Invention Grant
- Patent Title: Detection and identification of targeted attacks on a computing system
-
Application No.: US16895608Application Date: 2020-06-08
-
Publication No.: US11025665B2Publication Date: 2021-06-01
- Inventor: Philip K. Newman , Puhazholi Vetrivel , Sudhakar Narayanamurthy , Ejike E. Ofuonye , Suresh C. Palani , Ashish Mishra
- Applicant: Microsoft Technology Licensing, LLC
- Applicant Address: US WA Redmond
- Assignee: Microsoft Technology Licensing, LLC
- Current Assignee: Microsoft Technology Licensing, LLC
- Current Assignee Address: US WA Redmond
- Agency: Kelly, Holt & Christenson, PLLC
- Agent Christopher J. Volkmann
- Main IPC: H04L29/06
- IPC: H04L29/06 ; G06F21/57 ; G06F21/56 ; G06F21/55
Abstract:
Malicious activity data is obtained, that is indicative of attempted attacks on a computing system. Clusters of targets are identified and it is determined whether the malicious activity preferentially targets one cluster of targets over other. Also, low prevalence attacks are identified and it is determined whether a low prevalence attack has a high concentration in one or more of the target clusters. If the malicious activity either preferentially targets a cluster, or a low prevalence attack has a high concentration in a cluster, then the attack is identified as a targeted attack, so that remediation steps can be taken.
Public/Granted literature
- US20200304538A1 DETECTION AND IDENTIFICATION OF TARGETED ATTACKS ON A COMPUTING SYSTEM Public/Granted day:2020-09-24
Information query
