SYSTEM AND METHODS FOR PROTECTING COMPUTING DEVICES FROM MALWARE ATTACKS

US 20150163234A1
Filed: 02/19/2015
Published: 06/11/2015
Est. Priority Date: 05/29/2012
Status: Abandoned Application

First Claim

Patent Images

1. A protection system for protecting at least one computing device from malicious software attacking, said at least one computing device in communication via a computer network with at least one web server hosting at least one website and operable to generate at least one web page in response to receiving a data request, the protection system comprising:

at least one data scanner operable to scan a file system associated with said at least one website, to identify at least one web-based malware vulnerability, and further operable to generate an automated web-based malware vulnerability report comprising data pertaining to said at least one web-based malware vulnerability; and

at least one report processer operable to analyze said automated web-based malware vulnerability report and further operable to generate at least one software based protective element;

wherein said at least one software based protective element is associated with at least one protective agent.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

An online protection system and method for actively filtering webpages using a rule-based protective agent such that internet connectable communication devices receive a clean copy of the webpage. The protective agent may be operable to perform rule based filtering of static and web-generated pages. The system includes a data scanner, a report processor and a rule-based logic generator. The protection system may include malware server site scanner to prevent any potential backdoors and possibly introducing remedy to the infected files or quarantining in a non-standard directory locations.

Citations

20 Claims

1. A protection system for protecting at least one computing device from malicious software attacking, said at least one computing device in communication via a computer network with at least one web server hosting at least one website and operable to generate at least one web page in response to receiving a data request, the protection system comprising:
- at least one data scanner operable to scan a file system associated with said at least one website, to identify at least one web-based malware vulnerability, and further operable to generate an automated web-based malware vulnerability report comprising data pertaining to said at least one web-based malware vulnerability; and
  
  at least one report processer operable to analyze said automated web-based malware vulnerability report and further operable to generate at least one software based protective element;
  
  wherein said at least one software based protective element is associated with at least one protective agent.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
- - 2. The protection system of claim 1, wherein said at least one protective agent is installed on said at least one web server.
  - 3. The protection system of claim 1, wherein said at least one protective agent is installed on a remote server connectable to said at least one web server via said computer network.
  - 4. The protection system of claim 1, wherein said at least one protective agent is in communication with said at least one web server via said computer network.
  - 5. The protection system of claim 1, wherein said at least one software based protective element comprises at least one rule based logic file, said at least one rule based logic file comprising at least one rule associated with said at least one web-based malware vulnerability and operable to prevent exploitation of said at least one web-based malware vulnerability.
  - 6. The protection system of claim 5, further comprising at least one communicator operable to communicate with said at least one protective agent.
  - 7. The protection system of claim 5, wherein said at least one protective agent is operable to receive said at least one web page and to generate at least one filtered web page according to said at least one rule based logic file.
  - 8. The protection system of claim 5, wherein said at least one rule comprises instructions to apply a preventative action to said at least one system vulnerability associated with said at least one web page.
  - 9. The protection system of claim 8, wherein said preventative action comprises correcting at least a section of said at least one web page containing said at least one system vulnerability,
  - 10. The protection system of claim 9, said preventative action being selected from:
    - deleting at least a section of said at least one web page containing said at least one system vulnerability;
      
      deleting at least one file encoding said at least one web page; and
      
      quarantining at least one file encoding said at least one web-page in a non-standard zone.
  - 11. The protection system of claim 1, further comprising a controller operable to manage said at least one data scanner and said at least one report processor.
  - 12. The protection system of claim 6, further comprising a controller operable to manage said at least one data scanner, said at least one report processor and said at least one communicator.
  - 13. The protection system of claim 11, wherein said controller is operable to instruct said at least one data scanner to initiate scanning activity.
  - 14. The protection system of claim 11, wherein said controller is operable to receive said automated web-based malware vulnerability report from said at least one data scanner and to transfer said automated report to said at least one report processor.
  - 15. The protection system of claim 11, wherein said controller is operable to receive said at least one rule based logic file from said at least one report processor and further associate said at least one rule based logic file to said at least one protective agent.
  - 16. The protection system of claim 11, wherein said controller is operable to send at least one web page to said at least one computing device in response to said web server receiving a data request.

17. A method for protecting, in an improved manner, at least one computing device from a malicious software attack, said computing device in communication with at least one web server via a computer network and operable to access at least one website installed on said at least one web server, said method comprising:
- said web server, scanning a file system structure associated with said website to identify at least one web-based malware vulnerability;
  
  said web server, creating an automated web-based malware vulnerability report comprising data pertaining to said at least one web-based malware vulnerability;
  
  said web server, generating at least one software based protective element;
  
  said web server, executing at least one protective agent;
  
  said web server, associating said at least one software based protective element with said at least one protective agent.
- View Dependent Claims (18, 19, 20)
- - 18. The method of claim 17, wherein said step of generating at least one software based protective element, comprises:
    - said web server, generating a rule based logic file comprising at least one rule associated with said at least one web-based malware vulnerability.
  - 19. The method of claim 17, wherein said step of scanning a file system structure configuration, further comprises:
    - said web server, mapping said file system;
      
      said web server, analyzing mapped file system; and
      
      said web server, identifying at least one web-based malware vulnerability.
  - 20. The method of claim 17, further comprising the step of redirecting said at least one web page to said at least one protective agent.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Six Scan Ltd.
Original Assignee
Six Scan Ltd.
Inventors
Miron, Nitzan, Freund, Gregor, Tal, Yaron

Application Number

US14/626,148
Publication Number

US 20150163234A1
Time in Patent Office

Days
Field of Search
US Class Current

1/1
CPC Class Codes

G06F 21/552   involving long-term monitor...

H04L 63/1408   by monitoring network traff...

H04L 63/1433   Vulnerability analysis

H04L 63/145   the attack involving the pr...

SYSTEM AND METHODS FOR PROTECTING COMPUTING DEVICES FROM MALWARE ATTACKS

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

SYSTEM AND METHODS FOR PROTECTING COMPUTING DEVICES FROM MALWARE ATTACKS

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links