System and methods for automated detection, reasoning and recommendations for resilient cyber systems
US-2018103052-A1 · Apr 12, 2018 · US
Systems and methods for performing a simulated phishing attack
US11552991B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-11552991-B2 |
| Application number | US-202017004855-A |
| Country | US |
| Kind code | B2 |
| Filing date | Aug 27, 2020 |
| Priority date | Jun 28, 2016 |
| Publication date | Jan 10, 2023 |
| Grant date | Jan 10, 2023 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
Systems and methods for performing a simulated phishing attack are provided. A simulated attack server can send a simulated attack email including a unique identifier to a target. The simulated attack server can receive a reply email including the unique identifier from the target. The simulated attack server can extract the unique identifier from the reply email. The simulated attack server can determine a match between the unique identifier and an identity of the target. The simulated attack server can record a target failure, responsive to determining the match between the unique identifier and the identity of the target.
First claim
Opening claim text (preview).
What is claimed is: 1. A method comprising: including, by one or more processors, an identifier of a user within a simulated phishing communication, the identifier uniquely identifying the user separate from any identifier of an email account of the user; communicating, by the one or more processors, the simulated phishing communication to a first account of the user, the simulated phishing communication communicated to one or more second accounts different from the first account; and determining, by the one or more processors using the identifier of the user in a reply to the simulated phishing communication, that the reply was received responsive to the simulated phishing communication being communicated to the first account of the user. 2. The method of claim 1 , further comprising assigning, by the one or more processors, a different identifier to each user of a plurality of users that identifies each user separately from any email account of the user. 3. The method of claim 1 , further comprising embedding, by the one or more processors, the identifier of the user in the simulated phishing communication. 4. The method of claim 1 , wherein the simulated phishing communication comprises an email. 5. The method of claim 1 , further comprising including the identifier in one of a body, a subject line, a field or an attachment of the simulated phishing communication. 6. The method of claim 1 , wherein the one or more second accounts are different accounts of the user. 7. The method of claim 1 , wherein the one or more second accounts are one or more email accounts of another user. 8. The method of claim 1 , further comprising identifying, by the one or more processors, the identifier in a location of the reply in which the identifier was included in the simulated phishing communication. 9. The method of claim 1 , further comprising determining, by the one or more processors based at least on the identifier and a source of the reply, that the simulated phishing communication was interacted with via the one or more second accounts. 10. A system comprising: one or more processors coupled to memory, and configured to: include an identifier of a user within a simulated phishing communication, the identifier uniquely identifying the user separate from any identifier of an email account of the user; communicate the simulated phishing communication to a first account of the user, the simulated phishing communication communicated to one or more second accounts different from the first account; and determine, using the identifier of the user in a reply to the simulated phishing communication, that the reply was received responsive to the simulated phishing communication being communicated to the first account of the user. 11. The system of claim 10 , wherein the one or more processors are further configured to assign a different identifier to each user of a plurality of users that identifies each user separately from any email account of the user. 12. The system of claim 10 , wherein the one or more processors are further configured to embed the identifier of the user in the simulated phishing communication. 13. The system of claim 10 , wherein the simulated phishing communication comprises an email. 14. The system of claim 10 , wherein the one or more processors are further configured to include the identifier in one of a body, a subject line, a field or an attachment of the simulated phishing communication. 15. The system of claim 10 , wherein the one or more second accounts are different accounts of the user. 16. The system of claim 10 , wherein the one or more second accounts are one or more email accounts of another user. 17. The system of claim 10 , wherein the one or more processors are further configured to identify the identifier in a location of the reply in which the identifier was included in the simulated phishing communication. 18. The system of claim 10 , wherein the one or more processors are further configured to determine based at least on the identifier and a source of the reply that the simulated phishing communication was interacted with via the one or more second accounts. 19. A system comprising: one or more processors coupled to memory, and configured to: generate a simulated phishing communication comprising an identifier unique to a user and separate from any identifier of an email account of the user; communicate the simulated phishing communication to a first account of the user, the simulated phishing communication communicated to one or more second accounts different from the first account; and determine, using the identifier of the user in a reply to the simulated phishing communication, that the reply was received responsive to the simulated phishing communication being communicated to the first account of the user. 20. The system of claim 1 , wherein the one or more processors are further configured to embed the identifier of the user to be invisible in a body of the simulated phishing communication.
Assignees
Inventors
Classifications
- H04L63/1483Primary
service impersonation, e.g. phishing, pharming or web spoofing (detection of rogue wireless access points H04W12/12) · CPC title
Vulnerability analysis · CPC title
Mailbox-related aspects, e.g. synchronisation of mailboxes · CPC title
Reliability checks, e.g. acknowledgments or fault reporting · CPC title
Commands or executable codes · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US11552991B2 cover?
- Systems and methods for performing a simulated phishing attack are provided. A simulated attack server can send a simulated attack email including a unique identifier to a target. The simulated attack server can receive a reply email including the unique identifier from the target. The simulated attack server can extract the unique identifier from the reply email. The simulated attack server ca…
- Who is the assignee on this patent?
- Knowbe4 Inc
- What technology area does this patent fall under?
- Primary CPC classification H04L63/1483. Mapped technology areas include Electricity.
- When was this patent published?
- Publication date Tue Jan 10 2023 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 12 related publications on this page (citations in our corpus or others sharing the same primary CPC).