×

Systems and method for identifying and mitigating information security risks

  • US 9,270,696 B2
  • Filed: 07/28/2014
  • Issued: 02/23/2016
  • Est. Priority Date: 11/16/2010
  • Status: Active Grant
First Claim
Patent Images

1. A computer-implemented method for identifying and mitigating information security risks, the method comprising:

  • assigning unique identifiers to a plurality of target e-mail addresses, wherein each e-mail address is associated with an individual user account, respectively;

    delivering an e-mail message to one or more of the plurality of target e-mail addresses, wherein the e-mail message comprises a hypertext transfer protocol (HTTP) request and a unique identifier associated with a user account;

    receiving, at a Phishing Metric Tool (PMT), a response including the unique identifier;

    logging, by the PMT, a training requirement for the user account;

    tracking, by the PMT, response metrics for the training requirement;

    redirecting the HTTP request to a phishing training tool (PTT);

    sending, by the PTT, a notification of a verified identity of the user account and the unique identifier to the PMT;

    returning a status report for the training requirement, the status report including an indication of whether the user account has failed at least a portion of the training requirement; and

    redirecting, by the PMT, the user account to undergo an additional training requirement related to the portion of the training requirement which was failed, upon receipt of the status report, when the status report indicates that the user account has failed at least the portion of the training requirement so that the user account is subjected to the additional training requirement,wherein the PMT and the PTT are respectively implemented by at least one processor of a computer processing device.

View all claims
  • 1 Assignment
Timeline View
Assignment View
    ×
    ×