SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

SANS Stormcast Thursday Mar 27th: Classifying Malware with ML; Malicious NPM Packages; Google Chrome 0-day

4 snips

Mar 27, 2025

Discover innovative methods for classifying malware using machine learning and entropy-driven feature selection. Learn about dangerous NPM packages that masquerade as legitimate software but introduce reverse shells. Additionally, uncover a recently patched vulnerability in Google Chrome that was exploited against media and educational groups in Russia. Delve into the world of cybersecurity and the latest emerging threats in the digital landscape.

Ask episode

AI Snips

Chapters

Transcript

Episode notes

INSIGHT

Malware Classification with ML

A student used machine learning to classify malware types, achieving 90% accuracy.
This model distinguished between droppers, downloaders, backdoors, ransomware, trojans, viruses, worms, and info stealers.

ANECDOTE

Malicious NPM Package Attack

Malicious NPM packages, like ethers-provider2, target crypto developers by patching the legitimate ethers package.
This added a reverse shell and downloader, commonly used to steal crypto coins.

Get the Snipd Podcast app to discover more snips from this episode

Get the app