Attack Attribution

Attack attribution aims to identify the perpetrators of malicious activities, whether in cybersecurity, audio deepfakes, or power systems. Current research focuses on developing machine learning models, including graph neural networks, recurrent neural networks, and decision trees, to analyze diverse data sources like text, network traffic, audio signals, and power grid measurements, extracting features to distinguish attackers. Successful attribution is crucial for effective countermeasures, legal action, and improved security protocols across various domains, enhancing both defensive capabilities and forensic analysis.