Identifying and remediating phishing security weaknesses
US-2018041537-A1 · Feb 8, 2018 · US
Systems and methods for AIDA based grouping
US11627159B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-11627159-B2 |
| Application number | US-202117553979-A |
| Country | US |
| Kind code | B2 |
| Filing date | Dec 17, 2021 |
| Priority date | Dec 1, 2017 |
| Publication date | Apr 11, 2023 |
| Grant date | Apr 11, 2023 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
The present disclosure describes systems and methods for dynamically creating groups of users based on attributes for simulated phishing campaign. A campaign controller determines one or more attributes of a plurality of users during execution of a simulated phishing campaign and creates one or more groups of users during based on the identified attributes. The campaign controller selects a template to be used to execute a portion of the simulated phishing campaign for a first group of users and then communicates one or more simulated phishing communications to the first group of users according to the template. The template may identify a list of a plurality of types of simulated phishing communications (email, text or SMS message, phone call or Internet based communication) and at least a portion of the content for the simulated phishing communication.
First claim
Opening claim text (preview).
What is claimed is: 1. A method comprising: identifying, by one or more processors, one or more users from a plurality of users for each of a first group of users and a second group of users based at least on one or more attributes of the one or more users; using, by the one or more processors, a model to identify a first timing and first content for one or more first simulated phishing communications to communicate to the first group of users of the plurality of users, wherein the model is trained to identify timing and content for simulated phishing communications for the plurality of users based at least on one or more attributes of the plurality of users; using, by the one or more processors, the model to identify a second timing and second content, different from the first timing and the first content, for one or more second simulated phishing communications to be communicated to the second group of users of the plurality of users; communicating, by the one or more processors, the one or more first simulated phishing communications to the first group users according to the first timing and first content and the one or more first simulated phishing communications to the second group users according to the second timing and second content. 2. The method of claim 1 , further comprising identifying, by the one or more processors, the plurality of users based at least on results of simulated phishing communications. 3. The method of claim 1 , further comprising identifying, by the one or more processors, the one or more attributes of the plurality of users based on applying machine learning at least on behavior of the plurality of users with respect to one or more simulated phishing communications. 4. The method of claim 1 , wherein the model is further configured to identify the timing and content having at least a likelihood to cause a group of users to take a predetermined action. 5. The method of claim 1 , further comprising identifying, by the one or more processors, the first group of users and the second group of users from the plurality of users. 6. The method of claim 1 , wherein the model is further configured to identify a template that specifies the timing and content of simulated phishing communications within a campaign. 7. The method of claim 1 , further comprising providing, by the one or more processors, one or more attributes of the first group of users to the model, responsive to which the model identifies the first timing and the first content. 8. The method of claim 1 , wherein the model is configured to receive one or more attributes of the second group of users as input and provide as output the second timing and the second content. 9. The method of claim 1 , wherein the model is configured to identify a type of simulated phishing communication to use for each of the first group of users and the second group of users. 10. The method of claim 1 , wherein the model is trained to identify timing and content for simulated phishing communications having at least a likelihood to cause a group of users to take a predetermined action. 11. A system comprising: one or more processors, coupled to memory and configured to: identify one or more users from a plurality of users for each of a first group of users and a second group of users based at least on one or more attributes of the one or more users; identify a model trained to specify timing and content for simulated phishing communications for the plurality of users based at least on one or more attributes of the plurality of users; use the model to identify a first timing and first content for one or more first simulated phishing communications to communicate to the first group of users of the plurality of users, use the model to identify a second timing and second content, different from the first timing and the first content, for one or more second simulated phishing communications to be communicated to the second group of users of the plurality of users; communicate the one or more first simulated phishing communications to the first group users according to the first timing and first content and the one or more first simulated phishing communications to the second group users according to the second timing and second content. 12. The system of claim 11 , wherein the one or more processors are further configured to identify the plurality of users based at least on results of simulated phishing communications. 13. The system of claim 11 , wherein the one or more processors are further configured to identify the one or more attributes of the plurality of users based on applying machine learning at least on behavior of the plurality of users with respect to one or more simulated phishing communications. 14. The system of claim 11 , wherein the model is further configured to identify the timing the timing and content having at least a likelihood to cause a group of users to take a predetermined action. 15. The system of claim 11 , wherein the one or more processors are further configured to identify the first group of users and the second group of users from the plurality of users. 16. The system of claim 11 , wherein the model is further configured to identify a template that specifies the timing and content of simulated phishing communications within a campaign. 17. The system of claim 11 , wherein the one or more processors are further configured to provide one or more attributes of the first group of users to the model, responsive to which the model identifies the first timing and the first content. 18. The system of claim 11 , wherein the model is configured to receive one or more attributes of the second group of users as input and provide as output the second timing and the second content. 19. The system of claim 11 , wherein the model is configured to identify a type of simulated phishing communication to use for each of the first group of users and the second group of users. 20. The system of claim 11 , wherein the model is trained to identify timing and content for simulated phishing communications having at least a likelihood to cause a group of users to take a predetermined action.
Assignees
Inventors
Classifications
Recurrent networks, e.g. Hopfield networks · CPC title
Supervised learning · CPC title
Backpropagation, e.g. using gradient descent · CPC title
- H04L63/1483Primary
service impersonation, e.g. phishing, pharming or web spoofing (detection of rogue wireless access points H04W12/12) · CPC title
Assessing vulnerabilities and evaluating computer system security · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US11627159B2 cover?
- The present disclosure describes systems and methods for dynamically creating groups of users based on attributes for simulated phishing campaign. A campaign controller determines one or more attributes of a plurality of users during execution of a simulated phishing campaign and creates one or more groups of users during based on the identified attributes. The campaign controller selects a tem…
- Who is the assignee on this patent?
- Knowbe4 Inc
- What technology area does this patent fall under?
- Primary CPC classification H04L63/1483. Mapped technology areas include Electricity.
- When was this patent published?
- Publication date Tue Apr 11 2023 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 12 related publications on this page (citations in our corpus or others sharing the same primary CPC).