Patent · US Active

Identifying and remediating phishing security weaknesses

US10986122B2 · kind B2 · utility

73Cited by

18References

18Claims

0Family size

Assignee

Sophos Limited · GB

Inventors

Brady Bloxham · Pleasant Grove, US
Scott McVicker Epple · Sudbury, US
Jeffrey Philip Albert · Lowell, US

Key dates

Filing date	Aug 2, 2017
Grant date	Apr 20, 2021
Priority date	—
Expiry date	Sep 8, 2037

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/1416
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

A threat management facility generates a simulated phishing threat based on one or more characteristics of a network user. Based on whether the user fails to respond appropriately to the simulated phishing threat, the threat management facility may implement one or more prophylactic measures to remediate the security weakness exposed by the user's failure to respond appropriately to the simulated phishing threat. For example, a security policy for an endpoint associated with the user may be adjusted to address the security weakness. Additionally, or alternatively, the user may be enrolled in training directed at reducing the likelihood that the user will be the victim of an actual phishing attack in the future.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.