×

Malicious message analysis system

  • US 10,050,998 B1
  • Filed: 12/30/2015
  • Issued: 08/14/2018
  • Est. Priority Date: 12/30/2015
  • Status: Active Grant
First Claim
Patent Images

1. A computerized method configured to analyze a message by a network device, comprising:

  • determining context information comprising one or more combinations of attributes obtained by performing one or more analyses on information associated with the message, the one or more analyses comprises a first analysis of meta information of the message to generate a first set of attributes and at least a second analysis of an object that is part of the message to generate a second set of attributes, the second analysis being a different type of analysis than the first analysis;

    correlating attributes associated with the one or more analyses, including the first set of attributes and the second set of attributes, in accordance with one or more correlation rules so as to generate a threat index, the one or more correlation rules assigning a threat index value to a plurality of combinations of one or more attributes of the first set of attributes and one or more attributes of the second set of attributes; and

    generating an alert in response to determining that the threat index identifies the message is malicious, the alert being a displayed output.

View all claims
  • 7 Assignments
Timeline View
Assignment View
    ×
    ×