Customer-based detection of online fraud
First Claim
1. A device for detecting a possible online fraud, the device comprising a processor and instructions executable by the processor to:
- receive an electronic message addressed to a legitimate business, the electronic message indicating that an original message could not be delivered to an intended addressee, wherein the original message purported to originate from the legitimate business; and
transfer at least a portion of the electronic message to a correlation engine for processing.
2 Assignments
0 Petitions
Accused Products
Abstract
Various embodiments of the invention provide devices, methods, systems and software for detecting, analyzing and/or responding to a fraudulent activity. In particular embodiments, an email message incoming to an organization may be analyzed to determine whether such messages are returned messages, which might indicate a delivery failure of an original message. Because the returned message is received by the organization, it may be likely that the original message purported to originate from the organization. If the original message did not in fact originate from the organization, that fact might indicate that the original message is part of a fraudulent activity. In such case, the fraudulent activity might be investigated, and/or a response to the fraudulent activity may be imitated and/or undertaken.
222 Citations
55 Claims
-
1. A device for detecting a possible online fraud, the device comprising a processor and instructions executable by the processor to:
-
receive an electronic message addressed to a legitimate business, the electronic message indicating that an original message could not be delivered to an intended addressee, wherein the original message purported to originate from the legitimate business; and transfer at least a portion of the electronic message to a correlation engine for processing. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A system for detecting possible online fraud, the system comprising:
-
a device comprising a processor and instructions executable by the processor to; receive an electronic message addressed to a legitimate business, the electronic message indicating that an original message could not be delivered to an intended addressee; and transfer at least a portion of the electronic message to a correlation engine for processing; and a correlation engine configured to; receive the portion of the electronic message; and analyze the portion of the electronic message to determine whether the original message comprises an attempt to engage in online fraud. - View Dependent Claims (12, 13, 14, 15, 16)
-
-
17. A method of detecting online fraud, the method comprising:
-
receiving an electronic message addressed to a legitimate business, the electronic message indicating that an original message could not be delivered to an intended addressee; and transferring at least a portion of the electronic message to a correlation engine for processing. - View Dependent Claims (18)
-
-
19. A method of detecting online fraud, the method comprising:
-
accessing, with a monitoring appliance, an electronic message received by an organization; identifying the electronic message as a return message indicating that an original message purportedly sent by the organization could not be delivered to an intended recipient of the original message; transferring the electronic message from the monitoring appliance to a correlation engine for analysis; and analyzing the electronic message with the correlation engine to determine whether the original message is part of an attempted online fraud. - View Dependent Claims (20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42, 43, 44, 45, 46)
-
-
47. A system for detecting online fraud, the system comprising:
-
a monitoring appliance configured to; access an electronic message received by an organization; identify the electronic message as a return message indicating that an original message purportedly sent by the organization could not be delivered to an intended recipient of the original message; and transfer the electronic message from the monitoring appliance to a correlation engine for analysis; and a correlation engine configured to analyze the electronic message with the correlation engine to determine whether the original message is part of an attempted online fraud. - View Dependent Claims (48, 49, 50, 51, 52)
-
-
53. A monitoring appliance for detecting online fraud, the monitoring appliance comprising a processor and instructions executable by the processor to:
-
access an electronic message received by an organization; identify the electronic message as a return message indicating that an original message purportedly sent by the organization could not be delivered to an intended recipient of the original message; and transfer the electronic message from the monitoring appliance to a correlation engine for analysis.
-
-
54. A software program embodied on a computer readable medium, the software program comprising instructions executable by one or more computers to:
-
access an electronic message received by an organization; identify the electronic message as a return message indicating that an original message purportedly sent by the organization could not be delivered to an intended recipient of the original message; transfer the electronic message from the monitoring appliance to a correlation engine for analysis; and analyze the electronic message to determine whether the original message is part of an attempted online fraud.
-
-
55. A system comprising:
-
means for accessing an electronic message an electronic message received by an organization; means for identifying the electronic message as a return message indicating that an original message purportedly sent by the organization could not be delivered to an intended recipient of the original message; means for transferring the electronic message from the monitoring appliance to a correlation means for analysis; and correlation means for analyzing the electronic message to determine whether the original message is part of an attempted online fraud.
-
Specification