[GroupIB] Issues when enable some collections and wrong date logged

[helene-nguyen]

Description

Issues when enable some collections and wrong date logged:

• ❌ Logger to use needs to be updated

  • Old usage of loggers

• ❌ APT Threat Actor or Attack Deface collections cannot be pulled

    connector-1  | {"timestamp": "2025-03-06T16:02:32.293775Z", "level": "ERROR", "name": "Group-IB Connector", "message": "Traceback (most recent call last):\n  File \"/opt/connector/src/lib/external_impor
    t.py\", line 223, in run\n    self.MITRE_MAPPER = get_mitre_mapper(\n                        ^^^^^^^^^^^^^^^^^\n  File \"/usr/local/lib/python3.12/site-packages/cyberintegrations/decorators.py\", line 7
    4, in wrapper\n    new_data = func(*args, **kwargs)\n               ^^^^^^^^^^^^^^^^^^^^^\n  File \"/opt/connector/src/lib/external_import.py\", line 25, in get_mitre_mapper\n    response = adapter.send
    _request(\n               ^^^^^^^^^^^^^^^^^^^^^\n  File \"/usr/local/lib/python3.12/site-packages/cyberintegrations/adapter.py\", line 284, in send_request\n    return self._poller.send_request(endpoint
    =endpoint, params=params, decode=decode, **kwargs)\n           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/usr/local/lib/python3.12/site-packages/cybe
    rintegrations/cyberintegrations.py\", line 155, in send_request\n    self._status_code_handler(response)\n  File \"/usr/local/lib/python3.12/site-packages/cyberintegrations/cyberintegrations.py\", line 
    124, in _status_code_handler\n    raise ConnectionException(\ncyberintegrations.exception.ConnectionException: Status code: 403. Message: Something is wrong with your account, please, contact us. The is
    sue can be related to Access list, Wrong API key or Wrong username.\n", "exc_info": "Traceback (most recent call last):\n  File \"/opt/connector/src/lib/external_import.py\", line 223, in run\n    self.
    MITRE_MAPPER = get_mitre_mapper(\n                        ^^^^^^^^^^^^^^^^^\n  File \"/usr/local/lib/python3.12/site-packages/cyberintegrations/decorators.py\", line 74, in wrapper\n    new_data = func(
    *args, **kwargs)\n               ^^^^^^^^^^^^^^^^^^^^^\n  File \"/opt/connector/src/lib/external_import.py\", line 25, in get_mitre_mapper\n    response = adapter.send_request(\n               ^^^^^^^^^
    ^^^^^^^^^^^^\n  File \"/usr/local/lib/python3.12/site-packages/cyberintegrations/adapter.py\", line 284, in send_request\n    return self._poller.send_request(endpoint=endpoint, params=params, decode=de
    code, **kwargs)\n           ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^\n  File \"/usr/local/lib/python3.12/site-packages/cyberintegrations/cyberintegrations.py\
    ", line 155, in send_request\n    self._status_code_handler(response)\n  File \"/usr/local/lib/python3.12/site-packages/cyberintegrations/cyberintegrations.py\", line 124, in _status_code_handler\n    r
    aise ConnectionException(\ncyberintegrations.exception.ConnectionException: Status code: 403. Message: Something is wrong with your account, please, contact us. The issue can be related to Access list, Wrong API key or Wrong username.", "taskName": null}
    

❌ Don’t use the scheduler for auto back pressure but State is handled properly for APT/Threat collection

[helene-nguyen]

Following discussion with GroupIB, some collections cannot be pulled due to token expiration.
Documentation will be updated to give more details on known behavior of the connector and additional changes will be made.