The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.

The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.

Patent No.:

US 10699012 B1

Date of Patent:

Jun. 30, 2020

Filed:

Jan. 04, 2018

Endpoint detection and response utilizing machine learning

Applicant:

Cylance Inc., Irvine, CA (US);

Inventors:

Rahul Chander Kashyap, Foster City, CA (US);

Vadim Dmitriyevich Kotov, Cupertino, CA (US);

Samuel John Oswald, Portland, OR (US);

Homer Valentine Strong, Irvine, CA (US);

Assignee:

Cylance Inc., Irvine, CA (US);

Attorney:

Jones Day

Primary Examiner:

Olugbenga O Idowu

Int. Cl.

CPC ...

G06F 21/56 (2013.01); G06N 20/00 (2019.01); H04L 29/06 (2006.01); G06F 21/53 (2013.01); G06N 3/00 (2006.01);

U.S. Cl.

CPC ...

G06F 21/561 (2013.01); G06F 21/53 (2013.01); G06F 21/56 (2013.01); G06N 20/00 (2019.01); H04L 63/1408 (2013.01); G06N 3/006 (2013.01);

Abstract

A plurality of events associated with each of a plurality of computing nodes that form part of a network topology are monitored. The network topology includes antivirus tools to detect malicious software prior to it accessing one of the computing nodes. Thereafter, it is determined that, using at least one machine learning model, at least one of the events is indicative of malicious activity that has circumvented or bypassed the antivirus tools. Data is then provided that characterizes the determination. Related apparatus, systems, techniques and articles are also described.

Find Patent Forward Citations