logo

For the Inventor, By the Inventor

The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.

The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.

Patent No.:

US 11102244 B1

PDFFull Text
Date of Patent:
Aug. 24, 2021

Filed:

May. 30, 2018

Automated intelligence gathering

Applicant:

Agari Data, Inc., San Mateo, CA (US);

Inventors:

Bjorn Markus Jakobsson, Portola Valley, CA (US);

John M. Wilson, III, Mountain View, CA (US);

Patrick Richard Peterson, San Francisco, CA (US);

SeyedHossein Siadati, New York, NY (US);

Assignee:

Agari Data, Inc., San Mateo, CA (US);

Attorney:

Fredrikson & Byron, P.A.

Primary Examiner:

Sharon S Lynch

Int. Cl.
CPC ...
H04L 29/06 (2006.01); H04L 12/58 (2006.01);
U.S. Cl.
CPC ...
H04L 63/1491 (2013.01); H04L 51/02 (2013.01); H04L 51/22 (2013.01); H04L 63/0807 (2013.01); H04L 63/123 (2013.01);
Abstract

In one example, intelligence is gathered about an attacker that is attempting an attack via a malicious exploit message by exploiting the attacker's belief that the attack is succeeding. A received message (e.g., malicious message) sent from a first message account (e.g., attacker) to a second message account (e.g., intended victim) is received. A security risk associated with the received message is determined. It is determined that the security risk associated with the received message meets one or more criteria. Based on the determination that the security risk associated with the received message meets the one or more criteria, a responsive message is sent in response to the received message from a third message account (e.g., security service) to the first message account. The responsive message includes a content reference identified as referring to a content for a user of the first message account. In response to receiving a request made by the user of the first message account using the content reference, access to a message repository associated with the first message account is requested. Once access is granted, the message repository can be analyzed and intelligence about the first message account can be gathered and reported.

Find Patent Forward Citations

Loading…