白丝美女被狂躁免费视频网站,500av导航大全精品,yw.193.cnc爆乳尤物未满,97se亚洲综合色区,аⅴ天堂中文在线网官网

Message platform for automated threat simulation, reporting, detection, and remediation

專(zhuān)利號(hào)
US11997115B1
公開(kāi)日期
2024-05-28
申請(qǐng)人
Cofense Inc.(US VA Leesburg)
發(fā)明人
Aaron Higbee; David Chamberlain; Vineetha Philip
IPC分類(lèi)
H04L9/40; G06F16/35; G06F21/00; G06F21/55; H04L51/212; H04L51/08
技術(shù)領(lǐng)域
message,phishing,email,messages,be,or,emails,in,user,cluster
地域: VA VA Leesburg

摘要

Methods, network devices, and machine-readable media for an integrated environment and platform for automated processing of reports of suspicious messages, and further including automated threat simulation, reporting, detection, and remediation, including rapid quarantine and restore functions.

說(shuō)明書(shū)

In connection with the generation of simulated phishing emails, the system can be configured to insert a message in a person's inbox during a time-based window while the person is active in the mailbox. For example, it can be configured as a service that can inject phishing simulation emails to user's mailbox when the user is actively working in his mailbox.

Simulation data for use in this context is stored in a data store. Simulation data can include information sufficient to create a simulated phishing message. The simulation data can include, as non-limiting examples, header information and message body information. A management interface can be provided to an administrator for the purpose of creating the simulated phishing messages from the simulation data, as well as managing the simulation data.

The system can provide the simulated phishing email messages to users by inserting them directly into user accounts. The system can store a database of user account names, in the format of “user@host.com”. These user accounts may be part of an enterprise mail service, such as Microsoft Exchange. Using an administrative account, the system can connect to the enterprise mail service and issue a command to insert the email message directly into an account associated with a user.

In some embodiments interfacing with Microsoft Exchange, the Exchange server may expose and application programming interface (API) which allows an external service to issue commands to insert messages. As a non-limiting example, in the case of Microsoft Exchange, a domain administrator may grant account impersonation rights to the external simulation service, so that the external simulation service can connect to the Exchange service and insert emails into that account.

User Account Control and Impersonation

權(quán)利要求

1
微信群二維碼
意見(jiàn)反饋