The article discusses how cyberattacks on industrial systems are becoming more complex and dangerous. To better understand and defend against these attacks, the researchers developed a framework to extract attack strategies from security alerts in a simulated cyber range. They used a model to identify attack patterns and successfully extracted new attack strategies with high accuracy. The framework was tested on real network activities and identified numerous attack strategies, proving its effectiveness in uncovering novel cyberattack methods.