{"id":"https://openalex.org/W7160239317","doi":"https://doi.org/10.48550/arxiv.2605.01892","title":"CyberAId: AI-Driven Cybersecurity for Financial Service Providers","display_name":"CyberAId: AI-Driven Cybersecurity for Financial Service Providers","publication_year":2026,"publication_date":"2026-05-03","ids":{"openalex":"https://openalex.org/W7160239317","doi":"https://doi.org/10.48550/arxiv.2605.01892"},"language":null,"primary_location":{"id":"doi:10.48550/arxiv.2605.01892","is_oa":true,"landing_page_url":"https://doi.org/10.48550/arxiv.2605.01892","pdf_url":null,"source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":null,"is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"article"},"type":"preprint","indexed_in":["datacite"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://doi.org/10.48550/arxiv.2605.01892","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5134201437","display_name":"George Fatouros","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Fatouros, George","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5050942947","display_name":"Georgios Makridis","orcid":"https://orcid.org/0000-0002-6165-7239"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Makridis, Georgios","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5135392146","display_name":"John Soldatos","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Soldatos, John","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5020920798","display_name":"Dimosthenis Kyriazis","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Kyriazis, Dimosthenis","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5135349557","display_name":"Pedro Malo","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Malo, Pedro","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5037177499","display_name":"George Kousiouris","orcid":"https://orcid.org/0000-0003-0961-3471"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Kousiouris, George","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5018253924","display_name":"Giannis Ledakis","orcid":"https://orcid.org/0000-0001-9804-7912"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Ledakis, Giannis","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5135296245","display_name":"Louiza Kachrimani","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Kachrimani, Louiza","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5058404145","display_name":"Panagiotis Rizomiliotis","orcid":"https://orcid.org/0000-0001-6809-9981"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Rizomiliotis, Panagiotis","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5135317971","display_name":"Bruno Figueiredo de Almeida","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Almeida, Bruno","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5119220232","display_name":"Despina Tomkou","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Tomkou, Despina","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5135404809","display_name":"Kostas Metaxas","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Metaxas, Kostas","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5135369292","display_name":"Konstantinos Ilias","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Ilias, Konstantinos","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5135379481","display_name":"Christos Gkizelis","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Gkizelis, Christos","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5135378034","display_name":"Ernstjan de Gooyert","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"de Gooyert, Ernstjan","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5012543495","display_name":"Amin Babazadeh","orcid":"https://orcid.org/0000-0002-9261-2092"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Babazadeh, Amin","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5135384996","display_name":"Kostis Mavrogiorgos","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Mavrogiorgos, Kostis","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5135314817","display_name":"Pepi Paraskevoulakou","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Paraskevoulakou, Pepi","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5032247032","display_name":"Christos Xenakis","orcid":"https://orcid.org/0000-0001-6718-122X"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Xenakis, Christos","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5135356056","display_name":"Giannis Chouchoulis","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Chouchoulis, Giannis","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"last","author":{"id":"https://openalex.org/A5094319334","display_name":"Konstantina Tripodi","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Tripodi, Konstantina","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]}],"institutions":[],"countries_distinct_count":0,"institutions_distinct_count":21,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":null,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":null,"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":null,"last_page":null},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10270","display_name":"Blockchain Technology Applications and Security","score":0.2662000060081482,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10270","display_name":"Blockchain Technology Applications and Security","score":0.2662000060081482,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11995","display_name":"FinTech, Crowdfunding, Digital Finance","score":0.03220000118017197,"subfield":{"id":"https://openalex.org/subfields/1404","display_name":"Management Information Systems"},"field":{"id":"https://openalex.org/fields/14","display_name":"Business, Management and Accounting"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}},{"id":"https://openalex.org/T12519","display_name":"Cybercrime and Law Enforcement Studies","score":0.026599999517202377,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/payment","display_name":"Payment","score":0.45829999446868896},{"id":"https://openalex.org/keywords/service","display_name":"Service (business)","score":0.43720000982284546},{"id":"https://openalex.org/keywords/service-provider","display_name":"Service provider","score":0.4147000014781952},{"id":"https://openalex.org/keywords/financial-transaction","display_name":"Financial transaction","score":0.3968000113964081},{"id":"https://openalex.org/keywords/delegation","display_name":"Delegation","score":0.39410001039505005},{"id":"https://openalex.org/keywords/staffing","display_name":"Staffing","score":0.38440001010894775},{"id":"https://openalex.org/keywords/vulnerability","display_name":"Vulnerability (computing)","score":0.37459999322891235},{"id":"https://openalex.org/keywords/malware","display_name":"Malware","score":0.35740000009536743},{"id":"https://openalex.org/keywords/position","display_name":"Position (finance)","score":0.35409998893737793},{"id":"https://openalex.org/keywords/intrusion-detection-system","display_name":"Intrusion detection system","score":0.3479999899864197}],"concepts":[{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.6510000228881836},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.47189998626708984},{"id":"https://openalex.org/C145097563","wikidata":"https://www.wikidata.org/wiki/Q1148747","display_name":"Payment","level":2,"score":0.45829999446868896},{"id":"https://openalex.org/C2780378061","wikidata":"https://www.wikidata.org/wiki/Q25351891","display_name":"Service (business)","level":2,"score":0.43720000982284546},{"id":"https://openalex.org/C144133560","wikidata":"https://www.wikidata.org/wiki/Q4830453","display_name":"Business","level":0,"score":0.435699999332428},{"id":"https://openalex.org/C116537","wikidata":"https://www.wikidata.org/wiki/Q2169973","display_name":"Service provider","level":3,"score":0.4147000014781952},{"id":"https://openalex.org/C164516710","wikidata":"https://www.wikidata.org/wiki/Q1166072","display_name":"Financial transaction","level":3,"score":0.3968000113964081},{"id":"https://openalex.org/C86532276","wikidata":"https://www.wikidata.org/wiki/Q1184065","display_name":"Delegation","level":2,"score":0.39410001039505005},{"id":"https://openalex.org/C2777512617","wikidata":"https://www.wikidata.org/wiki/Q1783605","display_name":"Staffing","level":2,"score":0.38440001010894775},{"id":"https://openalex.org/C95713431","wikidata":"https://www.wikidata.org/wiki/Q631425","display_name":"Vulnerability (computing)","level":2,"score":0.37459999322891235},{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.35740000009536743},{"id":"https://openalex.org/C198082294","wikidata":"https://www.wikidata.org/wiki/Q3399648","display_name":"Position (finance)","level":2,"score":0.35409998893737793},{"id":"https://openalex.org/C35525427","wikidata":"https://www.wikidata.org/wiki/Q745881","display_name":"Intrusion detection system","level":2,"score":0.3479999899864197},{"id":"https://openalex.org/C37736160","wikidata":"https://www.wikidata.org/wiki/Q1801315","display_name":"Adversarial system","level":2,"score":0.33880001306533813},{"id":"https://openalex.org/C167981075","wikidata":"https://www.wikidata.org/wiki/Q2667186","display_name":"Sandbox (software development)","level":2,"score":0.335999995470047},{"id":"https://openalex.org/C165609540","wikidata":"https://www.wikidata.org/wiki/Q1172486","display_name":"Data breach","level":2,"score":0.32919999957084656},{"id":"https://openalex.org/C41065033","wikidata":"https://www.wikidata.org/wiki/Q2825412","display_name":"Adversary","level":2,"score":0.3154999911785126},{"id":"https://openalex.org/C139043278","wikidata":"https://www.wikidata.org/wiki/Q837171","display_name":"Financial services","level":2,"score":0.3084000051021576},{"id":"https://openalex.org/C48103436","wikidata":"https://www.wikidata.org/wiki/Q599031","display_name":"State (computer science)","level":2,"score":0.3082999885082245},{"id":"https://openalex.org/C10138342","wikidata":"https://www.wikidata.org/wiki/Q43015","display_name":"Finance","level":1,"score":0.3077999949455261},{"id":"https://openalex.org/C46934059","wikidata":"https://www.wikidata.org/wiki/Q61515","display_name":"Outsourcing","level":2,"score":0.30550000071525574},{"id":"https://openalex.org/C206345919","wikidata":"https://www.wikidata.org/wiki/Q20380951","display_name":"Resource (disambiguation)","level":2,"score":0.2939999997615814},{"id":"https://openalex.org/C105339364","wikidata":"https://www.wikidata.org/wiki/Q2297740","display_name":"Software deployment","level":2,"score":0.2928999960422516},{"id":"https://openalex.org/C76178495","wikidata":"https://www.wikidata.org/wiki/Q4808784","display_name":"Asset (computer security)","level":2,"score":0.2897000014781952},{"id":"https://openalex.org/C2779965156","wikidata":"https://www.wikidata.org/wiki/Q5227350","display_name":"Data sharing","level":3,"score":0.2854999899864197},{"id":"https://openalex.org/C143273055","wikidata":"https://www.wikidata.org/wiki/Q2382794","display_name":"Delegate","level":2,"score":0.2840000092983246},{"id":"https://openalex.org/C168167062","wikidata":"https://www.wikidata.org/wiki/Q1117970","display_name":"Component (thermodynamics)","level":2,"score":0.26739999651908875},{"id":"https://openalex.org/C2777042776","wikidata":"https://www.wikidata.org/wiki/Q4583103","display_name":"Preparedness","level":2,"score":0.26269999146461487},{"id":"https://openalex.org/C2776983043","wikidata":"https://www.wikidata.org/wiki/Q986008","display_name":"Payment system","level":3,"score":0.26190000772476196},{"id":"https://openalex.org/C2777526511","wikidata":"https://www.wikidata.org/wiki/Q691543","display_name":"Pace","level":2,"score":0.26159998774528503},{"id":"https://openalex.org/C122637931","wikidata":"https://www.wikidata.org/wiki/Q118084","display_name":"Unit (ring theory)","level":2,"score":0.2567000091075897},{"id":"https://openalex.org/C196879817","wikidata":"https://www.wikidata.org/wiki/Q872685","display_name":"Data governance","level":4,"score":0.2500999867916107}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.48550/arxiv.2605.01892","is_oa":true,"landing_page_url":"https://doi.org/10.48550/arxiv.2605.01892","pdf_url":null,"source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":null,"is_accepted":false,"is_published":null,"raw_source_name":null,"raw_type":"article"}],"best_oa_location":{"id":"doi:10.48550/arxiv.2605.01892","is_oa":true,"landing_page_url":"https://doi.org/10.48550/arxiv.2605.01892","pdf_url":null,"source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":null,"is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"article"},"sustainable_development_goals":[{"display_name":"Peace, Justice and strong institutions","score":0.7951862215995789,"id":"https://metadata.un.org/sdg/16"}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":0,"referenced_works":[],"related_works":[],"abstract_inverted_index":{"European":[0],"financial":[1,207],"institutions":[2,136],"face":[3],"mounting":[4],"regulatory":[5,96],"pressure":[6],"while":[7],"their":[8],"security":[9],"operations":[10],"centres":[11],"remain":[12],"constrained":[13],"not":[14],"by":[15,20,51],"data":[16],"or":[17],"staffing":[18],"but":[19,56],"reasoning":[21],"capacity:":[22],"enterprise":[23],"SIEMs":[24],"cover":[25],"only":[26],"a":[27,83,113,163,169,174,182,239,242],"fraction":[28],"of":[29,35,47,110],"MITRE":[30],"ATT&amp;CK":[31],"techniques,":[32],"two":[33],"thirds":[34],"SOC":[36],"teams":[37],"cannot":[38],"keep":[39],"pace":[40],"with":[41,197],"alert":[42],"volumes,":[43],"and":[44,98,140,156,177,195,220,223],"the":[45,107,229],"majority":[46],"breaches":[48],"are":[49,54],"preceded":[50],"alerts":[52],"that":[53,85,106],"generated":[55],"never":[57],"investigated.":[58],"Frontier":[59],"large":[60],"language":[61],"models":[62],"now":[63],"achieve":[64],"state-of-the-art":[65],"results":[66],"on":[67],"isolated":[68],"cybersecurity":[69],"tasks":[70],"(one-day":[71],"vulnerability":[72],"exploitation,":[73],"code-level":[74],"patching,":[75],"intrusion":[76],"detection)":[77],"yet":[78],"no":[79],"narrow":[80],"win":[81],"constitutes":[82],"platform":[84,166],"can":[86,141],"compose":[87],"across":[88,135],"functions,":[89],"persist":[90],"multi-tenant":[91],"state,":[92],"map":[93],"findings":[94],"to":[95,143,241],"regimes":[97],"survive":[99],"an":[100],"audit.":[101],"This":[102],"position":[103],"paper":[104],"argues":[105],"right":[108],"unit":[109],"construction":[111],"is":[112],"hybrid":[114],"multi-agent":[115],"system":[116],"in":[117,167],"which":[118,168],"specialised":[119],"LLM":[120],"subagents":[121,179],"reason":[122],"over":[123],"classical":[124],"SIEM/XDR":[125],"telemetry":[126],"rather":[127],"than":[128],"replacing":[129],"it,":[130],"share":[131],"accumulated":[132],"agent":[133,226],"state":[134],"through":[137],"privacy-preserving":[138],"federation,":[139],"connect":[142],"complementary":[144],"capability":[145],"packs":[146],"such":[147],"as":[148,228],"quantum-based":[149],"authentication,":[150],"digital":[151],"twins":[152],"for":[153,213,234],"adversarial":[154],"validation,":[155],"eBPF-based":[157],"kernel":[158],"telemetry.":[159],"We":[160],"present":[161],"CyberAId,":[162],"model-agnostic,":[164],"on-premise-deployable":[165],"Main":[170],"Agent":[171],"coordination":[172],"layer,":[173],"Reporting":[175],"capability,":[176],"specialist":[178],"operate":[180],"within":[181],"shared":[183],"runtime":[184],"under":[185],"bounded":[186],"human-in-the-loop":[187],"autonomy,":[188],"organised":[189],"around":[190],"four":[191,205],"falsifiable":[192],"design":[193],"principles,":[194],"aligned":[196],"relevant":[198],"regulations.":[199],"CyberAId":[200],"will":[201],"be":[202],"validated":[203],"at":[204],"representative":[206],"use":[208],"cases":[209],"(client":[210],"impersonation,":[211],"anti-money-laundering":[212],"payment":[214],"service":[215],"providers,":[216],"retail-banking":[217],"incident":[218],"response,":[219],"high-frequency-trading":[221],"resilience)":[222],"propose":[224],"skill-based":[225],"adaptation":[227],"most":[230],"promising":[231],"research":[232],"direction":[233],"turning":[235],"each":[236],"deployment":[237],"into":[238],"contribution":[240],"continuously":[243],"refined":[244],"collective":[245],"defence.":[246]},"counts_by_year":[],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2026-05-06T00:00:00"}