Open packet-rat opened 5 months ago
Presuming you have access to DHS HSIN Reports: IB-24-10032 PikaBot Malware Campaign Observed in the Financial Services Sector
Note that the Entity Extraction is pulling out and asserting the same Tags for TLP-Amber(one Green, one Amber). Results in error message re: TLP.
Actual behavior
After applying Entity Extraction, MISP Galaxies are duplicated
Expected behavior
After applying Entity Extraction, only new Galaxy items would be added to the existing set.
Steps to reproduce
(1) Load Event Narrative as a MISP Report (2) Open MISP Report (3) Select [Menu/Extract entities/Automatic Extraction. (4) Select add tags (don't thinks this changes outcome in regards to issue, but see note) (5) View Event when completed. Several Galaxy items are duplicated.
Version
2.4.183
Operating System
Ubuntu
Operating System version
20.0.4
PHP version
7.4.33
Browser
Any Browser
Browser version
No response
Relevant log output
No response
Extra attachments
No response
Code of Conduct