×

MALWARE DETECTION SYSTEM BASED ON STORED DATA

  • US 20170078321A1
  • Filed: 01/29/2016
  • Published: 03/16/2017
  • Est. Priority Date: 09/15/2015
  • Status: Active Grant
First Claim
Patent Images

1. A malware detection system based on stored data, comprising:

  • a threat protection and detection system executable on a client or server computer or set of client or server computers, wherein the threat protection and detection system comprisesa messaging system database comprisingan archive of electronic messages, wherein said archive of electronic messages comprises electronic messages previously sent, received or drafted,a contacts list, andsummary data derived from said archive of electronic messages and said contacts list, wherein said summary data consolidates information from said message archive of electronic messages and said contacts list and,a message filter coupled to said messaging system database, and configured toreceive an electronic message comprising one or more message parts, said one or more message parts comprisinga sender information,one or more receivers information,a message contents,a subject line,one or more attachments,one or more links to websites,a message thread;

    determine whether said electronic message represents a potential threat, based on an analysis ofsaid one or more message parts, andsaid messaging system database;

    if said electronic message represents a potential threat, perform one or more ofblock access to said electronic message or to one or more of said message parts; and

    ,transform said electronic message to provide a warning to a user who attempts to access said electronic message or attempts to access one or more of said one or more message parts,wherein said transform said electronic message to provide said warning comprises one or more ofinsert text or graphics warning about a potential threat into the subject line of said electronic message and into the message contents of said electronic message, and,transform a link to a website from said electronic message to a protected link, wherein clicking said protected link one or more of 

    shows a website warning to said user before connecting to said website, and, 

    calculates a website maturity score, and if said website maturity score is below a threshold, displays a warning message to said user before connecting to said website.

View all claims
  • 5 Assignments
Timeline View
Assignment View
    ×
    ×