‌

US Patent 10972485 Enterprise network threat detection

Patent 10972485 was granted and assigned to Sophos Group PLC on April, 2021 by the United States Patent and Trademark Office.

Overview Structured Data Issues Contributors

Is a

Patent attributes

Patent Applicant

Sophos Group PLC

Current Assignee

Sophos Group PLC

Patent Jurisdiction

United States Patent and Trademark Office

Patent Number

Date of Patent

April 6, 2021

Patent Application Number

16129143

Date Filed

September 12, 2018

Patent Citations

US Patent 10284587 Systems and methods for responding to electronic security incidents

US Patent 10181034 Virtual machine security

US Patent 10333962 Correlating threat information across sources of distributed computing systems

US Patent 10581886 Computer system anomaly detection

US Patent 10075462 System and user context in enterprise threat detection

US Patent 10122687 Firewall techniques for colored objects on endpoints

US Patent 10122753 Using reputation to avoid false malware detections

Patent Citations Received

US Patent 12130923 Methods and apparatus for augmenting training data using large language models

0

US Patent 11552969 Threat detection platforms for detecting, characterizing, and remediating email-based threats in real time

US Patent 12081522 Discovering email account compromise through assessments of digital activities

0

US Patent 12079757 Endpoint with remotely programmable data recorder

0

US Patent 11477235 Approaches to creating, managing, and applying a federated database to establish risk posed by third parties

US Patent 11252189 Abuse mailbox for facilitating discovery, investigation, and analysis of email-based threats

US Patent 11663303 Multichannel threat detection for protecting against account compromise

0

US Patent 11687648 Deriving and surfacing insights regarding security threats

0

...

Patent Primary Examiner

Patent abstract

In a threat management platform, a number of endpoints log events in an event data recorder. A local agent filters this data and feeds a filtered data stream to a central threat management facility. The central threat management facility can locally or globally tune filtering by local agents based on the current data stream, and can query local event data recorders for additional information where necessary or helpful in threat detection or forensic analysis. The central threat management facility also stores and deploys a number of security tools such as a web-based user interface supported by machine learning models to identify potential threats requiring human intervention and other models to provide human-readable context for evaluating potential threats.

Timeline

No Timeline data yet.

Further Resources

Title

Author

Link

Type

Date

No Further Resources data yet.

References

Find more entities like US Patent 10972485 Enterprise network threat detection

Use the Golden Query Tool to find similar entities by any field in the Knowledge Graph, including industry, location, and more.

Open Query Tool

Golden Query Tool

By using this site, you agree to our Terms of Service.