US 12,277,221 B2
Computer-implemented automatic security methods and systems
Fadi El-Moussa, London (GB)
Assigned to BRITISH TELECOMMUNICATIONS PUBLIC LIMITED COMPANY, (GB)
Appl. No. 18/005,731
Filed by BRITISH TELECOMMUNICATIONS PUBLIC LIMITED COMPANY, London (GB)
PCT Filed Jun. 10, 2021, PCT No. PCT/EP2021/065638
§ 371(c)(1), (2) Date Jan. 17, 2023,
PCT Pub. No. WO2022/012822, PCT Pub. Date Jan. 20, 2022.
Claims priority of application No. 2010899 (GB), filed on Jul. 15, 2020.
Prior Publication US 2023/0289442 A1, Sep. 14, 2023
Int. Cl. G06F 21/56 (2013.01); G06F 21/53 (2013.01)
CPC G06F 21/563 (2013.01) [G06F 21/53 (2013.01)] 21 Claims
OG exemplary drawing
 
1. A computer-implemented method of automatically initiating a process for securing a computer system or network against a suspect binary file (SBF), which has been created by modifying a known malicious binary file (KMBF) by, in response to detection of the SBF, comprising:
initiating an automatic defence strategy comprising:
a first action known to mitigate a known threat posed by the KMBF; and
a further action predicted to mitigate a predicted threat posed by a discrepant function present in the SBF but not the KMBF; and
determining, in response to detection of the SBF and prior to initiating the automatic defence strategy, the further action predicted to mitigate the predicted threat posed by the discrepant function by separating out a portion of the SBF corresponding to the discrepant function and running that portion of the SBF in a controlled virtual environment.