulnerabilities.

    THAT IS NOT WHAT TWITTER IS FOR.

    I mean, holy shit, you're smart enough to discover a vulnerability, but too lazy to report it through the proper channels? What the hell is wrong with people?!

  5. ML can't predict shit by Anonymous Coward · · Score: 0

    If google needs captcha data to identify traffic lights its pretty obvious machine learning doesnt learn shit, it cant even pick out a "fire hydrant", bollocks

  6. in the US, tweets = security failure by swschrad · · Score: 0

    at least regarding the Chief Birdplop

    --
    if this is supposed to be a new economy, how come they still want my old fashioned money?
  7. Days of Our Lives while The Truth Boots by epine · · Score: 1

    The National Vulnerability Database is by design a lagging indicator: not lagging by great expanses of time, but lagging enough for the truth to pull its boots on.

    A Lie Can Travel Halfway Around the World While the Truth Is Putting On Its Shoes

    Besides, as the vilest writer has his readers, so the greatest liar has his believers; and it often happens, that if a lie be believ'd only for an hour, it has done its work, and there is no farther occasion for it.

    Falsehood flies, and the truth comes limping after it; so that when men come to be undeceiv'd, it is too late; the jest is over, and the tale has had its effect ...

                — Jonathan Swift, 1710

    It's no great feat to scoop a lagging indicator, as the swift had already figure out, 300 years ago.

  8. This is demented by gweihir · · Score: 1

    Seriously, I get that the AI hype is good for business, but this is just plain stupid. Either it does not work at all, or it does only work long after the fact when a lot of people have been hit, making it completely worthless.

    --
    Most ACs are not even worth the keystrokes to insult them. Be generically insulted by this and ignored otherwise.
  9. AI is NOT spotting flaws by Anonymous Coward · · Score: 0

    The AI is spotting Twitter trends about flaws or potential flaws. The AI is NOT spotting flaws. -1 TerribleHeadline

  10. It is spotting people talk about known vulns by hraponssi · · Score: 1

    So they trained a classifier to recognize when people discuss about new vulnerabilities that have been reported. Oh wow, when will this hype about machine learning come to sense?

    This is no different from N other recent machine learning applications. You label some tweets as discussing a topic, feed them to a supervised learner and ooh it can classify text. It is not finding unknown new vulnerabilities in tweets. Unless some dumbass cybercriminal masterminds discuss their zero-days public on twitter.

  11. Correction by eld101 · · Score: 0

    It's "The Ohio State University"

  12. Is it safe? by diligenf1990 · · Score: 1

    What about www.tenderdolls.com, Is it safe? I want to buy one for me, but I don't know if it's safe, help me!