Patent · US Active

Beacon and threat intelligence based APT detection

US12323389B2 · kind B2 · utility

0Cited by

0References

20Claims

0Family size

Assignee

Palo Alto Networks, Inc. · US

Inventors

Yanhui Jia · Santa Clara, US
Qi Zhang · Sha Tin, CN
Shengming Xu · San Jose, US

Key dates

Filing date	Jul 29, 2022
Grant date	Jun 3, 2025
Priority date	—
Expiry date	Mar 1, 2043

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/1425
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Techniques for beacon and threat intelligence based Advanced Persistent Threat (APT) detection are disclosed. In some embodiments, a system/process/computer program product for beacon and threat intelligence based APT detection includes collecting firewall log data from monitored network traffic; analyzing the firewall log data at a cloud security service to identify beacon traffic based on a plurality of heuristics; performing a risk evaluation of the beacon traffic to detect malicious beacon traffic; and performing an action in response to detecting the malicious beacon traffic.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.