CPC G06F 21/566 (2013.01) [G06F 18/2148 (2023.01); G06F 21/562 (2013.01); G06F 21/565 (2013.01); G06F 2221/034 (2013.01)] | 18 Claims |
1. A method for detecting malware in files, the method comprising:
providing a first malware model to each computing device of a plurality of computing devices through a network by a server;
receiving, from each computing device of the plurality of computing devices, training data by the server, wherein the training data includes at least a portion of a file and a probability that the file is malware as determined using a second malware model;
updating the first malware model using at least some of the training data received from the computing devices of the plurality of computing devices by the server; and
providing the updated first malware model to each computing device of the plurality of computing devices by the server.
|