| CPC G06F 16/33 (2019.01) [G06F 21/577 (2013.01)] | 15 Claims |
|
1. An information analysis apparatus comprising:
at least one memory storing instructions; and
at least one processor configured to execute the instructions to:
extract, from a database storing technical information regarding cyberattacks, technical information related to damage information regarding a cyberattack included in a news article, based on a time of occurrence of damage from a cyberattack;
calculate a similarity between the damage information and the extracted technical information;
specify technical information corresponding to the damage information based on the calculated similarity;
supplement the news article that includes the damage information with the specified technical information, wherein
the information analysis apparatus is connected to a technical information database so as to enable data communication, and
the technical information database stores trace information, including information on vulnerabilities of an attacked system, a name of software used in a cyberattack, and tactics of a cyberattack;
generate technical information from log information generated by a computer system;
store the generated technical information in the technical information database;
update the technical information database;
display a user interface in which
the news article is supplemented with the technical information,
a portion of the news article enclosed by frame lines is the damage information, and
the damage information in the news article is provided with labels indicating corresponding attributes; and
transmit the supplemented news article to a terminal apparatus via a network to cause the terminal apparatus to store the supplemented news article,
wherein a searcher inputs a search query on the terminal apparatus, such that the terminal specifies the supplemented news article that matches the search query, and displays the specified news article on a screen of the terminal apparatus.
|