Patent · US Active

Device, system, and method of detecting vishing attacks

US12101354B2 · kind B2 · utility

0Cited by

102References

19Claims

0Family size

Assignee

BIOCATCH LTD. · IL

Inventors

Oren Kedem · Modiin-Maccabim-Reut, IL
Avi Turgeman · Cambridge, US
Itai Novick · Rehovot, IL
Alexander Basil Zaloum · Brooklyn, US
Leonid Karabchevsky · Shimshit, IL
Shira Mintz · Ramat HaSharon, IL
Ron Uriel Maor · London, GB

Key dates

Filing date	Oct 30, 2023
Grant date	Sep 24, 2024
Priority date	—
Expiry date	Oct 30, 2043

Classification

Technology area (CPC H)Electricity
CPC primaryH04L67/02
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

Devices, systems, and methods of detecting a vishing attack, in which an attacker provides to a victim step-by-step over-the-phone instructions that command the victim to log-in to his bank account and to perform a dictated banking transaction. The system monitors transactions, online operations, user interactions, gestures performed via input units, speed and timing of data entry, and user engagement with User Interface elements. The system detects that the operations performed by the victim, follow a pre-defined playbook of a vishing attack. The system detects that the victim operates under duress or under dictated instructions, as exhibited in irregular doodling activity, data entry rhythm, typographical error introduction rhythm, unique posture of the user, alternating pattern of listening to phone instructions and performing online operations via a computer, and device orientation changes or spatial changes that characterize a device being used to perform an online transaction while also talking on the phone.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.