| CPC H04L 51/212 (2022.05) [G06F 21/566 (2013.01); H04L 63/1433 (2013.01); G06F 21/562 (2013.01); H04L 63/14 (2013.01); H04L 63/1441 (2013.01)] | 12 Claims |
|
1. A method comprising:
at a device configured to provide an electronic message application for a first user, the device comprising at least one processor, a communication device, and memory:
receiving, via the communication device, a message addressed to the first user;
receiving, from the first user, a request to send the message to a second user;
prior to sending any message to the second user in response to the request, determining that the message is a simulated malicious message;
responsive to determining that the message is a simulated malicious message:
identifying, by the at least one processor, an actuatable element in the message, wherein the actuatable element comprises a uniform resource locator (URL);
modifying, by the at least one processor, the message by modifying the actuatable element within the message to include a user identifier of the first user and a user identifier of the second user, resulting in a modified message, wherein modifying the actuatable element within the message to include the user identifier of the first user and the user identifier of the second user includes inserting the user identifier of the first user and the user identifier of the second user into the URL; and
causing transmission of the modified message to the second user.
|