QCRI builds cyber intelligence platform to defend against security threats

Dr Issa Khalil

Doha: Scientists from the Qatar Computing Research Institute (QCRI) at Hamad Bin Khalifa University (HBKU), in partnership with Qatari stakeholders and Turkish partners, have successfully built a cybersecurity defense platform named ” WARNING” to predict and detect security threats against businesses and critical infrastructures.

The new platform is the result of a three-year project between QCRI, Qatar’s Ministry of Interior, Supreme Committee for Delivery and Legacy, and TOBB University of Economics and Technology in Qatar. Turkey, Kadir Has University, and INTERPROBE, a cyber-intelligence and cyber-defense. the society. It was jointly funded by a $1.65 million grant from the Qatar National Research Fund (QNRF) and the Scientific and Technological Research Council of Turkey (TUBITAK).

Dr. Issa Khalil, Senior Scientist at QCRI who leads the project, said: “In today’s cyber landscape, threat intelligence on digital assets is more important than ever, as society increasingly relies on security technologies. information.

Cyberattacks are on the rise, not only to disrupt the daily activities of civilians but also to cause irreparable damage to critical infrastructure and systems. Countries that have cyber threat intelligence capabilities are better positioned to prevent and detect catastrophic attacks against their critical infrastructure and businesses.

“WARNING is user-friendly and produces high-quality intelligence on existing and emerging cybersecurity threats. The platform is designed to be scalable and to efficiently process and correlate public data streams and corporate logs to produce actionable insights efficiently and quickly.

The platform is powered by new artificial intelligence (AI) technologies developed by the team and includes technology that can detect phishing domains as early as possible. Phishing domains are one of the primary methods used by attackers to distribute malicious content to users in order to steal their credentials, data, and assets.

Warning is also capable of detecting malware, which is the primary means for attackers to compromise user accounts and hijack their systems, and also has malicious corporate network traffic detection technology.

This technology helps to accurately identify insider attackers by carefully profiling normal and abnormal traffic patterns.

“The warning aims to block phishing attacks, detect malware as a second security step, and track malware in network logs as a last resort,” the INTERPROBE spokesperson said.

About Donald J. Beadle

Check Also

Workforce Cyber ​​Intelligence & Security News Digest—March 2022

It’s crazy to think that it’s already been a month since we shared our latest …