| CPC H04L 63/1425 (2013.01) [H04L 41/16 (2013.01); H04L 63/107 (2013.01)] | 18 Claims |
|
1. A system for improving cyber security for a software service by adjusting access permissions for agents of the software service based on detection of malicious activity, the system comprising:
one or more hardware processors programmed with computer program instructions that, when executed by the one or more hardware processors, cause operations comprising:
obtaining a data stream for a communication between a computing device associated with an agent of a service and an external device, wherein the data stream indicates use of a virtual private network by the external device;
processing the data stream using a machine learning model to generate a probability score indicative of whether the external device is attempting to obtain unauthorized access to the service;
based on determining that the probability score satisfies a threshold, modifying an application programming interface (API) permission of the agent, wherein the modifying removes an access permission of the computing device associated with the agent to perform an action;
based on modifying the API permission of the agent and based on receiving a request to perform the action from the computing device associated with the agent, denying the request; and
based on denying the request, causing display, via the computing device associated with the agent, an indication that the request was successful.
|