Abstract: An apparatus includes a memory and a processor. The memory stores descriptions of known vulnerabilities and information generated by a monitoring subsystem. Each description of a known vulnerability identifies software components that are associated with the known vulnerability. The monitoring subsystem monitors software programs that are installed within a computer system. The information includes descriptions of issues that are associated with the software programs. The processor generates a set of mappings, based on a comparison between the text describing the known software vulnerabilities and the text describing the issues. Each mapping associates a software program that is associated with an issue with a known software vulnerability. The processor also uses a machine learning algorithm to predict that a given software program is associated with a particular software vulnerability.

Abstract: Systems, methods, and apparatus are provided for intelligent cybersecurity processing of a product update. A fetcher application may access an updated version of a software product, a prior version of the product, and a version control system for the product. A malicious software identification engine may process the data using batch or stream processing to identify suspect code and metadata anomalies in the updated version. The engine may decompile executable binary code to obtain source code for the updated version and the prior version. A machine learning engine may receive input from the malicious software identification engine and classify the input using an NER-based machine learning model. Based on output from the machine learning engine, a control dashboard may block installation of a malicious product update.

Abstract: An apparatus includes a memory and a processor. The memory stores descriptions of known vulnerabilities and information generated by a monitoring subsystem. Each description of a known vulnerability identifies software components that are associated with the known vulnerability. The monitoring subsystem monitors software programs that are installed within a computer system. The information includes descriptions of issues that are associated with the software programs. The processor generates a set of mappings, based on a comparison between the text describing the known software vulnerabilities and the text describing the issues. Each mapping associates a software program that is associated with an issue with a known software vulnerability. The processor also uses a machine learning algorithm to predict that a given software program is associated with a particular software vulnerability.