Threat Detection

Advanced Persistent Threats Targeting the Middle East: Tactics, Techniques and Recommendations for Countermeasures

Abstract:

This research analyses the tactics and techniques of Advanced Persistent Threat groups targeting the Middle East, focusing on improving regional cyber security practices. It evaluates security measures using the MITRE ATT&CK framework, threat intelligence feeds, and simulated attacks in a controlled environment simulating corporate networks. Through experimental testing methodology employing both quantitative and qualitative analysis approaches, the research executed 127 attack techniques against endpoints and 1,968 web-based attacks to evaluate detection capabilities. Testing revealed that only 6.3% of endpoint attacks were detected by security solutions, while just 41.4% of web attacks were blocked by the Web Application Firewall, highlighting significant gaps in existing defences and recommending adoption of more enhanced technologies.

Published In

Volume 24, Issue 2

Written By

Ahmed ElTijani

Journal of Information Warfare

The definitive publication for the best and latest research and analysis on information warfare, information operations, and cyber crime. Available in traditional hard copy or online.

Keywords

(

2

3

4

8

9

A
AI
APT

a

B

C
C2
C2S
CDX
CIA
CIP
CPS

D
DNS
DoD
DoS

E

e

F

G

H

I
IA
ICS

i

J

K

L

M

N

O

P
PDA

Q

R

S
SOA

T

t

U

V

W

X
XRY

Y

Z

Quill Logo

The definitive publication for the best and latest research and analysis on information warfare, information operations, and cyber crime. Available in traditional hard copy or online.

SUBSCRIBE NOW

Get in touch

Registered Agent and Mailing Address

  • Journal of Information Warfare
  •  ArmisteadTEC
  • Dr Leigh Armistead, President
  • 1624 Wakefield Drive
  • Virginia Beach, VA 23455

 757.510.4574

 JIW@ArmisteadTec.com