Endpoint Security,
Events,
Governance & Risk Management
Politecnico di Milano’s Zanero Discusses Advances in Malware Detection and Hardware Security
In a recent interview, Stefano Zanero, an academic from the Politecnico di Milano, articulated that while machine learning is proficient in detecting repetitive patterns and anomalies, human understanding is crucial for interpreting the larger context of cyberattacks, particularly within cyber-physical environments. This assertion underlines the necessity of blending technological prowess with human insight to effectively combat cyber threats.
Zanero pointed out that industrial cyber-physical systems often harbor vulnerabilities that security experts may overlook without a solid grasp of both mechanical and physical principles. He emphasized that incorporating hardware security measures—such as trusted execution environments—is essential for fortifying these systems against compromises.
During a video interview with the Information Security Media Group at the RSAC Conference 2025, Zanero explored critical subjects such as the integration of static and dynamic analyses with machine learning methodologies, the continuous struggle in cybersecurity where attackers exploit weaknesses within detection systems, and the growing emphasis on hardware security in cyber-physical systems.
In his role as an associate professor within the Dipartimento di Elettronica, Informazione e Bioingegneria, Zanero’s focus lies primarily in malware analysis and the broader spectrum of cybersecurity. He is not only involved in academia—where he teaches courses on computer security and forensics—but has also contributed to over 90 scientific publications in the field.
As organizations increasingly rely on complex cyber-physical systems, understanding the potential MITRE ATT&CK tactics—such as initial access, persistence, and privilege escalation—becomes imperative. These frameworks can assist cybersecurity professionals in analyzing threats and devising comprehensive strategies against emerging vulnerabilities.
Zanero’s insights underscore a vital truth in the realm of cybersecurity: while technological advancements play a significant role, the human element remains indispensable in navigating the intricacies of cyber threats and ensuring robust defenses.
