{"schema_version":"1.0","canonical_url":"https://patentable.app/patents/US-11956255","patent":{"patent_number":"US-11956255","title":"Recognizing successful cyberattacks based on subsequent benign activities of an attacker","assignee":null,"inventors":[],"filing_date":"2021-06-30T00:00:00.000Z","publication_date":"2024-04-09T00:00:00.000Z","cpc_codes":["H04L","G06F","G06N","H04L","H04L","H04L"],"num_claims":19,"abstract":"Embodiments of a cyberattack monitoring system are disclosed to identify successful attacks on a service based on benign activities of the attacker performed after the initial attack attempt. In embodiments, the system identifies the initial attack by matching client actions to known attack patterns. Clients observed with attempted attacks are remembered as suspected attackers. The system will then monitor subsequent actions of suspected attackers for signs that the initial attack attempt was successful. In embodiments, a successful attack is recognized when the system observes one or more subsequent benign actions by the suspected attacker. In embodiments, the presence of follow-on benign actions is used as a filter to filter out unsuccessful attacks and false positives detected by the system. The filtering enables the system to better focus system resources and human attention on a small set of client activities that are likely successful attacks."},"analysis":{"summary":null,"layman_explanation":null,"technical_analysis":null,"business_analysis":null,"faqs":null,"topics":[],"tech_cluster":null},"seo":{"title":"Recognizing successful cyberattacks based on subsequent benign activities of an attacker","description":"Embodiments of a cyberattack monitoring system are disclosed to identify successful attacks on a service based on benign activities of the attacker performed after the initial attack attempt. In embod","keywords":[]},"attribution":{"source":"Patentable","source_url":"https://patentable.app","canonical_url":"https://patentable.app/patents/US-11956255","license":"CC-BY-4.0-like","license_terms":"AI-generated analysis on this page (summary, layman_explanation, technical_analysis, business_analysis, faqs) may be reused with attribution and a visible link back to the canonical URL above. Patent abstracts, claims, and bibliographic data are USPTO public domain.","required_link":"https://patentable.app/patents/US-11956255","citation_suggestion":"Patentable. \"Recognizing successful cyberattacks based on subsequent benign activities of an attacker\" (US-11956255). https://patentable.app/patents/US-11956255","copyright_holder":"Nomic Interactive Technology LLC"},"links":{"html":"https://patentable.app/patents/US-11956255","json":"https://patentable.app/api/llm-context/US-11956255","site":"https://patentable.app","llms_txt":"https://patentable.app/llms.txt"},"generated_at":"2026-05-31T11:40:38.873Z"}