Detection of a Spear-Phishing Phone Call
First Claim
1. A method, in a data processing system, for detection of a spear-phishing phone call, the method comprising:
- responsive to an individual receiving a phone call from a calling party, determining whether the phone call has one or more identifiable traits from a set of identifiable traits that are identified as being associated with spear-phishing, wherein the set of identifiable traits includes analysis of conversation being produced by the calling party following a known script;
responsive to identifying that the phone call has one or more identifiable traits from the set of identifiable traits that are identified as being associated with spear-phishing, identifying an associated weighted risk value for each of the identified traits associated with the phone call from the set of identifiable traits;
calculating a total risk value using each weighted risk value associated with each identified trait associated with the phone call; and
responsive to the total risk value exceeding a predetermined risk value, notifying the individual of the total risk value to enable the individual to take an appropriate action based on the total risk value.
1 Assignment
0 Petitions
Accused Products
Abstract
A mechanism is provided for detection of a spear-phishing phone call. Responsive to an individual receiving a phone call, a determination is made as to whether the phone call has one or more identifiable traits from a set of identifiable traits that are identified as being associated with spear-phishing. Responsive to identifying that the phone call has one or more identifiable traits from the set of identifiable traits that are identified as being associated with spear-phishing, an associated weighted risk value for each of the identified traits associated with the phone call is identified from the set of identifiable traits. A total risk value is calculated using each weighted risk value associated with each identified trait associated with the phone call. Responsive to the total risk value exceeding a predetermined risk value, the individual is notified of the total risk value to enable the individual to take an appropriate action based on the total risk value.
25 Citations
20 Claims
-
1. A method, in a data processing system, for detection of a spear-phishing phone call, the method comprising:
-
responsive to an individual receiving a phone call from a calling party, determining whether the phone call has one or more identifiable traits from a set of identifiable traits that are identified as being associated with spear-phishing, wherein the set of identifiable traits includes analysis of conversation being produced by the calling party following a known script; responsive to identifying that the phone call has one or more identifiable traits from the set of identifiable traits that are identified as being associated with spear-phishing, identifying an associated weighted risk value for each of the identified traits associated with the phone call from the set of identifiable traits; calculating a total risk value using each weighted risk value associated with each identified trait associated with the phone call; and responsive to the total risk value exceeding a predetermined risk value, notifying the individual of the total risk value to enable the individual to take an appropriate action based on the total risk value. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 12)
-
-
11. (canceled)
-
13. A computer program product comprising a computer readable storage medium having a computer readable program stored therein, wherein the computer readable program, when executed on a computing device, causes the computing device to:
-
responsive to an individual receiving a phone call from a calling party, determine whether the phone call has one or more identifiable traits from a set of identifiable traits that are identified as being associated with spear-phishing, wherein the set of identifiable traits includes analysis of conversation being produced by the calling party following a known script; responsive to identifying that the phone call has one or more identifiable traits from the set of identifiable traits that are identified as being associated with spear-phishing, identify an associated weighted risk value for each of the identified traits associated with the phone call from the set of identifiable traits; calculate a total risk value using each weighted risk value associated with each identified trait associated with the phone call; and responsive to the total risk value exceeding a predetermined risk value, notify the individual of the total risk value to enable the individual to take an appropriate action based on the total risk value. - View Dependent Claims (14, 15, 16)
-
-
17. An apparatus comprising:
-
a processor; and a memory coupled to the processor, wherein the memory comprises instructions which, when executed by the processor, cause the processor to; responsive to an individual receiving a phone call from a calling party, determine whether the phone call has one or more identifiable traits from a set of identifiable traits that are identified as being associated with spear-phishing wherein the set of identifiable traits includes analysis of conversation being produced by the calling party following a known script; responsive to identifying that the phone call has one or more identifiable traits from the set of identifiable traits that are identified as being associated with spear-phishing, identify an associated weighted risk value for each of the identified traits associated with the phone call from the set of identifiable traits; calculate a total risk value using each weighted risk value associated with each identified trait associated with the phone call; and responsive to the total risk value exceeding a predetermined risk value, notify the individual of the total risk value to enable the individual to take an appropriate action based on the total risk value. - View Dependent Claims (18, 19, 20)
-
Specification