Device, system, and method of detecting vishing attacks
Oren Kedem, Tel Aviv (IL); Avi Turgeman, New York, NY (US); Itai Novick, Rehovot (IL); Alexander Basil Zaloum, Brooklyn, NY (US); Leonid Karabchevsky, Shimshit (IL); Shira Mintz, Ramat HaSharon (IL); and Ron Uriel Maor, London (GB)
Assigned to BIOCATCH LTD., Tel Aviv (IL)
Filed by BioCatch Ltd., Tel Aviv (IL)
Filed on Jun. 27, 2021, as Appl. No. 17/359,579.
Application 17/359,579 is a continuation in part of application No. 16/872,381, filed on May 12, 2020, granted, now 11,210,674.
Application 16/872,381 is a continuation of application No. 16/242,015, filed on Jan. 8, 2019, granted, now 10,685,355, issued on Jun. 16, 2020.
Application 16/872,381 is a continuation of application No. 17/359,579.
Application 17/359,579 is a continuation of application No. 16/188,312, filed on Nov. 13, 2018, abandoned.
Application 16/242,015 is a continuation in part of application No. 16/057,825, filed on Aug. 8, 2018, granted, now 10,523,680, issued on Dec. 31, 2019.
Application 16/057,825 is a continuation in part of application No. 15/885,819, filed on Feb. 1, 2018, granted, now 10,834,590, issued on Nov. 10, 2020.
Application 16/188,312 is a continuation in part of application No. 15/819,400, filed on Nov. 21, 2017, granted, now 10,970,394, issued on Apr. 6, 2021.
Application 16/242,015 is a continuation in part of application No. 15/368,608, filed on Dec. 4, 2016, granted, now 10,949,757, issued on Mar. 16, 2021.
Application 15/368,608 is a continuation in part of application No. 15/360,291, filed on Nov. 23, 2016, granted, now 9,747,436, issued on Aug. 29, 2017.
Application 16/057,825 is a continuation of application No. 15/203,817, filed on Jul. 7, 2016, granted, now 10,069,837, issued on Sep. 4, 2018.
Application 15/368,608 is a continuation in part of application No. 15/001,259, filed on Jan. 20, 2016, granted, now 9,541,995, issued on Jan. 10, 2017.
Application 15/001,259 is a continuation in part of application No. 14/727,873, filed on Jun. 2, 2015, granted, now 9,526,006, issued on Dec. 20, 2016.
Application 15/360,291 is a continuation in part of application No. 14/718,096, filed on May 21, 2015, granted, now 9,531,701, issued on Dec. 27, 2016.
Application 15/885,819 is a continuation in part of application No. 14/675,764, filed on Apr. 1, 2015, abandoned.
Application 14/718,096 is a continuation in part of application No. 14/675,768, filed on Apr. 1, 2015, granted, now 9,418,221, issued on Aug. 16, 2016.
Application 14/675,764 is a continuation in part of application No. 14/566,723, filed on Dec. 11, 2014, granted, now 9,071,969, issued on Jun. 30, 2015.
Application 14/675,768 is a continuation in part of application No. 14/566,723.
Application 14/675,764 is a continuation in part of application No. 14/325,396, filed on Jul. 8, 2014, abandoned.
Application 14/325,396 is a continuation in part of application No. 14/325,395, filed on Jul. 8, 2014, granted, now 9,621,567, issued on Apr. 11, 2017.
Application 14/325,395 is a continuation in part of application No. 14/325,393, filed on Jul. 8, 2014, granted, now 9,531,733, issued on Dec. 27, 2016.
Application 14/325,393 is a continuation in part of application No. 14/325,397, filed on Jul. 8, 2014, granted, now 9,450,971, issued on Sep. 20, 2016.
Application 14/325,397 is a continuation in part of application No. 14/325,394, filed on Jul. 8, 2014, granted, now 9,547,766, issued on Jan. 17, 2017.
Application 14/325,394 is a continuation in part of application No. 14/325,398, filed on Jul. 8, 2014, granted, now 9,477,826, issued on Oct. 25, 2016.
Application 15/001,259 is a continuation of application No. 14/320,653, filed on Jul. 1, 2014, granted, now 9,275,337, issued on Mar. 1, 2016.
Application 14/675,764 is a continuation in part of application No. 14/320,653.
Application 14/320,653 is a continuation in part of application No. 14/320,656, filed on Jul. 1, 2014, granted, now 9,665,703, issued on May 30, 2017.
Application 14/566,723 is a continuation in part of application No. 13/922,271, filed on Jun. 20, 2013, granted, now 8,938,787, issued on Jan. 20, 2015.
Application 14/320,653 is a continuation in part of application No. 13/922,271.
Application 13/922,271 is a continuation in part of application No. 13/877,676, filed on Apr. 4, 2013, granted, now 9,069,942, issued on Jun. 30, 2015.
Application 13/922,271 is a continuation in part of application No. 13/877,676, previously published as PCT/IL2011/000907, filed on NaN, NaN.
Claims priority of provisional application 62/621,600, filed on Jan. 25, 2018.
Claims priority of provisional application 62/190,264, filed on Jul. 9, 2015.
Claims priority of provisional application 61/973,855, filed on Apr. 2, 2014.
Claims priority of provisional application 61/843,915, filed on Jul. 9, 2013.
Claims priority of provisional application 61/417,479, filed on Nov. 29, 2010.
Prior Publication US 2021/0329030 A1, Oct. 21, 2021
(a) monitoring user interactions of a user that utilizes an electronic device to interact with a particular user-account of a computerized service;
(b) detecting that said particular user-account is being accessed concurrently via two or more different log-in sessions from two or more different devices;
(c) based on analysis of user interactions and further based on the detecting of step (b), determining that a set of operations were performed by said user in said particular user-account under orders from an attacker who dictated to said user which operations to perform in said particular user-account of said computerized service;
detecting a set of operations that were performed by said user via said electronic device, which triggers an initial estimation that said set of operations were performed within a vishing attack;
determining that said set of operations were performed during a nightly time-slot in which most users in a particular geographic region are asleep; and
detecting that said initial estimation of a vishing attack is incorrect.
