Method, device and system for detecting potential phishing websites
First Claim
Patent Images
1. A method for detecting a potential phishing website, comprising:
- obtaining by a computer device an address information of a website being displayed by a web browser running on the computer device;
communicating the address information to a remote security server device for conducting a preliminary security check of the address information based on a black and white list of website addresses maintained by the remote security server device; and
in response to determining by the remote security server device that the address information does not match any of the website addresses on the black and white list;
obtaining, by the web browser, input information to the website displayed by the web browser via a key stroke detector of the web browser and before the input information is transmitted outside the computer device;
determining, by the web browser, a match between at least one segment of the information input detected by the key stroke detector and a portion of a set of pre-stored private identification data;
upon determining the match, further evaluating a legitimacy of the website by determining whether the website is associated with a digital certificate; and
blocking the web browser from transmitting the input information outside the computer device unless the website is determined to be legitimate.
1 Assignment
0 Petitions
Accused Products
Abstract
The present disclosure discloses a method and device for detecting a potential phishing website. In the method, a computing device having at least a processor obtains information input to a website and determines whether the website is legitimate through a server when the input information entered by the user has some private information. The computing device continues to access the website if the website is legitimate and generates a warning if the website is determined not to be legitimate.
13 Citations
16 Claims
-
1. A method for detecting a potential phishing website, comprising:
-
obtaining by a computer device an address information of a website being displayed by a web browser running on the computer device; communicating the address information to a remote security server device for conducting a preliminary security check of the address information based on a black and white list of website addresses maintained by the remote security server device; and in response to determining by the remote security server device that the address information does not match any of the website addresses on the black and white list; obtaining, by the web browser, input information to the website displayed by the web browser via a key stroke detector of the web browser and before the input information is transmitted outside the computer device; determining, by the web browser, a match between at least one segment of the information input detected by the key stroke detector and a portion of a set of pre-stored private identification data; upon determining the match, further evaluating a legitimacy of the website by determining whether the website is associated with a digital certificate; and blocking the web browser from transmitting the input information outside the computer device unless the website is determined to be legitimate. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A computer device, comprising:
-
a memory storing instructions; at least one processor in communication with the memory, the at least one processor, when executing the instructions, is configured to cause the computer device to; obtain an address information of a website being displayed by a web browser running on the computer device; communicate the address information to a remote security server device for conducting a preliminary security check of the address information based on a black and white list of website addresses maintained by the remote security server device; and in response to determining by the remote security server device that the address information does not match any of the website addresses on the black and white list; obtain input information to the website displayed by the web browser via a key stroke detector of the web browser and before the input information is transmitted outside the computer device; determine a match between at least one segment of the information input detected by the key stroke detector and a portion of a set of pre-stored private identification data; upon determining the match, further evaluate a legitimacy of the website by determining whether the website is associated with a digital certificate; and block the web browser from transmitting the input information outside the computer device unless the website is determined to be legitimate. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
-
Specification