MalPurifier: Enhancing Android Malware Detection With Adversarial Purification Against Evasion Attacks
Summary
Machine learning systems used to detect Android malware (malicious software on Android phones) are vulnerable to evasion attacks, where attackers modify malware to trick the detection system into missing it. Researchers developed MalPurifier, a defensive framework that uses adversarial purification (a technique that removes deceptive modifications from suspicious code) combined with a Denoising AutoEncoder (a type of neural network that learns to clean up noisy or corrupted data) to protect detection systems and maintain accuracy above 90% against various evasion attacks.
Solution / Mitigation
MalPurifier is described as "a lightweight, model-agnostic, and plug-and-play module" that integrates "a diversified adversarial perturbation mechanism for robustness and generalizability, a protective noise injection strategy for benign data integrity, and a Denoising AutoEncoder with a dual-objective loss for accurate purification and classification." The framework is presented as "a practical and effective solution to bolster the security of ML-based Android malware detectors."
Classification
Related Issues
Original source: http://ieeexplore.ieee.org/document/11513748
First tracked: July 13, 2026 at 08:03 PM
Classified by LLM (prompt v3) · confidence: 85%