发明公开
EP3111331A2 SYSTEMS AND METHODS FOR MALWARE DETECTION AND MITIGATION
审中-公开
系统公司VERFAHREN ZUM ERKENNEN UNDABSCHWÄCHENVON SCHADPROGRAMMEN
- 专利标题: SYSTEMS AND METHODS FOR MALWARE DETECTION AND MITIGATION
- 专利标题(中): 系统公司VERFAHREN ZUM ERKENNEN UNDABSCHWÄCHENVON SCHADPROGRAMMEN
-
申请号: EP15752327.5申请日: 2015-02-24
-
公开(公告)号: EP3111331A2公开(公告)日: 2017-01-04
- 发明人: GOLSHAN, Ali , GONG, Fengmin , JAS, Frank , BILOGORSKIY, Nick , VU, Neal , LU, Chenghuai , BURT, Alex , KENYAN, Manikandan , TING, Yucheng
- 申请人: Cyphort Inc.
- 申请人地址: 5451 Great America Parkway Suite 225 Santa Clara, CA 95054 US
- 专利权人: Cyphort Inc.
- 当前专利权人: Cyphort Inc.
- 当前专利权人地址: 5451 Great America Parkway Suite 225 Santa Clara, CA 95054 US
- 代理机构: Brevalex
- 优先权: US201461944006P 20140224; US201514629444 20150223
- 国际公布: WO2015127472 20150827
- 主分类号: G06F12/14
- IPC分类号: G06F12/14 ; G06F11/00
摘要:
Systems and methods for monitoring malware events in a computer networking environment are described. The systems and methods including the steps of identifying a plurality of suspect objects comprising data about network transactions or computer operations suspected of being linked to a security risk; transmitting the suspect objects to an inspection service operating on one or more general purpose digital computers; transmitting said digital information to an analytical service operating on one or more general purpose digital computers; transmitting said one or more scores to a correlation facility which aggregates a plurality of scores, optionally with other information about each suspect objects, into the form of aggregate data representing one or more aggregate features of a plurality of suspect objects; and generating an infection verification pack comprising routines which, when run on an end-point machine within the computer networking environment, will mitigate a suspected security threat.
信息查询
