Dark web posts are often lengthy and difficult to parse due to poor grammar and irrelevant and intentionally cryptic content. Many fintech threat actors are using dark web forums to discuss their attacks and sell fake software or stolen credentials. To address this, we developed an unsupervised ML model to classify posts as relevant or irrelevant and analyzed them using transformed pointwise mutual information (PMI) to identify correlations between frequently co-occurring words related to fintech attacks. We then use prompt engineering to send the results through Intuit GenAI and categorize the threat actors using LLM. We show that this methodology enables us to extract valuable insights from long and convoluted dark web posts and identify potential security threats for the fintech industry.
The evolving landscape of cyber threats demands robust and adaptive defense mechanisms. This paper presents a machine learning-driven system for the automated detection of both bot activity and sophisticated weaponization efforts. In addressing the challenge of automated bot traffic, we leverage session-level analysis and unsupervised clustering to accurately identify and categorize bot behavior, even in the presence of deceptive user-agent strings. Simultaneously, we tackle the rising threat of advanced threat actors by employing behavioral analytics and entropy analysis to uncover their stealthy weaponization activities. This approach enhances detection capabilities beyond traditional rule-based methods, enabling proactive defense against both high-volume bot attacks and targeted, sophisticated threats. By incorporating these two critical aspects of cybersecurity, we demonstrate the potential of machine learning to provide comprehensive protection against the multifaceted and dynamic threat landscape, enhancing the capabilities of traditional WAF-based defenses.
Luiza is an AI/ML security engineer at Intuit, specializing in adversary management. She has 15 years of experience in cybersecurity, including offensive security, research in security/ML, and threat intelligence. She holds an MSc in cybersecurity engineering and is currently working on a PhD in brain science.
| 8:45 | Reception |
|---|---|
| 9:30 | Opening remarks by WiDS TLV ambassadors |
| 9:45 | Dr. Mor Geva , Tel Aviv University: “MRI for Large Language Models: Mechanistic Interpretability from Neurons to Attention Heads” |
| 10:15 |
Panel: “Pioneering Progress: a strategic look at the GenAI revolution and the new role of data scientists“ Shani Gershtein, Melingo Mirit Elyada Bar, Intuit Dr. Asi Messica, Lightricks Moderated by Nitzan Gado, Intuit |
| 10:45 | Poster pitches |
| 10:55 | Break |
| 11:10 | Lightning talks session |
| 12:30 | Lunch & poster session |
|---|---|
| 13:30 | Roundtable session & poster session |
| 14:30 | Roundtable closing |
| 14:40 | Shunit Agmon, Technion: “Bridging the Gender Gap in Clinical AI: Temporal Adaptation with TeDi-BERT” |
| 15:00 | Shaked Naor Hoffmann, Apartment List: “Building Generative AI Agents for Production: Turning Ideas into Real-World Applications” |
| 15:20 | Closing remarks |
| 15:30 | The end |
WiDS Tel Aviv is an independent event that is organized by Intuit’s WiDS TLV ambassadors as part of the annual WiDS Worldwide conference, the WiDS Datathon, and an estimated 200 WiDS Regional Events worldwide. Everyone is invited to attend all WiDS conference and WiDS Datathon Workshop events which feature outstanding women doing outstanding work.
© 2018-2024 WiDS TLV – Intuit. All rights reserved.
Scotty – By Nir Azoulay
Design: Sharon Geva
