Skip to main content
SpringerLink
Log in

Data-Driven Cyber Threat Intelligence: A Survey of Mexican Territory

  • Conference paper
  • First Online:
2nd EAI International Conference on Smart Technology

Part of the book series: EAI/Springer Innovations in Communication and Computing ((EAISICC))

  • 166 Accesses

Abstract

Information technologies, as well as digital information and information assets, play a very important role today globally, which is why we have witnessed how publications related to cybersecurity incidents are increasing day by day; therefore, and in the face of the great growth of cyber threats, various researchers have dedicated a large part of their efforts to protect these information assets using intelligence sources to develop various techniques for understanding, evolving, detecting, and proactively responding against the cyber threats they face. For their part, companies, governments, and cybersecurity specialists have shown great interest in consuming these sources of intelligence called cyber threat intelligence (CTI), which consists of evidence-based knowledge, which includes context, mechanisms, actionable indicators, implications, and advice on an existing or emerging threat or danger to assets that can be used to inform decisions regarding the subject’s response to that threat or danger. With a focus on the Mexican territory, this work aims to analyze the data obtained from CTI sources using the detection of perimeter cybersecurity devices (firewalls, intrusion prevention system, antivirus, honeypots, etc.), as well as the study of research related to cybersecurity predictions to point out the importance of having a model capable of making a possible prediction of cyber threats in Mexico. Challenges and future directions in this field are also discussed.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 189.00
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 249.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info
Hardcover Book
USD 249.99
Price excludes VAT (USA)
  • Durable hardcover edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

References

  1. W.E. Forum, «World Economic Forum Global Risks Perception Survey 2019–2020,» 2020. [En línea]. Available: http://www3.weforum.org/docs/WEF_Global_Risk_Report_2020.pdf

  2. I. (. D. Corporation)., «The Growth in Connected IoT Devices Is Expected to Generate 79.4ZB of Data in 2025, According to a New IDC Forecast,» 2019. [En línea]. Available: https://www.idc.com/getdoc.jsp?containerId=prUS45213219

  3. Gartner, «Leading the IoT: Gartner Insights on How to Lead in a Connected World.,» 2017. [En línea]. Available: https://www.gartner.com/imagesrv/books/iot/iotEbook_digital.pdf

  4. Z. Doffman, «Cyberattacks on IoT Devices Surge 300% in 2019, ‘Measured in Billions’, Report Claims”,» Forbes, 2019. [En línea]. Available: https://www.forbes.com/sites/zakdoffman/2019/09/14/dangerous-cyberattacks-on-iot-devices-up-300-in-2019-now-rampant-report-claims/#43ec06af5892

  5. F-Secure, «ATTACK LANDSCAPE H1 2019,» 2019. [En línea]. Available: https://blog-assets.f-secure.com/wp-content/uploads/2019/09/12093807/2019_attack_landscape_report.pdf

  6. A. Venkat, «Wikipedia Investigates DDoS Attack,» Bankinfosecurity.com, Information Security Media Group (ISMG), 2019 September. [En línea]. Available: https://www.bankinfosecurity.com/wikipedia-investigates-ddos-attack-a-13049

  7. NIST, «COMPUTER SECURITY RESOURCE CENTER,» NIST, [En línea]. Available: https://csrc.nist.gov/glossary/term/cyber_risk. [Último acceso: 19 May 2020]

  8. C. S. F. B. J. T. &. M. D. K. Kruse, «Cybersecurity in healthcare: A systematic review of modern threats and trend,» Technology and Health Care, 2017

    Google Scholar 

  9. D. R. A. Z. W. F. F. L. P. F. X. &. T. J. Wu, «Cybersecurity for digital manufacturing,» Journal of Manufacturing Systems, 2018

    Google Scholar 

  10. Fortinet, «Fortinet Threat Intelligence,» Fortinet, [En línea]. Available: https://www.fortinet.com/fortiguard/threat-intelligence/threat-research.html. [Último acceso: 03 May 2020]

  11. Cisco, «Cisco Cybersecurity Report Series,» Cisco, [En línea]. Available: https://www.cisco.com/c/en/us/products/security/security-reports.html#~more-reports. [Último acceso: 03 May 2020]

  12. Fireeye, «M-Trends 2020,» Fireeye, [En línea]. Available.: https://www.fireeye.com/current-threats/annual-threat-report/mtrends.html. [Último acceso: 03 May 2020]

  13. ISO27000, « ISO/IEC 27032:2012 — Information technology — Security techniques — Guidelines for cybersecurity,» ISO/IEC, [En línea]. Available: https://www.iso27001security.com/html/27032.html. [Último acceso: 19 May 2020]

  14. F. C. y. C. Teconologico. [En línea]. Available: http://foroconsultivo.org.mx/. [Último acceso: 08 May 2020]

  15. I. a. d. i. y. t. d. México, «Foro Consultivo Cientifico y Tenologico,» 2018. [En línea]. Available: https://foroconsultivo.org.mx/proyectos_estrategicos/img/8/17.pdf. [Último acceso: 07 May 2020]

  16. F. Staff, «Cibercrimen afecta a uno de cada cuatro mexicanos, según aseguradoras,» forbes Mexico, 05 May 2019. [En línea]. Available: https://www.forbes.com.mx/cibercrimen-afecta-a-uno-de-cada-cuatro-mexicanos-segun-aseguradoras/. [Último acceso: 08 May 2020]

  17. E. s. C. E. e. M. 2. D. t. entrega, «Asociacion de Internet MX,» Diciembre 2019. [En línea]. Available: https://irp-cdn.multiscreensite.com/81280eda/files/uploaded/Estudio%20de%20Comercio%20Electro%CC%81nico%20en%20Me%CC%81xico%202019.pdf. [Último acceso: 08 May 2020]

  18. P. d. c. e. México, «Comexi,» Junio 2018. [En línea]. Available: https://consejomexicano.org/multimedia/1528987628-817.pdf. [Último acceso: 08 May 2020]

  19. G. d. Mexico, «Secretaria de Comunicaciones y Transportes,» [En línea]. Available: https://www.gob.mx/sct. [Último acceso: 12 May 2020]

  20. OEA. [En línea]. Available: http://www.oas.org/es/. [Último acceso: 12 May 2020]

  21. H. d. l. u. e. c. e. M. 2019, «Gobierno de Mexico,» 2019. [En línea]. Available: https://www.gob.mx/cms/uploads/attachment/file/444447/Estudio_Ciberseguridad.pdf. [Último acceso: 12 May 2020]

  22. P. Federal, «¿Conoces qué es el Phishing?,» Gobierno de Mexico, 08 Enero 2019. [En línea]. Available: https://www.gob.mx/policiafederal/es/articulos/conoces-que-es-el-phishing?idiom=es. [Último acceso: 12 May 2020]

  23. NIST, «NIST Information Technology Laboratory,» NIST, [En línea]. Available: https://www.nist.gov/itl/smallbusinesscyber/cybersecurity-basics/glossary. [Último acceso: 19 May 2020]

  24. T. G. R. R. 2020, «The Global Risks Report 2020,» 16 January 2020. [En línea]. Available: http://www3.weforum.org/docs/WEF_Global_Risk_Report_2020.pdf. [Último acceso: 12 May 2020]

  25. R. C. M. 2018, «Willis Towers Watson,» 04 December 2018. [En línea]. Available: https://www.willistowerswatson.com/es-MX/Insights/2018/12/riesgo-cibernetico-mexico-2018. [Último acceso: 13 May 2020]

  26. J. Arreola, «Padrón electoral en la nube: ¿ciberproblemas a la mexicana?,» Forbes Mexico, 26 April 2016. [En línea]. Available: https://www.forbes.com.mx/padron-electoral-la-nube-ciberproblemas-la-mexicana/. [Último acceso: 13 May 2020]

  27. A. México, «Comunicado Oficial: Sin afectaciones a datos o recursos de asegurados: AXA,» 23 Octubre 2018. [En línea]. Available: https://axa.mx/web/blog/postura-de-axa-mexico. [Último acceso: 19 May 2020]

  28. N. Rial, «Mexican hackers attack official sites,» New Europe, 17 September 2012. [En línea]. Available: https://www.neweurope.eu/article/mexican-hackers-attack-official-sites/. [Último acceso: 15 May 2020]

  29. CONDUSEF, «FRAUDES CIBERNÉTICOS TRADICIONALES,» 2020. [En línea]. Available.: https://www.condusef.gob.mx/?p=estadisticas. [Último acceso: 18 May 2020]

  30. Fortinet, «Threat Intelligence Insider Latin America,» Fortinet, 10 April 2020. [En línea]. Available: https://www.fortinetthreatinsiderlat.com/. [Último acceso: 20 May 2020]

  31. E. n. d. Ciberseguridad, «Gobierno de Mexico,» 2017. [En línea]. Available: https://www.gob.mx/cms/uploads/attachment/file/271884/Estrategia_Nacional_Ciberseguridad.pdf. [Último acceso: 23 May 2020]

  32. L. F. D. P. D. D. P. E. P. D. L. PARTICULARES, «http://www.diputados.gob.mx/» 2010. [En línea]. Available: http://www.diputados.gob.mx/LeyesBiblio/pdf/LFPDPPP.pdf. [Último acceso: 23 May 2020]

  33. L. G. D. P. D. D. P. E. P. D. S. OBLIGADOS, «http://www.diputados.gob.mx/,» 2017. [En línea]. Available: http://www.diputados.gob.mx/LeyesBiblio/pdf/LGPDPPSO.pdf. [Último acceso: 23 May 2020]

  34. G. d. Mexico, «¿Has sufrido acoso cibernético? ¡Identifica sus modalidades y protégete!,» [En línea]. Available: https://www.gob.mx/conavim/articulos/has-sufrido-acoso-cibernetico-te-decimos-a-donde-acudir. [Último acceso: 20 May 2020]

  35. Excelsior, «Cómo denunciar delitos cibernéticos en México,» Excelsior, 05 May 2019. [En línea]. Available: https://www.excelsior.com.mx/hacker/como-denunciar-delitos-ciberneticos-en-mexico/1311256. [Último acceso: 20 May 2020]

  36. S. d. Seguridad, «Unidad de Prevención e Investigación Cibernética,» Gobierno del Estado de México, [En línea]. Available: https://sseguridad.edomex.gob.mx/seguridad-publica-transito/policia-cibernetica. [Último acceso: 21 May 2020]

  37. R. N. d. I. Financiera, «cnvb.gob.mx,» 2019. [En línea]. Available.: https://www.cnbv.gob.mx/Inclusi%C3%B3n/Documents/Reportes%20de%20IF/Reporte%20de%20Inclusion%20Financiera%209.pdf. [Último acceso: 25 May 2020]

  38. C. N. B. y. d. Valores, «Foro de Ciberseguridad,» 2017, 2020 23 Oct. [En línea]. Available: https://www.gob.mx/cnbv/articulos/foro-de-ciberseguridad. [Último acceso: 25 May]

  39. T. S. O. I. T. C. M. F. SYSTEM, «http://www.oas.org/,» 2019. [En línea]. Available: http://www.oas.org/en/sms/cicte/Documents/reports/The-State-of-Cybersecurity-in-the-Mexican-Financial-system.pdf. [Último acceso: 26 May 2020]

  40. R. McMillan, «Definition: Threat Intelligence,» Gartner Research, 2016 May 2013. [En línea]. Available: https://www.gartner.com/en/documents/2487216/definition-threat-intelligence

  41. 2. S. C. T. I. (. Survey, «https://www.sans.org/,» 2020. [En línea]. Available: https://www.sans.org/reading-room/whitepapers/analyst/2020-cyber-threat-intelligence-cti-survey-39395. [Último acceso: 27 May 2020]

  42. Fortinet, «FortiGuard Labs,» Fortinet, [En línea]. Available: https://fortiguard.com/. [Último acceso: 01 06 2020]

  43. C. systems, «Talos,» Cisco systems, [En línea]. Available: https://talosintelligence.com/. [Último acceso: 01 06 2020]

  44. Fireeye, «Mandiant Threat Intelligence,» Fireeye, [En línea]. Available: https://www.fireeye.com/solutions/cyber-threat-intelligence.html. [Último acceso: 01 06 2020]

  45. Facebook, «ThreatExchange Documentation,» Facebook, [En línea]. Available: https://developers.facebook.com/docs/threat-exchange/v2.12. [Último acceso: 06 01 2020]

  46. P. K. D., V. M., A. J., T. F. Sudip Mittal∗, «CyberTwitter: Using Twitter to generate alerts for Cybersecurity Threats and Vulnerabilities,» 2016 IEEE/ACM International Conference on Advances in Social Networks Analysis and Mining (ASONAM), 2016

    Google Scholar 

  47. G. C. T. I. f. T. U. N. Classification, «Gathering Cyber Threat Intelligence from Twitter Using Novelty Classification,» 2019. [En línea]. Available: https://www.researchgate.net/publication/334223932_Gathering_Cyber_Threat_Intelligence_from_Twitter_Using_Novelty_ Classification. [Último acceso: 01 06 2020]

  48. Fortinet, «Fortinet Threat Intelligence Insider Latin America,» Fortinet, 27 11 2019. [En línea]. Available: https://www.fortinetthreatinsiderlat.com/es/Q1-2020/MX/html/trends#trends_position. [Último acceso: 01 06 2020]

  49. Shodan, «What is Shodan?,» [En línea]. Available: https://help.shodan.io/the-basics/what-is-shodan. [Último acceso: 05 06 2020]

  50. A. A. a. I. Alsmadi, «IoT and the Risk of Internet Exposure: Risk Assessment Using Shodan Queries,» 2019 IEEE 20th International Symposium on A World of Wireless, Mobile and Multimedia Networks, 2019

    Google Scholar 

  51. Shodan, «Mexico Internet Exposure Dashboard,» [En línea]. Available: https://exposure.shodan.io/#/MX. [Último acceso: 05 06 2020]

  52. Shodan, «Shodan,» [En línea]. Available: https://www.shodan.io/search?query=country%3A%22MX%22. [Último acceso: 05 06 2020]

  53. B. Packets®, «Bad Packets® Cyber Threat Intelligence,» [En línea]. Available: https://badpackets.net/threat-intelligence/. [Último acceso: 05 06 2020]

  54. B. Packets®, «Mirai-like Botnet Hosts,» Bad Packets®, [En línea]. Available: https://mirai.badpackets.net/accounts/login/?next=/%3Fpage%3D27651%26sort%3Dcountry. [Último acceso: 05 06 2020]

  55. A. K. M. V. G. a. T. M. O. P. Dwyer, «Profiling IoT-Based Botnet Traffic Using DNS,» 019 IEEE Global Communications Conference (GLOBECOM), 2019

    Google Scholar 

  56. V. G. a. T. M. Angelos K. Marnerides, «Identifying infected energy systems in the wild,» de e-Energy ’19: Proceedings of the Tenth ACM International Conference on Future Energy Systems, Phoenix AZ, 2019

    Google Scholar 

  57. P. Feeds, «openphish,» [En línea]. Available: https://openphish.com/phishing_feeds.html. [Último acceso: 06 06 2020]

  58. openphish, «https://openphish.com/feed.txt,» [En línea]. Available: https://openphish.com/feed.txt. [Último acceso: 06 06 2020]

  59. URLhaus, [En línea]. Available: https://urlhaus.abuse.ch/feeds/country/MX/. [Último acceso: 07 06 2020]

  60. N. Young, «github.com,» [En línea]. Available: https://github.com/twintproject/twint. [Último acceso: 07 06 2020]

  61. Facebook, [En línea]. Available: https://developers.facebook.com/programs/threatexchange/. [Último acceso: 07 06 2020]

  62. IBM, [En línea]. Available: https://www.ibm.com/mx-es/security/xforce. [Último acceso: 07 06 2020]

  63. checkpoint, «Live Cyber Threat Map,» [En línea]. Available: https://threatmap.checkpoint.com/. [Último acceso: 07 06 2020]

  64. A10, «DDOS WEAPONS INTELLIGENCE MAP,» [En línea]. Available: https://threats.a10networks.com/. [Último acceso: 07 06 2020]

  65. mrlooquer, [En línea]. Available: https://mrlooquer.com/. [Último acceso: 08 06 2020]

  66. M. Muñoz, M. Peralta, C.Y. Laporte, «nálisis de las debilidades que presentan las Entidades Muy Pequeñas al implementar el estándar ISO/IEC 29110: Una comparativa entre estado del arte y el estado de la práctica,» RISTI-Revista Ibérica de Sistemas e Tecnologias de Informação,, pp. 85–96, 2019

    Google Scholar 

  67. V. M. a. S. Bromander, «Cyber Threat Intelligence Model: An Evaluation of Taxonomies, Sharing Standards, and Ontologies within Cyber Threat Intelligence,,» 2017 European Intelligence and Security Informatics Conference (EISIC), 2017

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Universidad Autonoma de Nuevo Leon, San Nicolás de los Garza, N.L., Mexico

    M. A. Arturo E. E. Torres, Francisco Torres Guerrero & Arturo Torres Budgud

Authors
  1. M. A. Arturo E. E. Torres
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Francisco Torres Guerrero
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Arturo Torres Budgud
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to M. A. Arturo E. E. Torres .

Editor information

Editors and Affiliations

  1. Universidad Autónoma de Nuevo León, Ciudad, Mexico

    Francisco Torres-Guerrero

  2. Universidad Autónoma de Nuevo León, San Nicolás de los Garza, Mexico

    Leticia Neira-Tovar

  3. Fundación Universitaria Konrad Lorenz, Bogotá, Colombia

    Jorge Bacca-Acosta

Rights and permissions

Reprints and permissions

Copyright information

© 2023 The Author(s), under exclusive license to Springer Nature Switzerland AG

About this paper

Check for updates. Verify currency and authenticity via CrossMark

Cite this paper

Torres, M.A.A.E., Guerrero, F.T., Budgud, A.T. (2023). Data-Driven Cyber Threat Intelligence: A Survey of Mexican Territory. In: Torres-Guerrero, F., Neira-Tovar, L., Bacca-Acosta, J. (eds) 2nd EAI International Conference on Smart Technology. EAI/Springer Innovations in Communication and Computing. Springer, Cham. https://doi.org/10.1007/978-3-031-07670-1_7

Download citation

  • DOI: https://doi.org/10.1007/978-3-031-07670-1_7

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-031-07669-5

  • Online ISBN: 978-3-031-07670-1

  • eBook Packages: EngineeringEngineering (R0)

Publish with us

Policies and ethics

Search

Navigation