Leveraging Open Threat Exchange (OTX) to Understand Spatio-Temporal Trends of Cyber Threats: Covid-19 Case Study

被引：0

作者：

Cherqi, Othmane ^{[1
,2
]}

Hammouchi, Hicham ^{[1
,2
]}

Ghogho, Mounir ^{[1
]}

Benbrahim, Houda ^{[2
]}

机构：

[1] Univ Int Rabat, Fac Informat & Logist, TICLab, Rabat, Morocco

[2] Mohammed V Univ, ENSIAS, Rabat, Morocco

来源：

2021 IEEE INTERNATIONAL CONFERENCE ON INTELLIGENCE AND SECURITY INFORMATICS (ISI) | 2021年

关键词：

Cyber attack analysis; Threat intelligence; Spatial-temporal data analysis for cyber-crime analysis; Cyber threats forecasting; COVID-19;

D O I：

10.1109/ISI53945.2021.9624677

中图分类号：

TP18 [人工智能理论];

学科分类号：

081104 ; 0812 ; 0835 ; 1405 ;

摘要：

Understanding the properties exhibited by Spatial-temporal evolution of cyber attacks improve cyber threat intelligence. In addition, better understanding on threats patterns is a key feature for cyber threats prevention, detection, and management and for enhancing defenses. In this work, we study different aspects of emerging threats in the wild shared by 160,000 global participants form all industries. First, we perform an exploratory data analysis of the collected cyber threats. We investigate the most targeted countries, most common malwares and the distribution of attacks frequency by localisation. Second, we extract attacks' spreading patterns at country level. We model these behaviors using transition graphs decorated with probabilities of switching from a country to another. Finally, we analyse the extent to which cyber threats have been affected by the COVID-19 outbreak and sanitary measures imposed by governments to prevent the virus from spreading.

引用

页码：73 / 78

页数：6

共 17 条

[1] Abu S., 2018, INDONES J ELECT ENG, V10, P371
[2] Cybercrime and shifts in opportunities during COVID-19: a preliminary analysis in the UK
Buil-Gil, David
Miro-Llinares, Fernando
Moneva, Asier
Kemp, Steven
Diaz-Castano, Nacho
[J]. EUROPEAN SOCIETIES, 2021, 23 : S47 - S59
[3] Dowling S, 2017, INT CONF INTERNET, P349, DOI 10.23919/ICITST.2017.8356416
[4] Du H., 2013, HDB COMPUTATIONAL AP, P559
[5] Eian I. C., 2020, Cyber attacks in the era of covid-19 and possible solution domains
[6] Integrating Threat Intelligence to Enhance an Organization's Information Security Management
Gschwandtner, Mathias
Demetz, Lukas
Gander, Matthias
Maier, Ronald
[J]. 13TH INTERNATIONAL CONFERENCE ON AVAILABILITY, RELIABILITY AND SECURITY (ARES 2018), 2019,
[7] Guardian T., PETYA RANSOMWARE ATT
[8] Heeringa W. J., 2004, Measuring dialect pronunciation differences using Levenshtein distance
[9] Husak M., 2020, INT C UK CHINA EMERG, P1
[10] Johns E., 2020, CYBER SECURITY BREAC

← 1 2 →