Patent · US Active

Detecting and preventing crypto-ransomware attacks against data

US10122752B1 · kind B1 · utility

41Cited by

0References

20Claims

0Family size

Assignee

VMware LLC · US

Inventors

Sisimon Soman · Fort Lauderdale, US
Matthew Conover · Mountain View, US

Key dates

Filing date	Jun 10, 2016
Grant date	Nov 6, 2018
Priority date	—
Expiry date	Nov 30, 2036

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/1416
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Embodiments perform detection and prevention of unauthorized access to files in a target folder. A filter driver, interfacing with a target folder, intercepts a first request from a process to access a file in the target folder. The filter driver returns a virtual file, along with the existing files, to the process. Upon receiving a second request from the process to write to the virtual file, the filter driver designates the process as a hostile process and prevents further access attempts.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.