Today in Ukraine, a digital transformation of the educational system of higher education is taking place at a rapid pace, in which information and communication technologies are not becoming an additional ʻload’ in learning, but an integral part of a comprehensive educational process, which increases its efficiency. At the same time, there are a number of challenges, including such specific ones as unprovoked military aggression, which complicates the process of entry of higher education in Ukraine into the global educational digital environment. To assess the significance of the digitalization of the educational system of higher education in Ukraine in specific conditions, to analyse the attitude of the teaching staff and students to online education, to establish technical means of participation in the educational process, to determine the advantages and disadvantages of distance learning through the prism of the experience of teaching staff and students, we used three main methods: the survey method, the method of analysis and synthesis, the graphical method. As a result of the study, the authors revealed the general concept of digitalization and its educational dimension; identified the main challenges faced by higher education institutions in the digital environment; determined the impact and scale of military aggression by the Russian Federation on the activities of Ukrainian universities; established the features of training in the digital environment by institutions of the higher education of Ukraine.

Cyberattacks have become a regular part of network activity. To mitigate the risks from possible threats, organisations have implemented firewalls and intrusion detection systems, which can help stop network attacks. The problem is that often the accuracy of these systems is not effective enough. Another part of network security is security information and management platforms. These systems are more advanced versions of Threat Intelligence Platforms, because it is possible to make in-depth analyses of real-time events in a network. This research paper proposes improving intrusion detection system functionality using Open-Source Intelligence. Anomaly-based intrusion detection systems often generate alerts, but these alerts require deeper analysis to understand whether it is a real attack or just a false alarm. By making Open-Source Intelligence requests and evaluating extra information, it is possible to make more precise rules to stop attacks against network infrastructure. Open-Source Intelligence requests are generated directly from the intrusion detection system or with Python scripts based on the organisation’s infrastructure profile. The proposed architecture was experimentally tested by automating Open-Source Intelligence requests and intrusion detection rule generation by Python scripts.