Patent · US Active

Virtual file honey pots for computing systems behavior-based protection against ransomware attacks

US12423411B2 · kind B2 · utility

0Cited by

15References

20Claims

0Family size

Assignee

Acronis International GmbH · CH

Inventors

Vladimir Strogov · Moscow, RU
Aliaksei Dodz · Singapore, SG
Oleg Ishanov · Moscow, RU
Serg Bell · Singapore, SG
Stanislav Protasov · Moscow, RU

Key dates

Filing date	Nov 27, 2023
Grant date	Sep 23, 2025
Priority date	—
Expiry date	Apr 16, 2044

Classification

Technology area (CPC G)Physics
CPC primaryG06F2221/034
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

Systems and methods for ransomware protection in advanced injection-based attacks. Events from a driver are analyzed to identify a potentially malicious actor. A confidence level is calculated for the potentially malicious actor identification to weigh the probability that the actor is malware or a source of malware. Behavior associated with the potentially malicious actor can be collected, if it is likely that the potentially malicious actor is associated with malware, such as if the confidence level is over a predetermined threshold. Subsequently, one or more virtual honeypots are generated for the suspicious processes and the response to the virtual honeypots is included in anti-ransomware heuristic analysis.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.