US 12,267,344 B1
Identifying similar geographically proximate infrastructures from a known network address
Numaan Mehryar Huq, Toronto (CA); Roel Sotto Reyes, Rizal (PH); Morton Gregory Swimmer, Wedel (DE); and Vincenzo Ciancaglini, Paca (FR)
Assigned to Trend Micro Incorporated, Tokyo (JP)
Filed by Trend Micro Incorporated, Tokyo (JP)
Filed on Jan. 26, 2023, as Appl. No. 18/102,026.
Int. Cl. H04L 9/40 (2022.01)
CPC H04L 63/1425 (2013.01) 19 Claims
OG exemplary drawing
 
1. A method of identifying similar geographically proximate infrastructures, the method comprising:
discovering exposed Internet protocol (IP) addresses of a plurality of infrastructures that have devices that are accessible from the Internet;
determining, from the exposed IP addresses, geographic locations of the plurality of infrastructures;
receiving a compromised IP address of a compromised infrastructure, wherein the compromised infrastructure has been cyberattacked or is vulnerable to a cyberattack;
determining, from the compromised IP address, a geographic location of the compromised infrastructure;
identifying geographically proximate infrastructures from among the plurality of infrastructures, the geographically proximate infrastructures having geographic locations that are within a predetermined distance of the geographic location of the compromised infrastructure;
identifying similar geographically proximate infrastructures from among the geographically proximate infrastructures, the similar geographically proximate infrastructures having a same industrial purpose as the compromised infrastructure; and
sending an alert to the similar geographically proximate infrastructures.