×

Internet breach correlation

  • US 8,966,639 B1
  • Filed: 02/14/2014
  • Issued: 02/24/2015
  • Est. Priority Date: 02/14/2014
  • Status: Active Grant
First Claim
Patent Images

1. A method comprising:

  • receiving, from a first source, vulnerability data that indicates a set of vulnerabilities of computing assets in a customer network;

    receiving, from one or more second sources that are different than the first source, breach data that at least indicates, for a first vulnerability, a first number of breaches that occurred outside the customer network for the first vulnerability, and for a second vulnerability, a second number of breaches that occurred outside the customer network for the second vulnerability;

    wherein the breach data indicates a first period of time for the first vulnerability and a second period of time for the second vulnerability;

    identifying the first vulnerability within the set of vulnerabilities;

    identifying the second vulnerability within the set of vulnerabilities;

    determining that the first vulnerability is more vulnerable to a breach than the second vulnerability based on the first number of breaches and the second number of breaches;

    causing result data that is based on the first vulnerability and the second vulnerability to be displayed on a screen of a computing device;

    wherein the result data includes a plurality of risk scores, wherein each risk score of the plurality of risk scores is associated with one or more computing assets of the computing assets in the customer network;

    receiving input that selects a particular risk score of the plurality of risk scores;

    in response to receiving the input that selects the particular risk score, displaying a plurality of metrics associated with the particular risk score, wherein the plurality of metrics includes;

    a total number of vulnerabilities of the one or more computing assets that are associated with the particular risk score, anda total number of breaches that occurred outside the customer network for the vulnerabilities of the one or more computing assets that are associated with the particular risk score;

    wherein the method is performed by one or more computing devices.

View all claims
  • 3 Assignments
Timeline View
Assignment View
    ×
    ×