×

Systems and methods for detection and mitigation of malicious encryption

  • US 10,637,879 B2
  • Filed: 10/06/2017
  • Issued: 04/28/2020
  • Est. Priority Date: 10/06/2017
  • Status: Active Grant
First Claim
Patent Images

1. A method for detecting an encryption key for malicious encryption, comprising:

  • detecting, by a security agent executed by a computing device, writing of a first item of data to memory of the computing device;

    compressing, by the security agent, a first portion of the first item of data;

    calculating, by the security agent, a ratio of a size of the first portion of the first item of data to a size of a compressed first portion of the first item of data;

    determining that the ratio does not exceed a predetermined threshold;

    responsive to the determination that the ratio does not exceed the predetermined threshold, identifying the first item of data as comprising an encryption key; and

    responsive to identifying the first item of data as comprising an encryption key, generating an alert, by the security agent, indicating a likely malicious encryption attempt.

View all claims
  • 7 Assignments
Timeline View
Assignment View
    ×
    ×