Patent · US Active

Detection of business email compromise attacks

US10834127B1 · kind B1 · utility

28Cited by

3References

17Claims

0Family size

Assignee

Trend Micro Incorporated · JP

Inventors

Che-Fu Yeh · Taipei, TW
I-Ting Lien · Taipei, TW
Ming-Lun Li · Taipei, TW
Shih-Yu Chou · Taipei, TW
Po-Yuan Teng · Taipei, TW
Yuan Jiun Tsui · Taipei, TW
Cheng-Hsin Hsu · Taipei, TW
Wen-Kwang Tsao · Taipei, TW
Shih-Han Hsu · Taipei, TW
Pei-Yin Wu · New Taipei, TW
Jonathan J. Oliver · Melbourne, AU

Key dates

Filing date	Apr 24, 2018
Grant date	Nov 10, 2020
Priority date	—
Expiry date	Feb 12, 2039

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/0245
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

An email attempting to perpetrate a business email compromise (BEC) attack is detected based on similarity of the email to a known BEC email and on similarity of the email to a user email that would have been sent by the purported sender of the email. Metadata of the email is extracted and input to a BEC machine learning model to find the known BEC email among BEC email samples. The extracted metadata are also input to a personal user machine learning model of the purported sender to generate the user email.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.