SlideShare a Scribd company logo

Patent. US11483343 [EN] .pdf

Snarky Security
Snarky Security

Ah, behold the marvel that is US11483343B2, a patent that boldly claims to revolutionize the fight against the digital age's oldest trick: phishing. Because, of course, what we've all been missing is yet another "advanced" system promising to save us from the nefarious links lurking in our inboxes. This patent, with its grandiose title "Phishing Detection System and Method of Use," introduces a supposedly novel architecture designed to sniff out phishing attempts by scanning messages for suspicious URLs. Groundbreaking, isn't it? And so, we arrive at the pièce de résistance: a multi-stage phishing detection system that not only scans messages but also resolves URLs, extracts webpage features, and employs machine learning to distinguish friend from foe. A solution so advanced, it almost makes one wonder how we ever managed to survive the internet without it. While it boldly strides into the battlefield of cybersecurity, one can't help but ponder the performance and accuracy challenges that lie ahead in the ever-evolving phishing landscape. ----- This document provides a comprehensive analysis of the patent US11483343B2, which pertains to a phishing detection system and method of use. The analysis will delve into various aspects of the patent, including its technological underpinnings, the novelty of the invention, its potential applications. A high-quality summary of the document is presented, highlighting the key elements that contribute to its significance in the field of cybersecurity. The analysis is beneficial for security professionals, IT experts, and stakeholders in various industries, providing them with a distilled essence of the patent and its utility in enhancing cybersecurity measures. It serves as a valuable resource for understanding the patented technology's contribution to the ongoing efforts to combat phishing and other cyber threats.

Technology
1 of 4
Download to read offline
Read more: Boosty | Sponsr | TG Abstract – This document provides a comprehensive analysis of the patent US11483343B2, which pertains to a phishing detection system and method of use. The analysis will delve into various aspects of the patent, including its technological underpinnings, the novelty of the invention, its potential applications. A high-quality summary of the document is presented, highlighting the key elements that contribute to its significance in the field of cybersecurity. The analysis is beneficial for security professionals, IT experts, and stakeholders in various industries, providing them with a distilled essence of the patent and its utility in enhancing cybersecurity measures. It serves as a valuable resource for understanding the patented technology's contribution to the ongoing efforts to combat phishing and other cyber threats. I. INTRODUCTION The patent US11483343B2, titled "Phishing Detection System and Method of Use," focuses on an advanced system and methodology for identifying and mitigating phishing attacks. This patent proposes a specific architecture for a phishing detection system that scans messages for suspicious URLs and analyzes the corresponding webpages to identify phishing attempts II. INDUSTRIES The phishing detection system and method are applicable across a wide range of industries and sectors that rely on digital communications and are vulnerable to phishing attacks: A. Technology Sector: • Technology companies, especially those providing software, cloud services, social media platforms, and e-commerce, are prime targets for phishing attacks seeking user data and credentials. • The technology sector would benefit from improved phishing detection to protect their platforms, customers, and reputation. B. Financial Services: • Financial institutions like banks, investment firms, insurance companies, and fintech startups handle sensitive financial data and transactions. • Phishing attacks often impersonate financial services to steal account credentials, payment details, and commit fraud. • The financial sector has a strong need for effective phishing detection to secure customer accounts and comply with regulations. C. Healthcare: • Healthcare organizations like hospitals, clinics, insurance providers, and pharmaceutical companies maintain personal health information and insurance/payment data. • Phishing attacks may seek to steal patient data, commit insurance fraud, or disrupt operations. • Protecting against phishing is critical for HIPAA compliance and patient trust in the healthcare sector. D. Education: • Educational institutions from schools to universities have moved many services online and hold student personal and financial data. • Phishing attacks may target students, faculty, and staff to steal identities, academic records, or research data. • Schools and universities need anti-phishing measures to safeguard educational data and intellectual property. E. Government: • Government agencies at the federal, state, and local levels are also targeted by phishers seeking sensitive data or to disrupt services. • Improved phishing detection can help secure public sector systems and data. III. THE PROPOSED SOLUTION This patent proposes a multi-stage phishing detection system that scans messages, resolves embedded URLs, extracts webpage features, and applies machine learning to identify phishing attempts. While it offers more proactive and comprehensive coverage than traditional methods, it may face performance and accuracy challenges in the evolving landscape of phishing attacks. Nonetheless, it represents a significant step towards automated, real-time phishing detection and prevention. The proposed phishing detection system and method identify phishing attempts in electronic messages and aims to proactively detect and block such malicious messages. A. Key Components of the Proposed Solution: Phishing Detector: The core component is a phishing detector module that analyzes messages for suspicious content. It consists of two main subcomponents: • Scan Engine: Scans the message body and attachments to identify any URLs (web addresses) present. Extracts these URLs for further analysis.
Read more: Boosty | Sponsr | TG • Fetcher Component: Takes the URLs found by the scan engine and resolves them to the actual webpages they point to. Retrieves the HTML source code of these webpages. Feature Extraction: The phishing detector then extracts two types of features from the retrieved webpages: • URL-based Features: Analyzes the structure and components of the URL itself, such as length, special characters, IP address usage, etc. Suspicious patterns may indicate a phishing attempt. • Hyperlink-based Features: Examines hyperlinks present in the webpage source code. Looks at target URLs, anchor text, and other link attributes for signs of deception. Machine Learning Models: • Hybrid Feature Set: The URL and hyperlink features are combined into a hybrid feature set representing each webpage. This provides a comprehensive characterization of the page's suspiciousness. • Machine Learning Models: The hybrid feature sets are used to train machine learning classifiers to distinguish between phishing and legitimate webpages. Models are trained on large datasets of known phishing and benign examples. B. Method of Use: • Message Scanning: When a new message arrives, the phishing detector's scan engine identifies any URLs present in the content. • URL Resolution: The fetcher component resolves the found URLs to their target webpages and retrieves the page source code. • Feature Extraction: URL and hyperlink-based features are extracted from each webpage. • Classification: The pre-trained machine learning models are applied to the extracted feature set. The models classify the webpage as phishing or legitimate. • Action: If a webpage is deemed a phishing attempt, the original message can be quarantined or blocked. Alerts may be generated for administrators or the intended recipient. IV. PROCESS FLOW The key process flow involves the scan engine extracting URLs from messages, the fetcher resolving those URLs to webpages, analyzing the URL and hyperlink features of those pages, and applying ML models to detect phishing attempts, leading to automatic deletion of phishing messages. This multi- stage analysis allows proactive, real-time filtering of phishing content based on the destination webpage characteristics, going beyond traditional URL or content-based filtering methods. This process flow covers the end-to-end lifecycle of the proposed solution and focuses on the requested aspects: A. Scan Engine and Fetcher: • The scan engine scans incoming messages to identify and extract any URLs present in the message body or attachments. • The fetcher component then resolves the extracted URLs to the actual webpages they point to and retrieves the HTML source code of those webpages. B. URL Detection and Resolution: • The scan engine is responsible for detecting URLs embedded in messages. It scans the message content and attachments to identify URL strings. • Once URLs are detected, the fetcher component resolves them to their target webpages. This involves following redirects and retrieving the final webpage that the URL ultimately points to. • The fetcher retrieves the full HTML source code of the resolved webpage for further analysis. C. Webpage Analysis: • The retrieved webpage HTML is analyzed to extract two types of features: o URL-based features: Analyzing the URL string itself for suspicious patterns like length, special characters, IP address usage, etc. o Hyperlink-based features: Examining the hyperlinks in the webpage source, looking at target URLs, anchor text, and link attributes. • These URL and hyperlink features are combined into a hybrid feature set representing the webpage's suspiciousness. • Pre-trained machine learning models are applied to this feature set to classify the webpage as phishing or legitimate. D. Phishing Detection Criteria: • The key phishing detection criteria are the URL and hyperlink features extracted from the resolved webpage. • Suspicious URL patterns can include excessive length, random character strings, IP addresses, URL shorteners, etc. • Hyperlink features like mismatched target URLs, suspicious anchor text, or links to known malicious sites can indicate phishing. • The machine learning models are trained on datasets of known phishing and legitimate webpages to learn the distinguishing patterns. • A webpage is classified as phishing if the model determines its URL and hyperlink features match learned patterns of malicious pages.
Read more: Boosty | Sponsr | TG E. Message Deletion: • If a webpage linked in a message is determined to be a phishing attempt, the original message can be quarantined or deleted automatically. • This prevents the user from engaging with the malicious content and potentially compromising their information. • Message deletion can happen as soon as the phishing determination is made, before the message reaches the user's inbox. • Alternatively, suspicious messages could be flagged for review before deletion, in case of potential false positives. V. BENEFITS, DRAWBACKS AND SIGNIFICANCE OF PROPOSED SOLUTION A. Key benefits The key benefits of this phishing detection system are its ability to automatically delete phishing messages, avoid reliance on potentially stale external blacklists, improve detection accuracy through machine learning, prevent phishing in real- time before messages reach inboxes, and integrate with existing email infrastructure for multi-layered defense. These capabilities represent a significant advancement over traditional phishing prevention methods. 1) Automated message deletion for phishing: • If a webpage linked in a message is determined to be a phishing attempt, the original message can be automatically quarantined or deleted • This prevents the user from engaging with the malicious content and potentially compromising their information • Message deletion can happen as soon as the phishing determination is made, before the message reaches the user's inbox 2) Reduced reliance on external blacklists: • The system avoids reliance on external blacklists or databases that may become stale • It uses only URL and hyperlink-based features extracted from the webpage source code itself, without relying on third-party services • This allows it to detect new and evolving phishing attempts that may not yet be included in blacklists 3) Improved phishing detection accuracy: • Combining URL and hyperlink analysis provides more comprehensive coverage and accuracy compared to traditional methods • Machine learning models are trained on large datasets of known phishing and benign examples to learn distinguishing patterns • This enables adaptable, automated classification and reduces false positives compared to rule-based approaches 4) Real-time phishing prevention: • The system proactively detects phishing by analyzing destination webpages, not just message content • URLs are resolved and webpages analyzed in real-time as messages arrive • This allows phishing attempts to be blocked before they reach the user's inbox, preventing engagement with malicious content 5) Integration with mail transfer agents or client software: • The phishing detection system can be integrated into mail transfer agents (MTAs) or email client software • Integration with MTAs allows scanning and blocking of phishing messages during the email delivery process • Integration with email clients provides last-mile protection at the user's device level • This enables a multi-layered defense, protecting at both the server and endpoint B. Limitations While the proposed system offers improvements over traditional methods, it still faces challenges in terms of computational efficiency, adaptability to new threats, accuracy trade-offs, dependency on external factors, language coverage, and user behavior. Addressing these limitations will be key to providing robust, real-time phishing protection in the face of ever-evolving attacks. 1) Computational cost and scalability: • Resolving URLs and analyzing webpages at scale can be computationally expensive • The system needs to handle a high volume of messages and URLs, which may impact performance and scalability • Possible delays in message delivery due to the scanning process could affect user experience 2) Constant arms race with attackers: • Phishers constantly adapt their techniques to evade detection, leading to an ongoing arms race • The system may struggle to keep up with new phishing patterns and zero-day attacks • Attackers may find ways to obscure phishing content or mimic benign pages to bypass detection 3) Handling false positives and negatives: • The system may generate false positives, incorrectly flagging legitimate messages as phishing • False negatives, where phishing attempts go undetected, are also a risk • Balancing accuracy and minimizing false positives/negatives is challenging and impacts user trust 4) Dependency on external data sources:
Read more: Boosty | Sponsr | TG • The system relies on third-party data like WHOIS records, PageRank, etc. for webpage analysis • Changes or disruptions to these external data sources could affect the system's accuracy and reliability 5) Language and internationalization: • Phishing attempts in different languages or targeting specific regions may be harder to detect • The system may need adaptation and training for multilingual and international coverage 6) User behavior and social engineering: • No technical solution can completely prevent users from falling for well-crafted social engineering attempts • User curiosity, distraction, or lack of caution can lead to clicks on phishing links despite warnings • Continuous user education and awareness are still necessary to complement any technical detection system 7) Potential privacy concerns: • Analyzing user messages and browsing activity for phishing detection may raise privacy questions • Balancing user privacy with effective threat detection needs to be considered 8) Staying ahead of evolving threats: • As phishing tactics evolve, the detection system needs continuous updating and retraining • Adapting to new phishing patterns and attack vectors requires ongoing effort and resources C. Significance The key significance of this phishing detection system is its ability to improve detection accuracy through machine learning, prevent phishing in real-time before messages reach inboxes, automatically delete phishing messages, avoid reliance on stale blacklists, and integrate with existing email infrastructure for comprehensive, multi-layered protection. These capabilities represent a significant advancement over traditional phishing prevention methods in the ongoing battle against increasingly sophisticated phishing attacks. 1) Improved Phishing Detection Accuracy: • Combining URL and hyperlink analysis provides more comprehensive coverage and accuracy compared to traditional methods • Machine learning models are trained on large datasets of known phishing and benign examples to learn distinguishing patterns, enabling adaptable, automated classification and reducing false positives 2) Real-Time Phishing Prevention: • The system proactively detects phishing by analyzing destination webpages, not just message content, in real- time as messages arrive • This allows phishing attempts to be blocked before they reach user inboxes, preventing engagement with malicious content 3) Automated Message Deletion: • If a webpage linked in a message is determined to be a phishing attempt, the original message can be automatically quarantined or deleted before reaching the user's inbox • This prevents users from engaging with the malicious content and potentially compromising their information 4) Reduced Reliance on External Blacklists: • The system avoids reliance on potentially stale external blacklists by using only URL and hyperlink features extracted from the webpage source code itself • This allows it to detect new and evolving phishing attempts that may not yet be included in blacklists 5) Integration with Email Infrastructure: • The phishing detection system can be integrated into mail transfer agents or email client software for server- side scanning or last-mile endpoint protection • This enables a multi-layered defense, protecting at both the email delivery and user device levels

Recommended

Detecting Phishing using Machine Learning
Detecting Phishing using Machine LearningDetecting Phishing using Machine Learning
Detecting Phishing using Machine Learning
ijtsrd
 
PUMMP: PHISHING URL DETECTION USING MACHINE LEARNING WITH MONOMORPHIC AND POL...
PUMMP: PHISHING URL DETECTION USING MACHINE LEARNING WITH MONOMORPHIC AND POL...PUMMP: PHISHING URL DETECTION USING MACHINE LEARNING WITH MONOMORPHIC AND POL...
PUMMP: PHISHING URL DETECTION USING MACHINE LEARNING WITH MONOMORPHIC AND POL...
IJCNCJournal
 
PUMMP: Phishing URL Detection using Machine Learning with Monomorphic and Pol...
PUMMP: Phishing URL Detection using Machine Learning with Monomorphic and Pol...PUMMP: Phishing URL Detection using Machine Learning with Monomorphic and Pol...
PUMMP: Phishing URL Detection using Machine Learning with Monomorphic and Pol...
IJCNCJournal
 
Patent. US11611582B2 [EN].pdf
Patent. US11611582B2 [EN].pdfPatent. US11611582B2 [EN].pdf
Patent. US11611582B2 [EN].pdf
Snarky Security
 
dasdweda PPT.pptx
dasdweda PPT.pptxdasdweda PPT.pptx
dasdweda PPT.pptx
UditanshuPandey5
 
Review of the machine learning methods in the classification of phishing attack
Review of the machine learning methods in the classification of phishing attackReview of the machine learning methods in the classification of phishing attack
Review of the machine learning methods in the classification of phishing attack
journalBEEI
 
IRJET - PHISCAN : Phishing Detector Plugin using Machine Learning
IRJET - PHISCAN : Phishing Detector Plugin using Machine LearningIRJET - PHISCAN : Phishing Detector Plugin using Machine Learning
IRJET - PHISCAN : Phishing Detector Plugin using Machine Learning
IRJET Journal
 
Detecting Phishing Websites Using Machine Learning
Detecting Phishing Websites Using Machine LearningDetecting Phishing Websites Using Machine Learning
Detecting Phishing Websites Using Machine Learning
IRJET Journal
 

Recommended

Detecting Phishing using Machine Learning
Detecting Phishing using Machine LearningDetecting Phishing using Machine Learning
Detecting Phishing using Machine Learning
ijtsrd
 
PUMMP: PHISHING URL DETECTION USING MACHINE LEARNING WITH MONOMORPHIC AND POL...
PUMMP: PHISHING URL DETECTION USING MACHINE LEARNING WITH MONOMORPHIC AND POL...PUMMP: PHISHING URL DETECTION USING MACHINE LEARNING WITH MONOMORPHIC AND POL...
PUMMP: PHISHING URL DETECTION USING MACHINE LEARNING WITH MONOMORPHIC AND POL...
IJCNCJournal
 
PUMMP: Phishing URL Detection using Machine Learning with Monomorphic and Pol...
PUMMP: Phishing URL Detection using Machine Learning with Monomorphic and Pol...PUMMP: Phishing URL Detection using Machine Learning with Monomorphic and Pol...
PUMMP: Phishing URL Detection using Machine Learning with Monomorphic and Pol...
IJCNCJournal
 
Patent. US11611582B2 [EN].pdf
Patent. US11611582B2 [EN].pdfPatent. US11611582B2 [EN].pdf
Patent. US11611582B2 [EN].pdf
Snarky Security
 
dasdweda PPT.pptx
dasdweda PPT.pptxdasdweda PPT.pptx
dasdweda PPT.pptx
UditanshuPandey5
 
Review of the machine learning methods in the classification of phishing attack
Review of the machine learning methods in the classification of phishing attackReview of the machine learning methods in the classification of phishing attack
Review of the machine learning methods in the classification of phishing attack
journalBEEI
 
IRJET - PHISCAN : Phishing Detector Plugin using Machine Learning
IRJET - PHISCAN : Phishing Detector Plugin using Machine LearningIRJET - PHISCAN : Phishing Detector Plugin using Machine Learning
IRJET - PHISCAN : Phishing Detector Plugin using Machine Learning
IRJET Journal
 
Detecting Phishing Websites Using Machine Learning
Detecting Phishing Websites Using Machine LearningDetecting Phishing Websites Using Machine Learning
Detecting Phishing Websites Using Machine Learning
IRJET Journal
 
Learning to detect phishing ur ls
Learning to detect phishing ur lsLearning to detect phishing ur ls
Learning to detect phishing ur ls
eSAT Publishing House
 
IRJET- Detecting the Phishing Websites using Enhance Secure Algorithm
IRJET- Detecting the Phishing Websites using Enhance Secure AlgorithmIRJET- Detecting the Phishing Websites using Enhance Secure Algorithm
IRJET- Detecting the Phishing Websites using Enhance Secure Algorithm
IRJET Journal
 
IRJET - An Automated System for Detection of Social Engineering Phishing Atta...
IRJET - An Automated System for Detection of Social Engineering Phishing Atta...IRJET - An Automated System for Detection of Social Engineering Phishing Atta...
IRJET - An Automated System for Detection of Social Engineering Phishing Atta...
IRJET Journal
 
Classification Methods for Spam Detection in Online Social Network
Classification Methods for Spam Detection in Online Social NetworkClassification Methods for Spam Detection in Online Social Network
Classification Methods for Spam Detection in Online Social Network
IRJET Journal
 
Detection of Phishing Websites
Detection of Phishing Websites Detection of Phishing Websites
Detection of Phishing Websites
Nikhil Soni
 
Phishing Website Detection by Machine Learning Techniques Presentation.pdf
Phishing Website Detection by Machine Learning Techniques Presentation.pdfPhishing Website Detection by Machine Learning Techniques Presentation.pdf
Phishing Website Detection by Machine Learning Techniques Presentation.pdf
VaralakshmiKC
 
IRJET - Chrome Extension for Detecting Phishing Websites
IRJET - Chrome Extension for Detecting Phishing WebsitesIRJET - Chrome Extension for Detecting Phishing Websites
IRJET - Chrome Extension for Detecting Phishing Websites
IRJET Journal
 
Warningbird a near real time detection system for suspicious urls in twitter ...
Warningbird a near real time detection system for suspicious urls in twitter ...Warningbird a near real time detection system for suspicious urls in twitter ...
Warningbird a near real time detection system for suspicious urls in twitter ...
JPINFOTECH JAYAPRAKASH
 
Phishing Website Detection using Classification Algorithms
Phishing Website Detection using Classification AlgorithmsPhishing Website Detection using Classification Algorithms
Phishing Website Detection using Classification Algorithms
IRJET Journal
 
IRJET - Detection and Prevention of Phishing Websites using Machine Learning ...
IRJET - Detection and Prevention of Phishing Websites using Machine Learning ...IRJET - Detection and Prevention of Phishing Websites using Machine Learning ...
IRJET - Detection and Prevention of Phishing Websites using Machine Learning ...
IRJET Journal
 
F43033234
F43033234F43033234
F43033234
IJERA Editor
 
Detection of Phishing Websites
Detection of Phishing WebsitesDetection of Phishing Websites
Detection of Phishing Websites
IRJET Journal
 
IRJET - Phishing Attack Detection and Prevention using Linkguard Algorithm
IRJET - Phishing Attack Detection and Prevention using Linkguard AlgorithmIRJET - Phishing Attack Detection and Prevention using Linkguard Algorithm
IRJET - Phishing Attack Detection and Prevention using Linkguard Algorithm
IRJET Journal
 
Phishing Website Detection Using Machine Learning
Phishing Website Detection Using Machine LearningPhishing Website Detection Using Machine Learning
Phishing Website Detection Using Machine Learning
IRJET Journal
 
Paper id 71201915
Paper id 71201915Paper id 71201915
Paper id 71201915
IJRAT
 
Phishing Detection using Decision Tree Model
Phishing Detection using Decision Tree ModelPhishing Detection using Decision Tree Model
Phishing Detection using Decision Tree Model
IRJET Journal
 
CYBER THREAT DETECTION PLATFORM USING MACHINE LEARNING.pptx
CYBER THREAT DETECTION PLATFORM USING MACHINE LEARNING.pptxCYBER THREAT DETECTION PLATFORM USING MACHINE LEARNING.pptx
CYBER THREAT DETECTION PLATFORM USING MACHINE LEARNING.pptx
TAMILMANIP6
 
IRJET- Ethical Hacking
IRJET- Ethical HackingIRJET- Ethical Hacking
IRJET- Ethical Hacking
IRJET Journal
 
Algorithmic auditing 1.0
Algorithmic auditing 1.0Algorithmic auditing 1.0
Algorithmic auditing 1.0
QuantUniversity
 
IRJET- Preventing Phishing Attack using Evolutionary Algorithms
IRJET- Preventing Phishing Attack using Evolutionary AlgorithmsIRJET- Preventing Phishing Attack using Evolutionary Algorithms
IRJET- Preventing Phishing Attack using Evolutionary Algorithms
IRJET Journal
 
Snarky Security. Digest. 2024-06 .pdf
Snarky Security. Digest. 2024-06 .pdfSnarky Security. Digest. 2024-06 .pdf
Snarky Security. Digest. 2024-06 .pdf
Snarky Security
 
Humanoid Robot. Market Research [EN].pdf
Humanoid Robot. Market Research [EN].pdfHumanoid Robot. Market Research [EN].pdf
Humanoid Robot. Market Research [EN].pdf
Snarky Security
 

More Related Content

Similar to Patent. US11483343 [EN] .pdf

Learning to detect phishing ur ls
Learning to detect phishing ur lsLearning to detect phishing ur ls
Learning to detect phishing ur ls
eSAT Publishing House
 
IRJET- Detecting the Phishing Websites using Enhance Secure Algorithm
IRJET- Detecting the Phishing Websites using Enhance Secure AlgorithmIRJET- Detecting the Phishing Websites using Enhance Secure Algorithm
IRJET- Detecting the Phishing Websites using Enhance Secure Algorithm
IRJET Journal
 
IRJET - An Automated System for Detection of Social Engineering Phishing Atta...
IRJET - An Automated System for Detection of Social Engineering Phishing Atta...IRJET - An Automated System for Detection of Social Engineering Phishing Atta...
IRJET - An Automated System for Detection of Social Engineering Phishing Atta...
IRJET Journal
 
Classification Methods for Spam Detection in Online Social Network
Classification Methods for Spam Detection in Online Social NetworkClassification Methods for Spam Detection in Online Social Network
Classification Methods for Spam Detection in Online Social Network
IRJET Journal
 
Detection of Phishing Websites
Detection of Phishing Websites Detection of Phishing Websites
Detection of Phishing Websites
Nikhil Soni
 
Phishing Website Detection by Machine Learning Techniques Presentation.pdf
Phishing Website Detection by Machine Learning Techniques Presentation.pdfPhishing Website Detection by Machine Learning Techniques Presentation.pdf
Phishing Website Detection by Machine Learning Techniques Presentation.pdf
VaralakshmiKC
 
IRJET - Chrome Extension for Detecting Phishing Websites
IRJET - Chrome Extension for Detecting Phishing WebsitesIRJET - Chrome Extension for Detecting Phishing Websites
IRJET - Chrome Extension for Detecting Phishing Websites
IRJET Journal
 
Warningbird a near real time detection system for suspicious urls in twitter ...
Warningbird a near real time detection system for suspicious urls in twitter ...Warningbird a near real time detection system for suspicious urls in twitter ...
Warningbird a near real time detection system for suspicious urls in twitter ...
JPINFOTECH JAYAPRAKASH
 
Phishing Website Detection using Classification Algorithms
Phishing Website Detection using Classification AlgorithmsPhishing Website Detection using Classification Algorithms
Phishing Website Detection using Classification Algorithms
IRJET Journal
 
IRJET - Detection and Prevention of Phishing Websites using Machine Learning ...
IRJET - Detection and Prevention of Phishing Websites using Machine Learning ...IRJET - Detection and Prevention of Phishing Websites using Machine Learning ...
IRJET - Detection and Prevention of Phishing Websites using Machine Learning ...
IRJET Journal
 
F43033234
F43033234F43033234
F43033234
IJERA Editor
 
Detection of Phishing Websites
Detection of Phishing WebsitesDetection of Phishing Websites
Detection of Phishing Websites
IRJET Journal
 
IRJET - Phishing Attack Detection and Prevention using Linkguard Algorithm
IRJET - Phishing Attack Detection and Prevention using Linkguard AlgorithmIRJET - Phishing Attack Detection and Prevention using Linkguard Algorithm
IRJET - Phishing Attack Detection and Prevention using Linkguard Algorithm
IRJET Journal
 
Phishing Website Detection Using Machine Learning
Phishing Website Detection Using Machine LearningPhishing Website Detection Using Machine Learning
Phishing Website Detection Using Machine Learning
IRJET Journal
 
Paper id 71201915
Paper id 71201915Paper id 71201915
Paper id 71201915
IJRAT
 
Phishing Detection using Decision Tree Model
Phishing Detection using Decision Tree ModelPhishing Detection using Decision Tree Model
Phishing Detection using Decision Tree Model
IRJET Journal
 
CYBER THREAT DETECTION PLATFORM USING MACHINE LEARNING.pptx
CYBER THREAT DETECTION PLATFORM USING MACHINE LEARNING.pptxCYBER THREAT DETECTION PLATFORM USING MACHINE LEARNING.pptx
CYBER THREAT DETECTION PLATFORM USING MACHINE LEARNING.pptx
TAMILMANIP6
 
IRJET- Ethical Hacking
IRJET- Ethical HackingIRJET- Ethical Hacking
IRJET- Ethical Hacking
IRJET Journal
 
Algorithmic auditing 1.0
Algorithmic auditing 1.0Algorithmic auditing 1.0
Algorithmic auditing 1.0
QuantUniversity
 
IRJET- Preventing Phishing Attack using Evolutionary Algorithms
IRJET- Preventing Phishing Attack using Evolutionary AlgorithmsIRJET- Preventing Phishing Attack using Evolutionary Algorithms
IRJET- Preventing Phishing Attack using Evolutionary Algorithms
IRJET Journal
 

Similar to Patent. US11483343 [EN] .pdf (20)

Learning to detect phishing ur ls
Learning to detect phishing ur lsLearning to detect phishing ur ls
Learning to detect phishing ur ls
 
IRJET- Detecting the Phishing Websites using Enhance Secure Algorithm
IRJET- Detecting the Phishing Websites using Enhance Secure AlgorithmIRJET- Detecting the Phishing Websites using Enhance Secure Algorithm
IRJET- Detecting the Phishing Websites using Enhance Secure Algorithm
 
IRJET - An Automated System for Detection of Social Engineering Phishing Atta...
IRJET - An Automated System for Detection of Social Engineering Phishing Atta...IRJET - An Automated System for Detection of Social Engineering Phishing Atta...
IRJET - An Automated System for Detection of Social Engineering Phishing Atta...
 
Classification Methods for Spam Detection in Online Social Network
Classification Methods for Spam Detection in Online Social NetworkClassification Methods for Spam Detection in Online Social Network
Classification Methods for Spam Detection in Online Social Network
 
Detection of Phishing Websites
Detection of Phishing Websites Detection of Phishing Websites
Detection of Phishing Websites
 
Phishing Website Detection by Machine Learning Techniques Presentation.pdf
Phishing Website Detection by Machine Learning Techniques Presentation.pdfPhishing Website Detection by Machine Learning Techniques Presentation.pdf
Phishing Website Detection by Machine Learning Techniques Presentation.pdf
 
IRJET - Chrome Extension for Detecting Phishing Websites
IRJET - Chrome Extension for Detecting Phishing WebsitesIRJET - Chrome Extension for Detecting Phishing Websites
IRJET - Chrome Extension for Detecting Phishing Websites
 
Warningbird a near real time detection system for suspicious urls in twitter ...
Warningbird a near real time detection system for suspicious urls in twitter ...Warningbird a near real time detection system for suspicious urls in twitter ...
Warningbird a near real time detection system for suspicious urls in twitter ...
 
Phishing Website Detection using Classification Algorithms
Phishing Website Detection using Classification AlgorithmsPhishing Website Detection using Classification Algorithms
Phishing Website Detection using Classification Algorithms
 
IRJET - Detection and Prevention of Phishing Websites using Machine Learning ...
IRJET - Detection and Prevention of Phishing Websites using Machine Learning ...IRJET - Detection and Prevention of Phishing Websites using Machine Learning ...
IRJET - Detection and Prevention of Phishing Websites using Machine Learning ...
 
F43033234
F43033234F43033234
F43033234
 
Detection of Phishing Websites
Detection of Phishing WebsitesDetection of Phishing Websites
Detection of Phishing Websites
 
IRJET - Phishing Attack Detection and Prevention using Linkguard Algorithm
IRJET - Phishing Attack Detection and Prevention using Linkguard AlgorithmIRJET - Phishing Attack Detection and Prevention using Linkguard Algorithm
IRJET - Phishing Attack Detection and Prevention using Linkguard Algorithm
 
Phishing Website Detection Using Machine Learning
Phishing Website Detection Using Machine LearningPhishing Website Detection Using Machine Learning
Phishing Website Detection Using Machine Learning
 
Paper id 71201915
Paper id 71201915Paper id 71201915
Paper id 71201915
 
Phishing Detection using Decision Tree Model
Phishing Detection using Decision Tree ModelPhishing Detection using Decision Tree Model
Phishing Detection using Decision Tree Model
 
CYBER THREAT DETECTION PLATFORM USING MACHINE LEARNING.pptx
CYBER THREAT DETECTION PLATFORM USING MACHINE LEARNING.pptxCYBER THREAT DETECTION PLATFORM USING MACHINE LEARNING.pptx
CYBER THREAT DETECTION PLATFORM USING MACHINE LEARNING.pptx
 
IRJET- Ethical Hacking
IRJET- Ethical HackingIRJET- Ethical Hacking
IRJET- Ethical Hacking
 
Algorithmic auditing 1.0
Algorithmic auditing 1.0Algorithmic auditing 1.0
Algorithmic auditing 1.0
 
IRJET- Preventing Phishing Attack using Evolutionary Algorithms
IRJET- Preventing Phishing Attack using Evolutionary AlgorithmsIRJET- Preventing Phishing Attack using Evolutionary Algorithms
IRJET- Preventing Phishing Attack using Evolutionary Algorithms
 

More from Snarky Security

Snarky Security. Digest. 2024-06 .pdf
Snarky Security. Digest. 2024-06 .pdfSnarky Security. Digest. 2024-06 .pdf
Snarky Security. Digest. 2024-06 .pdf
Snarky Security
 
Humanoid Robot. Market Research [EN].pdf
Humanoid Robot. Market Research [EN].pdfHumanoid Robot. Market Research [EN].pdf
Humanoid Robot. Market Research [EN].pdf
Snarky Security
 
The Europol Training Framework [EN].pdf
The Europol Training Framework [EN].pdfThe Europol Training Framework [EN].pdf
The Europol Training Framework [EN].pdf
Snarky Security
 
The Cybersecurity & Antartica [EN].pdf
The Cybersecurity & Antartica [EN].pdfThe Cybersecurity & Antartica [EN].pdf
The Cybersecurity & Antartica [EN].pdf
Snarky Security
 
Choosing Secure and Verifiable Technologies [EN].pdf
Choosing Secure and Verifiable Technologies [EN].pdfChoosing Secure and Verifiable Technologies [EN].pdf
Choosing Secure and Verifiable Technologies [EN].pdf
Snarky Security
 
The Marine Security. Part I [EN].pdf
The Marine Security. Part I [EN].pdfThe Marine Security. Part I [EN].pdf
The Marine Security. Part I [EN].pdf
Snarky Security
 
MQ Market Insights. Simple Solutions Are Just Too Cheap, Spending More is Alw...
MQ Market Insights. Simple Solutions Are Just Too Cheap, Spending More is Alw...MQ Market Insights. Simple Solutions Are Just Too Cheap, Spending More is Alw...
MQ Market Insights. Simple Solutions Are Just Too Cheap, Spending More is Alw...
Snarky Security
 
Snarky Security. Digest. 2024-05. Level#Pro.pdf
Snarky Security. Digest. 2024-05. Level#Pro.pdfSnarky Security. Digest. 2024-05. Level#Pro.pdf
Snarky Security. Digest. 2024-05. Level#Pro.pdf
Snarky Security
 
The Databricks AI Security Framework (DASF)
The Databricks AI Security Framework (DASF)The Databricks AI Security Framework (DASF)
The Databricks AI Security Framework (DASF)
Snarky Security
 
Patent. US11496512B2 [EN] .pdf
Patent. US11496512B2 [EN] .pdfPatent. US11496512B2 [EN] .pdf
Patent. US11496512B2 [EN] .pdf
Snarky Security
 
Patent . CN111913833A [EN] .pdf
Patent . CN111913833A [EN] .pdfPatent . CN111913833A [EN] .pdf
Patent . CN111913833A [EN] .pdf
Snarky Security
 
Medical Security [EN] .pdf
Medical Security [EN] .pdfMedical Security [EN] .pdf
Medical Security [EN] .pdf
Snarky Security
 
Snarky Security. Monthly Digest. 2024-04.pdf
Snarky Security. Monthly Digest. 2024-04.pdfSnarky Security. Monthly Digest. 2024-04.pdf
Snarky Security. Monthly Digest. 2024-04.pdf
Snarky Security
 
Russia seeks to build a powerfull IT Ecosystem [EN].pdf
Russia seeks to build a powerfull IT Ecosystem [EN].pdfRussia seeks to build a powerfull IT Ecosystem [EN].pdf
Russia seeks to build a powerfull IT Ecosystem [EN].pdf
Snarky Security
 
Why Great Powers Launch Destructive Cyber Operations and What to Do About It ...
Why Great Powers Launch Destructive Cyber Operations and What to Do About It ...Why Great Powers Launch Destructive Cyber Operations and What to Do About It ...
Why Great Powers Launch Destructive Cyber Operations and What to Do About It ...
Snarky Security
 
WAS UNS CHINAS AUFSTIEG ZUR INNOVATIONSMACHT LEHRT [EN].pdf
WAS UNS CHINAS AUFSTIEG ZUR INNOVATIONSMACHT LEHRT [EN].pdfWAS UNS CHINAS AUFSTIEG ZUR INNOVATIONSMACHT LEHRT [EN].pdf
WAS UNS CHINAS AUFSTIEG ZUR INNOVATIONSMACHT LEHRT [EN].pdf
Snarky Security
 
The Sources of China’s Innovativeness [EN].pdf
The Sources of China’s Innovativeness [EN].pdfThe Sources of China’s Innovativeness [EN].pdf
The Sources of China’s Innovativeness [EN].pdf
Snarky Security
 
Patent. US20220232015A1:PREVENTING CLOUD-BASED PHISHING ATTACKS USING SHARED ...
Patent. US20220232015A1:PREVENTING CLOUD-BASED PHISHING ATTACKS USING SHARED ...Patent. US20220232015A1:PREVENTING CLOUD-BASED PHISHING ATTACKS USING SHARED ...
Patent. US20220232015A1:PREVENTING CLOUD-BASED PHISHING ATTACKS USING SHARED ...
Snarky Security
 
Health-ISAC Risk-Based Approach to Vulnerability Prioritization [EN].pdf
Health-ISAC Risk-Based Approach to Vulnerability Prioritization [EN].pdfHealth-ISAC Risk-Based Approach to Vulnerability Prioritization [EN].pdf
Health-ISAC Risk-Based Approach to Vulnerability Prioritization [EN].pdf
Snarky Security
 
Microsoft Navigating Incident Response [EN].pdf
Microsoft Navigating Incident Response [EN].pdfMicrosoft Navigating Incident Response [EN].pdf
Microsoft Navigating Incident Response [EN].pdf
Snarky Security
 

More from Snarky Security (20)

Snarky Security. Digest. 2024-06 .pdf
Snarky Security. Digest. 2024-06 .pdfSnarky Security. Digest. 2024-06 .pdf
Snarky Security. Digest. 2024-06 .pdf
 
Humanoid Robot. Market Research [EN].pdf
Humanoid Robot. Market Research [EN].pdfHumanoid Robot. Market Research [EN].pdf
Humanoid Robot. Market Research [EN].pdf
 
The Europol Training Framework [EN].pdf
The Europol Training Framework [EN].pdfThe Europol Training Framework [EN].pdf
The Europol Training Framework [EN].pdf
 
The Cybersecurity & Antartica [EN].pdf
The Cybersecurity & Antartica [EN].pdfThe Cybersecurity & Antartica [EN].pdf
The Cybersecurity & Antartica [EN].pdf
 
Choosing Secure and Verifiable Technologies [EN].pdf
Choosing Secure and Verifiable Technologies [EN].pdfChoosing Secure and Verifiable Technologies [EN].pdf
Choosing Secure and Verifiable Technologies [EN].pdf
 
The Marine Security. Part I [EN].pdf
The Marine Security. Part I [EN].pdfThe Marine Security. Part I [EN].pdf
The Marine Security. Part I [EN].pdf
 
MQ Market Insights. Simple Solutions Are Just Too Cheap, Spending More is Alw...
MQ Market Insights. Simple Solutions Are Just Too Cheap, Spending More is Alw...MQ Market Insights. Simple Solutions Are Just Too Cheap, Spending More is Alw...
MQ Market Insights. Simple Solutions Are Just Too Cheap, Spending More is Alw...
 
Snarky Security. Digest. 2024-05. Level#Pro.pdf
Snarky Security. Digest. 2024-05. Level#Pro.pdfSnarky Security. Digest. 2024-05. Level#Pro.pdf
Snarky Security. Digest. 2024-05. Level#Pro.pdf
 
The Databricks AI Security Framework (DASF)
The Databricks AI Security Framework (DASF)The Databricks AI Security Framework (DASF)
The Databricks AI Security Framework (DASF)
 
Patent. US11496512B2 [EN] .pdf
Patent. US11496512B2 [EN] .pdfPatent. US11496512B2 [EN] .pdf
Patent. US11496512B2 [EN] .pdf
 
Patent . CN111913833A [EN] .pdf
Patent . CN111913833A [EN] .pdfPatent . CN111913833A [EN] .pdf
Patent . CN111913833A [EN] .pdf
 
Medical Security [EN] .pdf
Medical Security [EN] .pdfMedical Security [EN] .pdf
Medical Security [EN] .pdf
 
Snarky Security. Monthly Digest. 2024-04.pdf
Snarky Security. Monthly Digest. 2024-04.pdfSnarky Security. Monthly Digest. 2024-04.pdf
Snarky Security. Monthly Digest. 2024-04.pdf
 
Russia seeks to build a powerfull IT Ecosystem [EN].pdf
Russia seeks to build a powerfull IT Ecosystem [EN].pdfRussia seeks to build a powerfull IT Ecosystem [EN].pdf
Russia seeks to build a powerfull IT Ecosystem [EN].pdf
 
Why Great Powers Launch Destructive Cyber Operations and What to Do About It ...
Why Great Powers Launch Destructive Cyber Operations and What to Do About It ...Why Great Powers Launch Destructive Cyber Operations and What to Do About It ...
Why Great Powers Launch Destructive Cyber Operations and What to Do About It ...
 
WAS UNS CHINAS AUFSTIEG ZUR INNOVATIONSMACHT LEHRT [EN].pdf
WAS UNS CHINAS AUFSTIEG ZUR INNOVATIONSMACHT LEHRT [EN].pdfWAS UNS CHINAS AUFSTIEG ZUR INNOVATIONSMACHT LEHRT [EN].pdf
WAS UNS CHINAS AUFSTIEG ZUR INNOVATIONSMACHT LEHRT [EN].pdf
 
The Sources of China’s Innovativeness [EN].pdf
The Sources of China’s Innovativeness [EN].pdfThe Sources of China’s Innovativeness [EN].pdf
The Sources of China’s Innovativeness [EN].pdf
 
Patent. US20220232015A1:PREVENTING CLOUD-BASED PHISHING ATTACKS USING SHARED ...
Patent. US20220232015A1:PREVENTING CLOUD-BASED PHISHING ATTACKS USING SHARED ...Patent. US20220232015A1:PREVENTING CLOUD-BASED PHISHING ATTACKS USING SHARED ...
Patent. US20220232015A1:PREVENTING CLOUD-BASED PHISHING ATTACKS USING SHARED ...
 
Health-ISAC Risk-Based Approach to Vulnerability Prioritization [EN].pdf
Health-ISAC Risk-Based Approach to Vulnerability Prioritization [EN].pdfHealth-ISAC Risk-Based Approach to Vulnerability Prioritization [EN].pdf
Health-ISAC Risk-Based Approach to Vulnerability Prioritization [EN].pdf
 
Microsoft Navigating Incident Response [EN].pdf
Microsoft Navigating Incident Response [EN].pdfMicrosoft Navigating Incident Response [EN].pdf
Microsoft Navigating Incident Response [EN].pdf
 

Recently uploaded

JavaLand 2024: Application Development Green Masterplan
JavaLand 2024: Application Development Green MasterplanJavaLand 2024: Application Development Green Masterplan
JavaLand 2024: Application Development Green Masterplan
Miro Wengner
 
AWS Certified Solutions Architect Associate (SAA-C03)
AWS Certified Solutions Architect Associate (SAA-C03)AWS Certified Solutions Architect Associate (SAA-C03)
AWS Certified Solutions Architect Associate (SAA-C03)
HarpalGohil4
 
"$10 thousand per minute of downtime: architecture, queues, streaming and fin...
"$10 thousand per minute of downtime: architecture, queues, streaming and fin..."$10 thousand per minute of downtime: architecture, queues, streaming and fin...
"$10 thousand per minute of downtime: architecture, queues, streaming and fin...
Fwdays
 
AppSec PNW: Android and iOS Application Security with MobSF
AppSec PNW: Android and iOS Application Security with MobSFAppSec PNW: Android and iOS Application Security with MobSF
AppSec PNW: Android and iOS Application Security with MobSF
Ajin Abraham
 
AI in the Workplace Reskilling, Upskilling, and Future Work.pptx
AI in the Workplace Reskilling, Upskilling, and Future Work.pptxAI in the Workplace Reskilling, Upskilling, and Future Work.pptx
AI in the Workplace Reskilling, Upskilling, and Future Work.pptx
Sunil Jagani
 
"Choosing proper type of scaling", Olena Syrota
"Choosing proper type of scaling", Olena Syrota"Choosing proper type of scaling", Olena Syrota
"Choosing proper type of scaling", Olena Syrota
Fwdays
 
Leveraging the Graph for Clinical Trials and Standards
Leveraging the Graph for Clinical Trials and StandardsLeveraging the Graph for Clinical Trials and Standards
Leveraging the Graph for Clinical Trials and Standards
Neo4j
 
Dandelion Hashtable: beyond billion requests per second on a commodity server
Dandelion Hashtable: beyond billion requests per second on a commodity serverDandelion Hashtable: beyond billion requests per second on a commodity server
Dandelion Hashtable: beyond billion requests per second on a commodity server
Antonios Katsarakis
 
From Natural Language to Structured Solr Queries using LLMs
From Natural Language to Structured Solr Queries using LLMsFrom Natural Language to Structured Solr Queries using LLMs
From Natural Language to Structured Solr Queries using LLMs
Sease
 
What is an RPA CoE? Session 1 – CoE Vision
What is an RPA CoE? Session 1 – CoE VisionWhat is an RPA CoE? Session 1 – CoE Vision
What is an RPA CoE? Session 1 – CoE Vision
DianaGray10
 
"Frontline Battles with DDoS: Best practices and Lessons Learned", Igor Ivaniuk
"Frontline Battles with DDoS: Best practices and Lessons Learned", Igor Ivaniuk"Frontline Battles with DDoS: Best practices and Lessons Learned", Igor Ivaniuk
"Frontline Battles with DDoS: Best practices and Lessons Learned", Igor Ivaniuk
Fwdays
 
Session 1 - Intro to Robotic Process Automation.pdf
Session 1 - Intro to Robotic Process Automation.pdfSession 1 - Intro to Robotic Process Automation.pdf
Session 1 - Intro to Robotic Process Automation.pdf
UiPathCommunity
 
"Scaling RAG Applications to serve millions of users", Kevin Goedecke
"Scaling RAG Applications to serve millions of users", Kevin Goedecke"Scaling RAG Applications to serve millions of users", Kevin Goedecke
"Scaling RAG Applications to serve millions of users", Kevin Goedecke
Fwdays
 
Northern Engraving | Modern Metal Trim, Nameplates and Appliance Panels
Northern Engraving | Modern Metal Trim, Nameplates and Appliance PanelsNorthern Engraving | Modern Metal Trim, Nameplates and Appliance Panels
Northern Engraving | Modern Metal Trim, Nameplates and Appliance Panels
Northern Engraving
 
Apps Break Data
Apps Break DataApps Break Data
Apps Break Data
Ivo Velitchkov
 
Essentials of Automations: Exploring Attributes & Automation Parameters
Essentials of Automations: Exploring Attributes & Automation ParametersEssentials of Automations: Exploring Attributes & Automation Parameters
Essentials of Automations: Exploring Attributes & Automation Parameters
Safe Software
 
ScyllaDB Tablets: Rethinking Replication
ScyllaDB Tablets: Rethinking ReplicationScyllaDB Tablets: Rethinking Replication
ScyllaDB Tablets: Rethinking Replication
ScyllaDB
 
What is an RPA CoE? Session 2 – CoE Roles
What is an RPA CoE? Session 2 – CoE RolesWhat is an RPA CoE? Session 2 – CoE Roles
What is an RPA CoE? Session 2 – CoE Roles
DianaGray10
 
Harnessing the Power of NLP and Knowledge Graphs for Opioid Research
Harnessing the Power of NLP and Knowledge Graphs for Opioid ResearchHarnessing the Power of NLP and Knowledge Graphs for Opioid Research
Harnessing the Power of NLP and Knowledge Graphs for Opioid Research
Neo4j
 
Lee Barnes - Path to Becoming an Effective Test Automation Engineer.pdf
Lee Barnes - Path to Becoming an Effective Test Automation Engineer.pdfLee Barnes - Path to Becoming an Effective Test Automation Engineer.pdf
Lee Barnes - Path to Becoming an Effective Test Automation Engineer.pdf
leebarnesutopia
 

Recently uploaded (20)

JavaLand 2024: Application Development Green Masterplan
JavaLand 2024: Application Development Green MasterplanJavaLand 2024: Application Development Green Masterplan
JavaLand 2024: Application Development Green Masterplan
 
AWS Certified Solutions Architect Associate (SAA-C03)
AWS Certified Solutions Architect Associate (SAA-C03)AWS Certified Solutions Architect Associate (SAA-C03)
AWS Certified Solutions Architect Associate (SAA-C03)
 
"$10 thousand per minute of downtime: architecture, queues, streaming and fin...
"$10 thousand per minute of downtime: architecture, queues, streaming and fin..."$10 thousand per minute of downtime: architecture, queues, streaming and fin...
"$10 thousand per minute of downtime: architecture, queues, streaming and fin...
 
AppSec PNW: Android and iOS Application Security with MobSF
AppSec PNW: Android and iOS Application Security with MobSFAppSec PNW: Android and iOS Application Security with MobSF
AppSec PNW: Android and iOS Application Security with MobSF
 
AI in the Workplace Reskilling, Upskilling, and Future Work.pptx
AI in the Workplace Reskilling, Upskilling, and Future Work.pptxAI in the Workplace Reskilling, Upskilling, and Future Work.pptx
AI in the Workplace Reskilling, Upskilling, and Future Work.pptx
 
"Choosing proper type of scaling", Olena Syrota
"Choosing proper type of scaling", Olena Syrota"Choosing proper type of scaling", Olena Syrota
"Choosing proper type of scaling", Olena Syrota
 
Leveraging the Graph for Clinical Trials and Standards
Leveraging the Graph for Clinical Trials and StandardsLeveraging the Graph for Clinical Trials and Standards
Leveraging the Graph for Clinical Trials and Standards
 
Dandelion Hashtable: beyond billion requests per second on a commodity server
Dandelion Hashtable: beyond billion requests per second on a commodity serverDandelion Hashtable: beyond billion requests per second on a commodity server
Dandelion Hashtable: beyond billion requests per second on a commodity server
 
From Natural Language to Structured Solr Queries using LLMs
From Natural Language to Structured Solr Queries using LLMsFrom Natural Language to Structured Solr Queries using LLMs
From Natural Language to Structured Solr Queries using LLMs
 
What is an RPA CoE? Session 1 – CoE Vision
What is an RPA CoE? Session 1 – CoE VisionWhat is an RPA CoE? Session 1 – CoE Vision
What is an RPA CoE? Session 1 – CoE Vision
 
"Frontline Battles with DDoS: Best practices and Lessons Learned", Igor Ivaniuk
"Frontline Battles with DDoS: Best practices and Lessons Learned", Igor Ivaniuk"Frontline Battles with DDoS: Best practices and Lessons Learned", Igor Ivaniuk
"Frontline Battles with DDoS: Best practices and Lessons Learned", Igor Ivaniuk
 
Session 1 - Intro to Robotic Process Automation.pdf
Session 1 - Intro to Robotic Process Automation.pdfSession 1 - Intro to Robotic Process Automation.pdf
Session 1 - Intro to Robotic Process Automation.pdf
 
"Scaling RAG Applications to serve millions of users", Kevin Goedecke
"Scaling RAG Applications to serve millions of users", Kevin Goedecke"Scaling RAG Applications to serve millions of users", Kevin Goedecke
"Scaling RAG Applications to serve millions of users", Kevin Goedecke
 
Northern Engraving | Modern Metal Trim, Nameplates and Appliance Panels
Northern Engraving | Modern Metal Trim, Nameplates and Appliance PanelsNorthern Engraving | Modern Metal Trim, Nameplates and Appliance Panels
Northern Engraving | Modern Metal Trim, Nameplates and Appliance Panels
 
Apps Break Data
Apps Break DataApps Break Data
Apps Break Data
 
Essentials of Automations: Exploring Attributes & Automation Parameters
Essentials of Automations: Exploring Attributes & Automation ParametersEssentials of Automations: Exploring Attributes & Automation Parameters
Essentials of Automations: Exploring Attributes & Automation Parameters
 
ScyllaDB Tablets: Rethinking Replication
ScyllaDB Tablets: Rethinking ReplicationScyllaDB Tablets: Rethinking Replication
ScyllaDB Tablets: Rethinking Replication
 
What is an RPA CoE? Session 2 – CoE Roles
What is an RPA CoE? Session 2 – CoE RolesWhat is an RPA CoE? Session 2 – CoE Roles
What is an RPA CoE? Session 2 – CoE Roles
 
Harnessing the Power of NLP and Knowledge Graphs for Opioid Research
Harnessing the Power of NLP and Knowledge Graphs for Opioid ResearchHarnessing the Power of NLP and Knowledge Graphs for Opioid Research
Harnessing the Power of NLP and Knowledge Graphs for Opioid Research
 
Lee Barnes - Path to Becoming an Effective Test Automation Engineer.pdf
Lee Barnes - Path to Becoming an Effective Test Automation Engineer.pdfLee Barnes - Path to Becoming an Effective Test Automation Engineer.pdf
Lee Barnes - Path to Becoming an Effective Test Automation Engineer.pdf
 

Patent. US11483343 [EN] .pdf

  • 1. Read more: Boosty | Sponsr | TG Abstract – This document provides a comprehensive analysis of the patent US11483343B2, which pertains to a phishing detection system and method of use. The analysis will delve into various aspects of the patent, including its technological underpinnings, the novelty of the invention, its potential applications. A high-quality summary of the document is presented, highlighting the key elements that contribute to its significance in the field of cybersecurity. The analysis is beneficial for security professionals, IT experts, and stakeholders in various industries, providing them with a distilled essence of the patent and its utility in enhancing cybersecurity measures. It serves as a valuable resource for understanding the patented technology's contribution to the ongoing efforts to combat phishing and other cyber threats. I. INTRODUCTION The patent US11483343B2, titled "Phishing Detection System and Method of Use," focuses on an advanced system and methodology for identifying and mitigating phishing attacks. This patent proposes a specific architecture for a phishing detection system that scans messages for suspicious URLs and analyzes the corresponding webpages to identify phishing attempts II. INDUSTRIES The phishing detection system and method are applicable across a wide range of industries and sectors that rely on digital communications and are vulnerable to phishing attacks: A. Technology Sector: • Technology companies, especially those providing software, cloud services, social media platforms, and e-commerce, are prime targets for phishing attacks seeking user data and credentials. • The technology sector would benefit from improved phishing detection to protect their platforms, customers, and reputation. B. Financial Services: • Financial institutions like banks, investment firms, insurance companies, and fintech startups handle sensitive financial data and transactions. • Phishing attacks often impersonate financial services to steal account credentials, payment details, and commit fraud. • The financial sector has a strong need for effective phishing detection to secure customer accounts and comply with regulations. C. Healthcare: • Healthcare organizations like hospitals, clinics, insurance providers, and pharmaceutical companies maintain personal health information and insurance/payment data. • Phishing attacks may seek to steal patient data, commit insurance fraud, or disrupt operations. • Protecting against phishing is critical for HIPAA compliance and patient trust in the healthcare sector. D. Education: • Educational institutions from schools to universities have moved many services online and hold student personal and financial data. • Phishing attacks may target students, faculty, and staff to steal identities, academic records, or research data. • Schools and universities need anti-phishing measures to safeguard educational data and intellectual property. E. Government: • Government agencies at the federal, state, and local levels are also targeted by phishers seeking sensitive data or to disrupt services. • Improved phishing detection can help secure public sector systems and data. III. THE PROPOSED SOLUTION This patent proposes a multi-stage phishing detection system that scans messages, resolves embedded URLs, extracts webpage features, and applies machine learning to identify phishing attempts. While it offers more proactive and comprehensive coverage than traditional methods, it may face performance and accuracy challenges in the evolving landscape of phishing attacks. Nonetheless, it represents a significant step towards automated, real-time phishing detection and prevention. The proposed phishing detection system and method identify phishing attempts in electronic messages and aims to proactively detect and block such malicious messages. A. Key Components of the Proposed Solution: Phishing Detector: The core component is a phishing detector module that analyzes messages for suspicious content. It consists of two main subcomponents: • Scan Engine: Scans the message body and attachments to identify any URLs (web addresses) present. Extracts these URLs for further analysis.
  • 2. Read more: Boosty | Sponsr | TG • Fetcher Component: Takes the URLs found by the scan engine and resolves them to the actual webpages they point to. Retrieves the HTML source code of these webpages. Feature Extraction: The phishing detector then extracts two types of features from the retrieved webpages: • URL-based Features: Analyzes the structure and components of the URL itself, such as length, special characters, IP address usage, etc. Suspicious patterns may indicate a phishing attempt. • Hyperlink-based Features: Examines hyperlinks present in the webpage source code. Looks at target URLs, anchor text, and other link attributes for signs of deception. Machine Learning Models: • Hybrid Feature Set: The URL and hyperlink features are combined into a hybrid feature set representing each webpage. This provides a comprehensive characterization of the page's suspiciousness. • Machine Learning Models: The hybrid feature sets are used to train machine learning classifiers to distinguish between phishing and legitimate webpages. Models are trained on large datasets of known phishing and benign examples. B. Method of Use: • Message Scanning: When a new message arrives, the phishing detector's scan engine identifies any URLs present in the content. • URL Resolution: The fetcher component resolves the found URLs to their target webpages and retrieves the page source code. • Feature Extraction: URL and hyperlink-based features are extracted from each webpage. • Classification: The pre-trained machine learning models are applied to the extracted feature set. The models classify the webpage as phishing or legitimate. • Action: If a webpage is deemed a phishing attempt, the original message can be quarantined or blocked. Alerts may be generated for administrators or the intended recipient. IV. PROCESS FLOW The key process flow involves the scan engine extracting URLs from messages, the fetcher resolving those URLs to webpages, analyzing the URL and hyperlink features of those pages, and applying ML models to detect phishing attempts, leading to automatic deletion of phishing messages. This multi- stage analysis allows proactive, real-time filtering of phishing content based on the destination webpage characteristics, going beyond traditional URL or content-based filtering methods. This process flow covers the end-to-end lifecycle of the proposed solution and focuses on the requested aspects: A. Scan Engine and Fetcher: • The scan engine scans incoming messages to identify and extract any URLs present in the message body or attachments. • The fetcher component then resolves the extracted URLs to the actual webpages they point to and retrieves the HTML source code of those webpages. B. URL Detection and Resolution: • The scan engine is responsible for detecting URLs embedded in messages. It scans the message content and attachments to identify URL strings. • Once URLs are detected, the fetcher component resolves them to their target webpages. This involves following redirects and retrieving the final webpage that the URL ultimately points to. • The fetcher retrieves the full HTML source code of the resolved webpage for further analysis. C. Webpage Analysis: • The retrieved webpage HTML is analyzed to extract two types of features: o URL-based features: Analyzing the URL string itself for suspicious patterns like length, special characters, IP address usage, etc. o Hyperlink-based features: Examining the hyperlinks in the webpage source, looking at target URLs, anchor text, and link attributes. • These URL and hyperlink features are combined into a hybrid feature set representing the webpage's suspiciousness. • Pre-trained machine learning models are applied to this feature set to classify the webpage as phishing or legitimate. D. Phishing Detection Criteria: • The key phishing detection criteria are the URL and hyperlink features extracted from the resolved webpage. • Suspicious URL patterns can include excessive length, random character strings, IP addresses, URL shorteners, etc. • Hyperlink features like mismatched target URLs, suspicious anchor text, or links to known malicious sites can indicate phishing. • The machine learning models are trained on datasets of known phishing and legitimate webpages to learn the distinguishing patterns. • A webpage is classified as phishing if the model determines its URL and hyperlink features match learned patterns of malicious pages.
  • 3. Read more: Boosty | Sponsr | TG E. Message Deletion: • If a webpage linked in a message is determined to be a phishing attempt, the original message can be quarantined or deleted automatically. • This prevents the user from engaging with the malicious content and potentially compromising their information. • Message deletion can happen as soon as the phishing determination is made, before the message reaches the user's inbox. • Alternatively, suspicious messages could be flagged for review before deletion, in case of potential false positives. V. BENEFITS, DRAWBACKS AND SIGNIFICANCE OF PROPOSED SOLUTION A. Key benefits The key benefits of this phishing detection system are its ability to automatically delete phishing messages, avoid reliance on potentially stale external blacklists, improve detection accuracy through machine learning, prevent phishing in real- time before messages reach inboxes, and integrate with existing email infrastructure for multi-layered defense. These capabilities represent a significant advancement over traditional phishing prevention methods. 1) Automated message deletion for phishing: • If a webpage linked in a message is determined to be a phishing attempt, the original message can be automatically quarantined or deleted • This prevents the user from engaging with the malicious content and potentially compromising their information • Message deletion can happen as soon as the phishing determination is made, before the message reaches the user's inbox 2) Reduced reliance on external blacklists: • The system avoids reliance on external blacklists or databases that may become stale • It uses only URL and hyperlink-based features extracted from the webpage source code itself, without relying on third-party services • This allows it to detect new and evolving phishing attempts that may not yet be included in blacklists 3) Improved phishing detection accuracy: • Combining URL and hyperlink analysis provides more comprehensive coverage and accuracy compared to traditional methods • Machine learning models are trained on large datasets of known phishing and benign examples to learn distinguishing patterns • This enables adaptable, automated classification and reduces false positives compared to rule-based approaches 4) Real-time phishing prevention: • The system proactively detects phishing by analyzing destination webpages, not just message content • URLs are resolved and webpages analyzed in real-time as messages arrive • This allows phishing attempts to be blocked before they reach the user's inbox, preventing engagement with malicious content 5) Integration with mail transfer agents or client software: • The phishing detection system can be integrated into mail transfer agents (MTAs) or email client software • Integration with MTAs allows scanning and blocking of phishing messages during the email delivery process • Integration with email clients provides last-mile protection at the user's device level • This enables a multi-layered defense, protecting at both the server and endpoint B. Limitations While the proposed system offers improvements over traditional methods, it still faces challenges in terms of computational efficiency, adaptability to new threats, accuracy trade-offs, dependency on external factors, language coverage, and user behavior. Addressing these limitations will be key to providing robust, real-time phishing protection in the face of ever-evolving attacks. 1) Computational cost and scalability: • Resolving URLs and analyzing webpages at scale can be computationally expensive • The system needs to handle a high volume of messages and URLs, which may impact performance and scalability • Possible delays in message delivery due to the scanning process could affect user experience 2) Constant arms race with attackers: • Phishers constantly adapt their techniques to evade detection, leading to an ongoing arms race • The system may struggle to keep up with new phishing patterns and zero-day attacks • Attackers may find ways to obscure phishing content or mimic benign pages to bypass detection 3) Handling false positives and negatives: • The system may generate false positives, incorrectly flagging legitimate messages as phishing • False negatives, where phishing attempts go undetected, are also a risk • Balancing accuracy and minimizing false positives/negatives is challenging and impacts user trust 4) Dependency on external data sources:
  • 4. Read more: Boosty | Sponsr | TG • The system relies on third-party data like WHOIS records, PageRank, etc. for webpage analysis • Changes or disruptions to these external data sources could affect the system's accuracy and reliability 5) Language and internationalization: • Phishing attempts in different languages or targeting specific regions may be harder to detect • The system may need adaptation and training for multilingual and international coverage 6) User behavior and social engineering: • No technical solution can completely prevent users from falling for well-crafted social engineering attempts • User curiosity, distraction, or lack of caution can lead to clicks on phishing links despite warnings • Continuous user education and awareness are still necessary to complement any technical detection system 7) Potential privacy concerns: • Analyzing user messages and browsing activity for phishing detection may raise privacy questions • Balancing user privacy with effective threat detection needs to be considered 8) Staying ahead of evolving threats: • As phishing tactics evolve, the detection system needs continuous updating and retraining • Adapting to new phishing patterns and attack vectors requires ongoing effort and resources C. Significance The key significance of this phishing detection system is its ability to improve detection accuracy through machine learning, prevent phishing in real-time before messages reach inboxes, automatically delete phishing messages, avoid reliance on stale blacklists, and integrate with existing email infrastructure for comprehensive, multi-layered protection. These capabilities represent a significant advancement over traditional phishing prevention methods in the ongoing battle against increasingly sophisticated phishing attacks. 1) Improved Phishing Detection Accuracy: • Combining URL and hyperlink analysis provides more comprehensive coverage and accuracy compared to traditional methods • Machine learning models are trained on large datasets of known phishing and benign examples to learn distinguishing patterns, enabling adaptable, automated classification and reducing false positives 2) Real-Time Phishing Prevention: • The system proactively detects phishing by analyzing destination webpages, not just message content, in real- time as messages arrive • This allows phishing attempts to be blocked before they reach user inboxes, preventing engagement with malicious content 3) Automated Message Deletion: • If a webpage linked in a message is determined to be a phishing attempt, the original message can be automatically quarantined or deleted before reaching the user's inbox • This prevents users from engaging with the malicious content and potentially compromising their information 4) Reduced Reliance on External Blacklists: • The system avoids reliance on potentially stale external blacklists by using only URL and hyperlink features extracted from the webpage source code itself • This allows it to detect new and evolving phishing attempts that may not yet be included in blacklists 5) Integration with Email Infrastructure: • The phishing detection system can be integrated into mail transfer agents or email client software for server- side scanning or last-mile endpoint protection • This enables a multi-layered defense, protecting at both the email delivery and user device levels