Patent · US Active

Detecting lateral movement by malicious applications

US11184392B2 · kind B2 · utility

17Cited by

19References

20Claims

0Family size

Assignee

Sophos Limited · GB

Inventors

Andrew J. Thomas · Woodstock, GB
Daniel Stutz · Karlsruhe, DE

Key dates

Filing date	Dec 18, 2018
Grant date	Nov 23, 2021
Priority date	—
Expiry date	May 19, 2039

Classification

Technology area (CPC H)Electricity
CPC primaryH04L67/104
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Attempts at lateral movement are detected by monitoring failed login attempts across a number of endpoints in a network. By configuring endpoints across the network to report unsuccessful login attempts and monitoring these login attempts at a central location, patterns of attempts and failures may advantageously be detected and used to identify malicious attempts at lateral movement within the network before any unauthorized lateral movement is achieved.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.