English
Related papers

Related papers: Multi-Stage Attack Detection via Kill Chain State …

200 papers

The power grid is a critical infrastructure that plays a vital role in modern society. Its availability is of utmost importance, as a loss can endanger human lives. However, with the increasing digitalization of the power grid, it also…

Cryptography and Security · Computer Science 2023-12-22 Ömer Sen , Bozhidar Ivanov , Martin Henze , Andreas Ulbig

Advanced software supply chain (SSC) attacks are increasingly runtime-only and leave fragmented evidence across hosts, services, and build/dependency layers, so any single telemetry stream is inherently insufficient to reconstruct full…

Cryptography and Security · Computer Science 2026-03-18 Zhuoran Tan , Wenbo Guo , Taylor Brierley , Jiewen Luo , Jeremy Singer , Christos Anagnostopoulos

Although intrusion alerts can provide threat intelligence regarding attacker strategies, extracting such intelligence via existing tools is expensive and time-consuming. Earlier work has proposed SAGE, which generates attack graphs from…

Cryptography and Security · Computer Science 2023-10-23 Sònia Leal Díaz , Sergio Pastrana , Azqa Nadeem

APT detection is difficult to detect due to the long-term latency, covert and slow multistage attack patterns of Advanced Persistent Threat (APT). To tackle these issues, we propose TBDetector, a transformer-based advanced persistent threat…

Cryptography and Security · Computer Science 2025-07-18 Nan Wang , Xuezhi Wen , Dalin Zhang , Xibin Zhao , Jiahui Ma , Mengxia Luo , Fan Xu , Sen Nie , Shi Wu , Jiqiang Liu

Attack detection problems in the smart grid are posed as statistical learning problems for different attack scenarios in which the measurements are observed in batch or online settings. In this approach, machine learning algorithms are used…

Machine Learning · Computer Science 2015-03-24 Mete Ozay , Inaki Esnaola , Fatos T. Yarman Vural , Sanjeev R. Kulkarni , H. Vincent Poor

As a new type of cyber attacks, advanced persistent threats (APTs) pose a severe threat to modern society. This paper focuses on the assessment of the risk of APTs. Based on a dynamic model characterizing the time evolution of the state of…

Cryptography and Security · Computer Science 2017-12-29 Xiaofan Yang , Tianrui Zhang , Lu-Xing Yang , Luosheng Wen , Yuan Yan Tang

While intrusion detection systems form the first line-of-defense against cyberattacks, they often generate an overwhelming volume of alerts, leading to alert fatigue among security operations center (SOC) analysts. Alert-driven attack…

Cryptography and Security · Computer Science 2024-08-20 Ion Băbălău , Azqa Nadeem

Advanced Persistent Threats (APTs) have created new security challenges for critical infrastructures due to their stealthy, dynamic, and adaptive natures. In this work, we aim to lay a game-theoretic foundation by establishing a multi-stage…

Computer Science and Game Theory · Computer Science 2018-09-10 Linan Huang , Quanyan Zhu

Sensor systems are extremely popular today and vulnerable to sensor data attacks. Due to possible devastating consequences, counteracting sensor data attacks is an extremely important topic, which has not seen sufficient study. This paper…

Cryptography and Security · Computer Science 2026-01-07 Xubin Fang , Rick S. Blum , Ramesh Bharadwaj , Brian M. Sadler

Machine learning (ML) underpins foundation models in finance, healthcare, and critical infrastructure, making them targets for data poisoning, model extraction, prompt injection, automated jailbreaking, and preference-guided black-box…

Cryptography and Security · Computer Science 2025-12-30 Armstrong Foundjem , Lionel Nganyewou Tidjon , Leuson Da Silva , Foutse Khomh

Advanced Persistent Threat (APT) attacks are highly sophisticated and employ a multitude of advanced methods and techniques to target organizations and steal sensitive and confidential information. APT attacks consist of multiple stages and…

Cryptography and Security · Computer Science 2023-09-18 Huynh Thai Thi , Ngo Duc Hoang Son , Phan The Duy , Nghi Hoang Khoa , Khoa Ngo-Khanh , Van-Hau Pham

While attack graphs are useful for identifying major cybersecurity threats affecting a system, they do not provide operational support for determining the likelihood of having a known vulnerability exploited, or that critical system nodes…

Cryptography and Security · Computer Science 2026-04-21 Francesco Vitale , Simone Guarino , Stefano Perone , Massimiliano Rak , Nicola Mazzocca

Advanced persistent threats (APTs) are organized prolonged cyberattacks by sophisticated attackers. Although APT activities are stealthy, they interact with the system components and these interactions lead to information flows. Dynamic…

Computer Science and Game Theory · Computer Science 2021-06-29 Shana Moothedath , Dinuka Sahabandu , Joey Allen , Linda Bushnell , Wenke Lee , Radha Poovendran

Past Advanced Persistent Threat (APT) attacks on Industrial Internet-of-Things (IIoT), such as the 2016 Ukrainian power grid attack and the 2017 Saudi petrochemical plant attack, have shown the disruptive effects of APT campaigns while new…

Cryptography and Security · Computer Science 2023-09-27 Ayush Kumar , Vrizlynn L. L. Thing

This paper presents PULSAR, a framework for pre-empting Advanced Persistent Threats (APTs). PULSAR employs a probabilistic graphical model (specifically a Factor Graph) to infer the time evolution of an attack based on observed security…

Cryptography and Security · Computer Science 2019-03-22 Phuong Cao

Advanced persistent threats (APTs) are stealthy attacks which make use of social engineering and deception to give adversaries insider access to networked systems. Against APTs, active defense technologies aim to create and exploit…

Cryptography and Security · Computer Science 2019-01-24 Jeffrey Pawlick , Thi Thu Hang Nguyen , Edward Colbert , Quanyan Zhu

Large Language Models (LLMs) are increasingly used in agentic systems, where their interactions with diverse tools and environments create complex, multi-stage safety challenges. However, existing benchmarks mostly rely on static,…

Cryptography and Security · Computer Science 2026-02-03 Liming Lu , Xiang Gu , Junyu Huang , Jiawei Du , Xu Zheng , Yunhuai Liu , Yongbin Zhou , Shuchao Pang

Attack graphs are a tool for analyzing security vulnerabilities that capture different and prospective attacks on a system. As a threat modeling tool, it shows possible paths that an attacker can exploit to achieve a particular goal.…

Attacks in cyberspace have got attention due to risk at privacy, breach of trust and financial losses for individuals as well as organizations. In recent years, these attacks have become more complex to analyze technically, as well as to…

Networking and Internet Architecture · Computer Science 2016-06-13 Koustav Sadhukhan , Rao Arvind Mallari , Tarun Yadav

Advanced Persistent Threats (APT) attacks have plagued modern enterprises, causing significant financial losses. To counter these attacks, researchers propose techniques that capture the complex and stealthy scenarios of APT attacks by…

Cryptography and Security · Computer Science 2023-11-07 Shaofei Li , Feng Dong , Xusheng Xiao , Haoyu Wang , Fei Shao , Jiedong Chen , Yao Guo , Xiangqun Chen , Ding Li