Patent · US Active

Device, system, and method of detecting vishing attacks

US11838118B2 · kind B2 · utility

0Cited by

170References

20Claims

0Family size

Assignee

BIOCATCH LTD. · IL

Inventors

Oren Kedem · Modiin-Maccabim-Reut, IL
Avi Turgeman · Cambridge, US
Itai Novick · Rehovot, IL
Alexander Basil Zaloum · Brooklyn, US
Leonid Karabchevsky · Shimshit, IL
Shira Mintz · Ramat HaSharon, IL
Ron Uriel Maor · London, GB

Key dates

Filing date	Jun 27, 2021
Grant date	Dec 5, 2023
Priority date	—
Expiry date	May 25, 2042

Classification

Technology area (CPC H)Electricity
CPC primaryH04L67/02
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Devices, systems, and methods of detecting a vishing attack, in which an attacker provides to a victim step-by-step over-the-phone instructions that command the victim to log-in to his bank account and to perform a dictated banking transaction. The system monitors transactions, online operations, user interactions, gestures performed via input units, speed and timing of data entry, and user engagement with User Interface elements. The system detects that the operations performed by the victim, follow a pre-defined playbook of a vishing attack. The system detects that the victim operates under duress or under dictated instructions, as exhibited in irregular doodling activity, data entry rhythm, typographical error introduction rhythm, unique posture of the user, alternating pattern of listening to phone instructions and performing online operations via a computer, and device orientation changes or spatial changes that characterize a device being used to perform an online transaction while also talking on the phone.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.