公开(公告)号：US20200351301A1

公开(公告)日：2020-11-05

申请号：US16947074

申请日：2020-07-16

Applicant: Barracuda Networks, Inc.

Inventor： Marco SCHWEIGHAUSER ,  Lior GAVISH ,  Itay BLEIER ,  Asaf CIDON

IPC: H04L29/06 ,  G06F9/54 ,  H04L12/58 ,  G06N5/02

Abstract: A new approach is proposed that contemplates systems and methods to support email account takeover detection and remediation by utilizing an artificial intelligence (AI) engine/classifier that detects and remediates such attacks in real time. The AI engine is configured to continuously monitor and identify communication patterns of a user on an electronic messaging system of an entity via application programming interface (API) calls. The AI engine is then configured to collect and utilize a variety of features and/or signals from an email sent from an internal email account of the entity. The AI engine combines these signals to automatically detect whether the email account has been compromised by an external attacker and alert the individual user of the account and/or a system administrator accordingly in real time. The AI engine further enables the parties to remediate the effects of the compromised email account by performing one or more remediating actions.

公开(公告)号：US20190222606A1

公开(公告)日：2019-07-18

申请号：US16363596

申请日：2019-03-25

Applicant: Barracuda Networks, Inc.

Inventor： Marco SCHWEIGHAUSER ,  Lior GAVISH ,  Itay BLEIER ,  Asaf CIDON

IPC: H04L29/06 ,  G06F9/54 ,  G06N5/02 ,  H04L12/58

Abstract: A new approach is proposed that contemplates systems and methods to support email account takeover detection and remediation by utilizing an artificial intelligence (AI) engine/classifier that detects and remediates such attacks in real time. The AI engine is configured to continuously monitor and identify communication patterns of a user on an electronic messaging system of an entity via application programming interface (API) calls. The AI engine is then configured to collect and utilize a variety of features and/or signals from an email sent from an internal email account of the entity. The AI engine combines these signals to automatically detect whether the email account has been compromised by an external attacker and alert the individual user of the account and/or a system administrator accordingly in real time. The AI engine further enables the parties to remediate the effects of the compromised email account by performing one or more remediating actions.