English
Related papers

Related papers: Mining Temporal Attack Patterns from Cyberthreat I…

200 papers

Indicators of Compromise (IoCs) play a crucial role in the rapid detection and mitigation of cyber threats. However, the existing body of literature lacks in-depth analytical studies on the temporal aspects of IoC publication, especially…

Cryptography and Security · Computer Science 2025-01-22 Angel Kodituwakku , Clark Xu , Daniel Rogers , David K. Ahn , Errin W. Fulp

In this paper, we present an operational system for cyber threat intelligence gathering from various social platforms on the Internet particularly sites on the darknet and deepnet. We focus our attention to collecting information from…

Cryptography and Security · Computer Science 2016-08-02 Eric Nunes , Ahmad Diab , Andrew Gunn , Ericsson Marin , Vineet Mishra , Vivin Paliath , John Robertson , Jana Shakarian , Amanda Thart , Paulo Shakarian

Public information contains valuable Cyber Threat Intelligence (CTI) that is used to prevent future attacks. While standards exist for sharing this information, much appears in non-standardized news articles or blogs. Monitoring online…

Cryptography and Security · Computer Science 2025-04-28 Philipp Kuehn , Dilara Nadermahmoodi , Markus Bayer , Christian Reuter

Cyber attacks are growing in frequency and severity. Over the past year alone we have witnessed massive data breaches that stole personal information of millions of people and wide-scale ransomware attacks that paralyzed critical…

Social and Information Networks · Computer Science 2018-06-13 Palash Goyal , KSM Tozammel Hossain , Ashok Deb , Nazgol Tavabi , Nathan Bartley , Andr'es Abeliuk , Emilio Ferrara , Kristina Lerman

Cyber threat hunting is the practice of proactively searching for latent threats in a network. Engaging in threat hunting can be difficult due to the volume of network traffic, variety of adversary techniques, and constantly evolving…

Cryptography and Security · Computer Science 2025-03-10 Matthew J. Turner , Mike Carenzo , Jackie Lasky , James Morris-King , James Ross

Monitoring the threat landscape to be aware of actual or potential attacks is of utmost importance to cybersecurity professionals. Information about cyber threats is typically distributed using natural language reports. Natural language…

Computation and Language · Computer Science 2024-04-12 Lukas Lange , Marc Müller , Ghazaleh Haratinezhad Torbati , Dragan Milchevski , Patrick Grau , Subhash Pujari , Annemarie Friedrich

The escalating frequency of cyber-attacks poses significant challenges for organisations, particularly small enterprises constrained by limited in-house expertise, insufficient knowledge, and financial resources. This research presents a…

Cryptography and Security · Computer Science 2026-03-16 Emad Sherif , Iryna Yevseyeva , Vitor Basto-Fernandes , Allan Cook

Cyber Threat Intelligence (CTI) mining involves extracting structured insights from unstructured threat data, enabling organizations to understand and respond to evolving adversarial behavior. A key task in CTI mining is mapping threat…

Cyber attacks are becoming more sophisticated and diverse, making detection increasingly challenging. To combat these attacks, security practitioners actively summarize and exchange their knowledge about attacks across organizations in the…

Cryptography and Security · Computer Science 2022-05-31 Zhenyuan Li , Jun Zeng , Yan Chen , Zhenkai Liang

An attack taxonomy offers a consistent and structured classification scheme to systematically understand, identify, and classify cybersecurity threat attributes. However, existing taxonomies only focus on a narrow range of attacks and…

Cryptography and Security · Computer Science 2026-04-03 Md Habibor Rahman , Rocco Cassandro , Thorsten Wuest , Mohammed Shafae

In response to the escalating cyber threats, the efficiency of Cyber Threat Intelligence (CTI) data collection has become paramount in ensuring robust cybersecurity. However, existing works encounter significant challenges in preprocessing…

Cryptography and Security · Computer Science 2025-06-05 Jamal H. Al-Yasiri , Mohamad Fadli Bin Zolkipli , Nik Fatinah N Mohd Farid , Mohammed Alsamman , Zainab Ali Mohammed

We introduce HackerSignal, a benchmark for temporal out-of-distribution cyber threat intelligence (CTI) and cross-source CVE linkage. HackerSignal aggregates 7.45 million exact-deduplicated documents from 64 public forum/source identifiers…

Cryptography and Security · Computer Science 2026-05-06 Benjamin M. Ampel , Sagar Samtani

Large language models (LLMs) can be used to analyze cyber threat intelligence (CTI) data from cybercrime forums, which contain extensive information and key discussions about emerging cyber threats. However, to date, the level of accuracy…

With the recent prevalence of darkweb/deepweb (D2web) sites specializing in the trade of exploit kits and malware, malicious actors have easy-access to a wide-range of tools that can empower their offensive capability. In this study, we…

Cryptography and Security · Computer Science 2018-11-01 Mohammed Almukaynizi , Vivin Paliath , Malay Shah , Malav Shah , Paulo Shakarian

Despite the fact that cyberattacks are constantly growing in complexity, the research community still lacks effective tools to easily monitor and understand them. In particular, there is a need for techniques that are able to not only track…

Cryptography and Security · Computer Science 2019-05-30 Yun Shen , Gianluca Stringhini

We introduce a system for automatically generating warnings of imminent or current cyber-threats. Our system leverages the communication of malicious actors on the darkweb, as well as activity of cyber security experts on social media…

Cryptography and Security · Computer Science 2018-01-31 Anna Sapienza , Alessandro Bessi , Saranya Damodaran , Paulo Shakarian , Kristina Lerman , Emilio Ferrara

The ever increasing number of cyber attacks requires the cyber security and forensic specialists to detect, analyze and defend against the cyber threats in almost realtime. In practice, timely dealing with such a large number of attacks is…

Cryptography and Security · Computer Science 2018-08-06 Mauro Conti , Ali Dehghantanha , Tooska Dargahi

A wide variety of Cyber Threat Information (CTI) is used by Security Operation Centres (SOCs) to perform validation of security incidents and alerts. Security experts manually define different types of rules and scripts based on CTI to…

Cryptography and Security · Computer Science 2022-03-16 Chadni Islam , M. Ali Babar , Roland Croft , Helge Janicke

Attacks in cyberspace have got attention due to risk at privacy, breach of trust and financial losses for individuals as well as organizations. In recent years, these attacks have become more complex to analyze technically, as well as to…

Networking and Internet Architecture · Computer Science 2016-06-13 Koustav Sadhukhan , Rao Arvind Mallari , Tarun Yadav

Given the constant growth and increasing sophistication of cyberattacks, cybersecurity can no longer rely solely on traditional defense techniques and tools. Proactive detection of cyber threats has become essential to help security teams…