| CPC H04L 63/1441 (2013.01) [H04L 63/1416 (2013.01); H04L 63/1425 (2013.01)] | 17 Claims |
|
1. A computer-implemented method comprising:
in response to receiving a communication, determining a correlation of the communication to a security threat;
obtaining device data of a device associated with a targeted user;
determining that a combination of the correlation and the device data meets a predefined threshold for the security threat; and
causing an alert to be audibly output on the device during the communication that is ongoing, the alert being a warning of the security threat presented by the communication that is ongoing, wherein:
the alert comprises replaying, during the communication that is ongoing, a portion of the communication in which the portion is intended to defraud the targeted user;
additional data comprises recent calls on the device; and
in response to a determination that a number of the recent calls, related to the targeted user from a potentially malicious caller who has mutually known users associated with the targeted user, reaches a predetermined amount, a scam score of the combination of the correlation and the device data of the targeted user is reduced, where information associated with the mutually known users is from social media applications.
|