A Systematic Review of Cyber Threat Intelligence: The Effectiveness of Technologies, Strategies, and Collaborations in Combating Modern Threats

doi:10.3390/s25144272

Review

. 2025 Jul 9;25(14):4272.

doi: 10.3390/s25144272.

A Systematic Review of Cyber Threat Intelligence: The Effectiveness of Technologies, Strategies, and Collaborations in Combating Modern Threats

Pedro Santos¹, Rafael Abreu¹, Manuel J C S Reis², Carlos Serôdio^{1

3}, Frederico Branco^{1

4}

Affiliations

¹ Department of Engineering, School of Sciences and Technology, University of Trás-os-Montes e Alto Douro, 5000-801 Vila Real, Portugal.
² Engineering Department, Institute of Electronics and Informatics Engineering of Aveiro (IEETA), University of Trás-os-Montes e Alto Douro, 5000-801 Vila Real, Portugal.
³ Algoritmi Center, University of Minho, 4710-057 Braga, Portugal.
⁴ INESC TEC-Institute for Systems and Computer Engineering, Technology and Science, Rua Dr. Roberto Frias, 4200-465 Porto, Portugal.

PMID: 40732398
PMCID: PMC12300000
DOI: 10.3390/s25144272

Review

A Systematic Review of Cyber Threat Intelligence: The Effectiveness of Technologies, Strategies, and Collaborations in Combating Modern Threats

Pedro Santos et al. Sensors (Basel). 2025.

. 2025 Jul 9;25(14):4272.

doi: 10.3390/s25144272.

Authors

Pedro Santos¹, Rafael Abreu¹, Manuel J C S Reis², Carlos Serôdio^{1

3}, Frederico Branco^{1

4}

Affiliations

¹ Department of Engineering, School of Sciences and Technology, University of Trás-os-Montes e Alto Douro, 5000-801 Vila Real, Portugal.
² Engineering Department, Institute of Electronics and Informatics Engineering of Aveiro (IEETA), University of Trás-os-Montes e Alto Douro, 5000-801 Vila Real, Portugal.
³ Algoritmi Center, University of Minho, 4710-057 Braga, Portugal.
⁴ INESC TEC-Institute for Systems and Computer Engineering, Technology and Science, Rua Dr. Roberto Frias, 4200-465 Porto, Portugal.

PMID: 40732398
PMCID: PMC12300000
DOI: 10.3390/s25144272

Abstract

Cyber threat intelligence (CTI) has become critical in enhancing cybersecurity measures across various sectors. This systematic review aims to synthesize the current literature on the effectiveness of CTI strategies in mitigating cyber attacks, identify the most effective tools and methodologies for threat detection and prevention, and highlight the limitations of current approaches. An extensive search of academic databases was conducted following the PRISMA guidelines, including 43 relevant studies. This number reflects a rigorous selection process based on defined inclusion, exclusion, and quality criteria and is consistent with the scope of similar systematic reviews in the field of cyber threat intelligence. This review concludes that while CTI significantly improves the ability to predict and prevent cyber threats, challenges such as data standardization, privacy concerns, and trust between organizations persist. It also underscores the necessity of continuously improving CTI practices by leveraging the integration of advanced technologies and creating enhanced collaboration frameworks. These advancements are essential for developing a robust and adaptive cybersecurity posture capable of responding to an evolving threat landscape, ultimately contributing to a more secure digital environment for all sectors. Overall, the review provides practical reflections on the current state of CTI and suggests future research directions to strengthen and improve CTI's effectiveness.

Keywords: AI; advanced persistent threats; cyber threat intelligence; cybersecurity; frameworks; machine learning; platforms.

PubMed Disclaimer

Conflict of interest statement

The authors declare no conflicts of interest.

Figures

**Figure 1**
Structure of the study and main topics addressed.

**Figure 2**
PRISMA review process flow.

See this image and copyright information in PMC

References

1. Buczak A.L., Guven E. A Survey of Data Mining and Machine Learning Methods for Cyber Security Intrusion Detection. IEEE Commun. Surv. Tutor. 2016;18:1153–1176. doi: 10.1109/COMST.2015.2494502. - DOI
1. Salah K., Rehman M.H.U., Nizamuddin N., Al-Fuqaha A. Blockchain for AI: Review and Open Research Challenges. IEEE Access. 2019;7:10127–10149. doi: 10.1109/ACCESS.2018.2890507. - DOI
1. Tounsi W., Rais H. A survey on technical threat intelligence in the age of sophisticated cyber attacks. Comput. Secur. 2018;72:212–233. doi: 10.1016/j.cose.2017.09.001. - DOI
1. Saeed S., Suayyid S.A., Al-Ghamdi M.S., Al-Muhaisen H., Almuhaideb A.M. A Systematic Literature Review on Cyber Threat Intelligence for Organizational Cybersecurity Resilience. Sensors. 2023;23:7273. doi: 10.3390/s23167273. - DOI - PMC - PubMed
1. Chatziamanetoglou D., Rantos K. Cyber Threat Intelligence on Blockchain: A Systematic Literature Review. Computers. 2024;13:60. doi: 10.3390/computers13030060. - DOI

Publication types

Actions
Actions

MeSH terms

Actions
Actions
Actions
Actions

LinkOut - more resources

Full Text Sources
- MDPI
- PubMed Central

[1] Buczak A.L., Guven E. A Survey of Data Mining and Machine Learning Methods for Cyber Security Intrusion Detection. IEEE Commun. Surv. Tutor. 2016;18:1153–1176. doi: 10.1109/COMST.2015.2494502. - DOI

[2] Buczak A.L., Guven E. A Survey of Data Mining and Machine Learning Methods for Cyber Security Intrusion Detection. IEEE Commun. Surv. Tutor. 2016;18:1153–1176. doi: 10.1109/COMST.2015.2494502. - DOI

[3] Salah K., Rehman M.H.U., Nizamuddin N., Al-Fuqaha A. Blockchain for AI: Review and Open Research Challenges. IEEE Access. 2019;7:10127–10149. doi: 10.1109/ACCESS.2018.2890507. - DOI

[4] Salah K., Rehman M.H.U., Nizamuddin N., Al-Fuqaha A. Blockchain for AI: Review and Open Research Challenges. IEEE Access. 2019;7:10127–10149. doi: 10.1109/ACCESS.2018.2890507. - DOI

[5] Tounsi W., Rais H. A survey on technical threat intelligence in the age of sophisticated cyber attacks. Comput. Secur. 2018;72:212–233. doi: 10.1016/j.cose.2017.09.001. - DOI

[6] Tounsi W., Rais H. A survey on technical threat intelligence in the age of sophisticated cyber attacks. Comput. Secur. 2018;72:212–233. doi: 10.1016/j.cose.2017.09.001. - DOI

[7] Saeed S., Suayyid S.A., Al-Ghamdi M.S., Al-Muhaisen H., Almuhaideb A.M. A Systematic Literature Review on Cyber Threat Intelligence for Organizational Cybersecurity Resilience. Sensors. 2023;23:7273. doi: 10.3390/s23167273. - DOI - PMC - PubMed

[8] Saeed S., Suayyid S.A., Al-Ghamdi M.S., Al-Muhaisen H., Almuhaideb A.M. A Systematic Literature Review on Cyber Threat Intelligence for Organizational Cybersecurity Resilience. Sensors. 2023;23:7273. doi: 10.3390/s23167273. - DOI - PMC - PubMed

[9] Chatziamanetoglou D., Rantos K. Cyber Threat Intelligence on Blockchain: A Systematic Literature Review. Computers. 2024;13:60. doi: 10.3390/computers13030060. - DOI

[10] Chatziamanetoglou D., Rantos K. Cyber Threat Intelligence on Blockchain: A Systematic Literature Review. Computers. 2024;13:60. doi: 10.3390/computers13030060. - DOI

Save citation to file

Email citation

Add to Collections

Add to My Bibliography

Your saved search

Create a file for external citation management software

Your RSS Feed

A Systematic Review of Cyber Threat Intelligence: The Effectiveness of Technologies, Strategies, and Collaborations in Combating Modern Threats

Affiliations

A Systematic Review of Cyber Threat Intelligence: The Effectiveness of Technologies, Strategies, and Collaborations in Combating Modern Threats

Authors

Affiliations

Abstract

Conflict of interest statement

Figures

Similar articles

References

Publication types

MeSH terms

LinkOut - more resources

Full Text Sources

Abstract

Conflict of interest statement

Figures

Similar articles

References

Publication types

MeSH terms

Related information

LinkOut - more resources

Full Text Sources