	US 12,074,903 B2
	Passive detection of digital skimming attacks
Abraham Jeevagunta, San Jose, CA (US); and Shreyans Mehta, Los Altos, CA (US)
Assigned to CEQUENCE SECURITY, INC, Sunnyvale, CA (US)
Filed by CEQUENCE SECURITY, INC, Sunnyvale, CA (US)
Filed on Jul. 28, 2021, as Appl. No. 17/387,264.
Claims priority of provisional application 63/057,714, filed on Jul. 28, 2020.
Prior Publication US 2022/0038468 A1, Feb. 3, 2022
Int. Cl. H04L 29/06 (2006.01); H04L 9/40 (2022.01)

CPC H04L 63/145 (2013.01) [H04L 63/1416 (2013.01); H04L 63/1425 (2013.01); H04L 63/20 (2013.01)]

20 Claims

1. A method to facilitate prevention of malicious attacks on a web service, the method comprising:

a computing system crawling web resources associated with the web service to obtain information about internal and external web assets associated with the web service;

the computing system utilizing headless browser automation with a security scanner browser extension to intercept responses from the internal and external web assets and dynamically injecting content security policy report-only response headers into the responses to determine internal and external dependency data associated with the internal and external web assets;

the computing system processing the internal and external dependency data with script reputation and domain reputation data to generate enriched dependency graph data;

the computing system analyzing the enriched dependency graph data to dynamically generate content security policies for the web service; and

the computing system deploying the dynamically generated content security policies to protect the web service.