Detecting and blocking spoofed Web login pages
First Claim
Patent Images
1. A method of detecting a spoofed Web page over a network, said method comprising the steps of:
- obtaining a spoofer'"'"'s message, said spoofer'"'"'s message containing a hyperlink, which, when clicked opens a Web page within a Web browser;
I providing an agent for inspecting contextual data associated with said spoofer'"'"'s message; and
said agent using said contextual data for determining whether or not said Web page is a spoofed Web page.
3 Assignments
0 Petitions
Accused Products
Abstract
A method and apparatus is provided for detecting spoofed login pages and determining and executing an appropriate course of action to prevent spoofers from obtaining users'"'"' login IDs and passwords via the spoofed login pages.
-
Citations
64 Claims
-
1. A method of detecting a spoofed Web page over a network, said method comprising the steps of:
-
obtaining a spoofer'"'"'s message, said spoofer'"'"'s message containing a hyperlink, which, when clicked opens a Web page within a Web browser;
Iproviding an agent for inspecting contextual data associated with said spoofer'"'"'s message; and
said agent using said contextual data for determining whether or not said Web page is a spoofed Web page. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
-
-
16. An apparatus of detecting a spoofed Web page over a network, said apparatus comprising:
-
means for obtaining a spoofer'"'"'s message, said spoofer'"'"'s message containing a hyperlink, which, when clicked opens a Web page within a Web browser;
means for providing an agent for inspecting contextual data associated with said spoofer'"'"'s message; and
means for said agent using said contextual data for determining whether or not said Web page is a spoofed Web page. - View Dependent Claims (17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30)
-
-
31. A method of capture prevention over a network, said method comprising the steps of:
-
detecting a Web page is a capture page; and
disarming said capture page to prevent current and/or future user credential capturing. - View Dependent Claims (32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42, 43, 44, 45, 46)
-
-
47. An apparatus for capture prevention over a network, said apparatus comprising:
-
means for detecting a Web page is a capture page; and
means for disarming said capture page to prevent current and/or future user credential capturing. - View Dependent Claims (48, 49, 50, 51, 52, 53, 54, 55, 56, 57, 58, 59, 60, 61, 62)
-
-
63. An agent for detecting and blocking spoofed Web pages, said agent comprising:
-
means for receiving notification by a Web browser when a new Web page having a Document Object Model is loaded into said Web browser;
means for accessing said Document Object Model;
means for modifying said Document Object;
means for accessing other context in said Web browser, said other context comprising URL history, a user'"'"'s cookies, and the like; and
means for accessing navigation requests made to said Web browser; and
means for overriding navigation requests made to said Web browser.
-
-
64. A method for an agent to detect and block spoofed Web pages, said method comprising the steps of:
-
receiving notification by a Web browser when a new Web page having a Document Object Model is loaded into said Web browser;
accessing said Document Object Model;
modifying said Document Object Model when necessary;
accessing other context in said Web browser, said other context comprising URL history, a user'"'"'s cookies, and the like;
accessing navigation requests made to said Web browser; and
overriding navigation requests made to said Web browser when necessary.
-
Specification