×

Malicious message analysis system

  • US 10,581,898 B1
  • Filed: 08/13/2018
  • Issued: 03/03/2020
  • Est. Priority Date: 12/30/2015
  • Status: Active Grant
First Claim
Patent Images

1. A computerized method configured to analyze a message by a network device, comprising:

  • conducting a first analysis of an object included as part of the message to generate one or more attributes being a first set of attributes;

    determining whether the first set of attributes is determinative as to whether the message is associated with a malicious attack;

    generating an alert in response to determining from the first analysis that the message is associated with a malicious attack;

    conducting a second analysis of content recovered from a header or a body of the message to generate one or more delivery protocol attributes;

    correlating attributes associated with one or more analyses including at least the one or more delivery protocol attributes and the first set of attributes in accordance with one or more correlation rules in response to the first set of attributes not being determinative as to whether the message is associated with the malicious attack;

    generating a threat index based on the correlated attributes associated with the one or more analyses; and

    generating the alert in response to determining that the threat index identifies that the message is associated with a malicious attack.

View all claims
  • 5 Assignments
Timeline View
Assignment View
    ×
    ×