For nearly two decades, Kaspersky has been at the forefront of integrating artificial intelligence (AI), particularly machine learning (ML), into its products and services. Our deep expertise and experience in applying these technologies to cybersecurity, coupled with our unique datasets, efficient methods, and advanced model-training infrastructure form the bedrock of our approach to solving complex ML challenges. Our Kaspersky AI Technology Research Center brings together data scientists, ML engineers, threat experts, and infrastructure specialists to tackle the most challenging tasks at the intersection of AI\/ML and cybersecurity. This includes not only the development of applied technologies but also research into the security of AI algorithms, including the use of promising approaches such as neuromorphic ML, AI risk awareness, and much more.<\/p>\n
At Kaspersky we\u2019ve developed a wide range of AI\/ML-powered threat detection technologies, primarily for identifying malware. These include a deep neural network algorithm for detecting malicious executable files based on static features, decision-tree ML technology for automated creation of detection rules that work on user devices, and neural networks for detecting malicious behavior of programs during execution. We also utilize a system for identifying malicious online resources based on anonymous telemetry received from solutions installed on customer devices and other sources. You can read more about them in our white paper Machine Learning for Malware Detection<\/a>. Other models \u2013 such as the ML model for detecting fake websites and DeepQuarantine for quarantining suspected spam emails \u2013 protect users from phishing and spam threats. KSN\u2019s cloud infrastructure makes our AI developments available almost instantly to both home and enterprise users.<\/p>\n Guided by the promise of generative AI, particularly large language models (LLM), we\u2019ve built an infrastructure to explore its capabilities and rapidly prototype new solutions. This infrastructure, which deploys LLM tools akin to ChatGPT, is not only accessible to employees across all departments for everyday tasks but also serves as a basis for new solutions. For example, our Kaspersky Threat Intelligence Portal will soon have a new LLM-based OSINT capability that will quickly deliver threat report summaries for specific IoCs.<\/p>\n To enhance the security of our customers\u2019 infrastructures, we\u2019re actively developing AI technologies tailored to our flagship corporate products and services. For several years now, the AI Analyst in Kaspersky Managed Detection and Response has been helping to reduce the workload of SOC teams by automatically filtering out false positives. Last year alone, this technology closed over 100,000 alerts without human intervention<\/a>. This allows SOC experts to respond to real threats faster and devote more time to investigating complex cases and proactively hunting for threats. Another of our solutions \u2013 AI-based host risk scoring in Kaspersky SIEM (Kaspersky Unified Monitoring and Analysis platform<\/a>) and Kaspersky XDR<\/a> \u2013 uses ML algorithms to search for suspicious host behavior without the need to transfer data outside a company.<\/p>\n Another key area of Kaspersky\u2019s development is the use of AI\/ML in industrial environments. This includes Kaspersky MLAD<\/a> (Machine Learning for Anomaly Detection) \u2013 a predictive analytics software solution that automatically recognizes early (hidden) signs of impending equipment failure, process disruption, human error or cyberattack in telemetry signals. By continuously training the neural network, MLAD analyzes the stream of \u201catomic\u201d events from the object, structures them into patterns and identifies abnormal behavior. Another of our projects is Kaspersky Neuromorphic Platform<\/a> (KNP) \u2013 a research project and software platform for AI solutions based on spiking neural networks and AltAI, the energy-efficient neuromorphic processor developed by Russian-based Motive Neuromorphic Technologies (Motive NT) in collaboration with Kaspersky.<\/p>\n The widespread adoption of AI technologies requires security control, which is why we\u2019ve also established an AI security team. It offers a range of services aimed at ensuring reliable protection of AI systems and thwarting potential threats to data, business processes and AI infrastructure.<\/p>\n In the past, ML-based tasks were performed by departments directly involved in detecting specific threats. However, with the growing number of tasks and the increasing importance of ML technologies, we decided to hive off our expertise in AI-based systems to a separate Expertise Center: Kaspersky AI Technology Research. This resulted in the creation of three main teams that drive the use of AI at Kaspersky:<\/p>\n This doesn\u2019t mean that our AI expertise is limited to the above teams. The field of AI is currently so complex and multifaceted that it\u2019s impossible to concentrate all the know-how in a few research groups. Other teams also make significant contributions to the Expertise Center\u2019s work, and apply ML in many tasks: machine vision technologies in the Antidrone<\/a> team; research into AI coding assistants in the CoreTech and KasperskyOS departments; APT search in GReAT<\/a>; and AI legislation study<\/a> in the Government Relations team.<\/p>\n The uniqueness of our AI technologies is underscored by the dozens of patents we\u2019ve obtained worldwide. First and foremost, these are patents for detection technologies, such as malware detection based on program behavior logs<\/a>, detection of malicious servers in telemetry<\/a>, fake websites<\/a>, and spam<\/a> with the aid of ML. But the Kaspersky portfolio covers a much wider range of tasks: technologies for improving datasets<\/a> for ML, anomaly detection<\/a>, and even searching for suspicious contacts of kids<\/a> in parental control systems. And, of course, we are actively patenting our AI technologies for industrial systems<\/a> and unique neural network approaches to processing event streams<\/a>.<\/p>\n In addition, Kaspersky actively shares its AI expertise with the community. Some studies, such as those on monotonic ML algorithms<\/a> or the application of neural networks for spam detection<\/a>, are published as academic papers at leading ML conferences. Others are published on specialized portals and at information security conferences. For example, we publish research on the security of our own AI algorithms, in particular attacks on spam detection<\/a> and malware detection<\/a> algorithms. We study the application of neural networks for time series analysis<\/a> and explore the use of neuromorphic networks<\/a> in industry-relevant tasks. Our Kaspersky Neuromorphic Platform (KNP) is open-source software that will be available for use and development by the entire ML community.<\/p>\n The topic of secure AI development and application is of fundamental importance to us, as we need to be able to trust our algorithms and be confident in their reliability. Other topics we cover include our participation in cybersecurity challenges that simulate attacks on ML systems<\/a> and the use of advanced technologies such as LLMs to detect threats in system logs<\/a> and phishing links<\/a>. We also talk about threats<\/a> to generative AI, including from a privacy<\/a> standpoint, attacks on various LLM-based systems<\/a>, the use of AI by attackers<\/a>, and the application of our technologies in SOCs<\/a>. Sometimes we open the door and reveal our inner workings, talking about the process of training our models and even the intricacies of assessing their quality.<\/p>\n \u00a0<\/p>\n Finally, the most important function of the Kaspersky AI Technology Research Center is to raise awareness among our customers and the general public about the pros and cons of AI technologies and the threats they pose. Our experts at the Expertise Center demonstrate the dangers of deepfake videos<\/a>. We talk about the finer points of AI usage (for example, how ChatGPT affects the process of hiring developers) and share our experiences through webinars and roundtable discussions.<\/p>\n The FT Technology Research team organizes conferences on neuromorphic technologies with a separate track devoted to AI security issues, including systems based on the neuromorphic approach. Together with our partner, the Institute for System Programming of the Russian Academy of Sciences (ISP RAS), we\u2019re researching various attack vectors on neural networks in the areas of Computer Vision, LLM, and Time Series, and ways to protect them. As part of Kaspersky\u2019s industrial partnership with ISP RAS, the team is testing samples of trusted ML frameworks.<\/p>\n We\u2019re also involved in the development of educational courses, including a module on the use of AI in cybersecurity at Bauman Moscow State Technical University. Another example is our module<\/a> on the safe use of AI in Kaspersky ASAP<\/a>, our solution for raising employee awareness of cyberthreats. Finally, we\u2019re contributing to the creation of a set of international standards for the use of AI. In 2023, we presented the first principles for the ethical use of AI systems in cybersecurity<\/a> at the Internet Governance Forum.<\/p>\n \u00a0<\/p>\n To sum up, the main tasks of the Kaspersky AI Technology Research Center are the development of AI technologies, their safe application in cybersecurity, threat monitoring for improper or malicious AI usage, and forecasting trends. All these tasks serve a single purpose: to ensure the highest level of security for our customers.<\/p>\n","protected":false},"excerpt":{"rendered":" Our developments, products, research, patents and expert teams harnessed for AI.<\/p>\n","protected":false},"author":2766,"featured_media":33756,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[1999,3020,3021],"tags":[1140,3750,960,3484],"class_list":{"0":"post-33755","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-business","8":"category-enterprise","9":"category-smb","10":"tag-ai","11":"tag-ai-technology-research","12":"tag-artificial-intelligence","13":"tag-ml"},"hreflang":[{"hreflang":"en-za","url":"https:\/\/www.kaspersky.co.za\/blog\/ai-technology-research\/33755\/"},{"hreflang":"en-in","url":"https:\/\/www.kaspersky.co.in\/blog\/ai-technology-research\/28012\/"},{"hreflang":"en-ae","url":"https:\/\/me-en.kaspersky.com\/blog\/ai-technology-research\/23280\/"},{"hreflang":"ar","url":"https:\/\/me.kaspersky.com\/blog\/ai-technology-research\/12098\/"},{"hreflang":"en-us","url":"https:\/\/usa.kaspersky.com\/blog\/ai-technology-research\/30537\/"},{"hreflang":"en-gb","url":"https:\/\/www.kaspersky.co.uk\/blog\/ai-technology-research\/28169\/"},{"hreflang":"es-mx","url":"https:\/\/latam.kaspersky.com\/blog\/ai-technology-research\/27747\/"},{"hreflang":"es","url":"https:\/\/www.kaspersky.es\/blog\/ai-technology-research\/30479\/"},{"hreflang":"it","url":"https:\/\/www.kaspersky.it\/blog\/ai-technology-research\/29230\/"},{"hreflang":"ru","url":"https:\/\/www.kaspersky.ru\/blog\/ai-technology-research\/38236\/"},{"hreflang":"tr","url":"https:\/\/www.kaspersky.com.tr\/blog\/ai-technology-research\/12877\/"},{"hreflang":"x-default","url":"https:\/\/www.kaspersky.com\/blog\/ai-technology-research\/52174\/"},{"hreflang":"fr","url":"https:\/\/www.kaspersky.fr\/blog\/ai-technology-research\/22282\/"},{"hreflang":"pt-br","url":"https:\/\/www.kaspersky.com.br\/blog\/ai-technology-research\/23038\/"},{"hreflang":"de","url":"https:\/\/www.kaspersky.de\/blog\/ai-technology-research\/31692\/"},{"hreflang":"ja","url":"https:\/\/blog.kaspersky.co.jp\/ai-technology-research\/37293\/"},{"hreflang":"ru-kz","url":"https:\/\/blog.kaspersky.kz\/ai-technology-research\/28293\/"},{"hreflang":"en-au","url":"https:\/\/www.kaspersky.com.au\/blog\/ai-technology-research\/34100\/"}],"acf":[],"banners":"","maintag":{"url":"https:\/\/www.kaspersky.co.za\/blog\/tag\/artificial-intelligence\/","name":"artificial intelligence"},"_links":{"self":[{"href":"https:\/\/www.kaspersky.co.za\/blog\/wp-json\/wp\/v2\/posts\/33755","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.kaspersky.co.za\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.kaspersky.co.za\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.kaspersky.co.za\/blog\/wp-json\/wp\/v2\/users\/2766"}],"replies":[{"embeddable":true,"href":"https:\/\/www.kaspersky.co.za\/blog\/wp-json\/wp\/v2\/comments?post=33755"}],"version-history":[{"count":1,"href":"https:\/\/www.kaspersky.co.za\/blog\/wp-json\/wp\/v2\/posts\/33755\/revisions"}],"predecessor-version":[{"id":33816,"href":"https:\/\/www.kaspersky.co.za\/blog\/wp-json\/wp\/v2\/posts\/33755\/revisions\/33816"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.kaspersky.co.za\/blog\/wp-json\/wp\/v2\/media\/33756"}],"wp:attachment":[{"href":"https:\/\/www.kaspersky.co.za\/blog\/wp-json\/wp\/v2\/media?parent=33755"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.kaspersky.co.za\/blog\/wp-json\/wp\/v2\/categories?post=33755"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.kaspersky.co.za\/blog\/wp-json\/wp\/v2\/tags?post=33755"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}Our people<\/h2>\n
\n
Our research and patents<\/h2>\n
Raising awareness<\/h2>\n