Patent · US Active

Methods and apparatus for malware threat research

US10574630B2 · kind B2 · utility

3Cited by

83References

22Claims

0Family size

Assignee

WEBROOT INC. · US

Inventors

Melvyn Morris · Turnditch, GB
Joseph A. Jaroch · Elk Grove Village, US

Key dates

Filing date	Feb 13, 2012
Grant date	Feb 25, 2020
Priority date	—
Expiry date	Feb 13, 2032

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/145
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Methods for classifying computer objects as malware and the associated apparatus are disclosed. An exemplary method includes, at a base computer, receiving data about a computer object from each of plural remote computers on which the object or similar objects are stored and or processed and counting the number of times in a given time period objects having one or more common attributes or behaviors that have been seen by the remote computers. The counted number is then compared with the expected number based on past observations, and if the comparison exceeds a predetermined threshold, the objects are flagged as unsafe or as suspicious.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.