Browse Prior Art Database

Method for predictive detection and prevention of online accounts from being hacked

IP.com Disclosure Number: IPCOM000189174D
Original Publication Date: 2009-Oct-30
Included in the Prior Art Database: 2009-Oct-30
Document File: 1 page(s) / 58K

Publishing Venue

IBM

Abstract

Disclosed is a system to detect suspicious activity on online accounts based on predefined set of actions, and lock the activity to prevent online accounts from being hacked thereby safegauarding personal information and also avoiding financial loss to the account holder. Internet users fall prey to criminally fraudulent online activities like phishing where the user ends up giving out account sensitive information in an electronic form. Also, in some cases, email accounts are hacked by acquaintance who know users personal details by which unauthorised access to online accounts can be gained. Some users fall prey to tools like keyloggers, etc which capture user's sensitive information. Disclosed system aims at making the online systems self aware of malicious activites by unauthorised users thereby providing greater security.

This text was extracted from a PDF file.
This is the abbreviated version, containing approximately 100% of the total text.

Page 1 of 1

Method for predictive detection and prevention of online accounts from being hacked

Disclosed system requires that the online account service providers of emails, banking, etc asks its users to confirm their mobile numbers for the purpose that the account holders can be intimated about the suspicious activity so that appropriate action an be taken. In maximum cases, the phisher who acquires the user sensitive information like username and password does the following:
1. Change user password
2. Change secret questions and answer
3. Change secondary email address


The phisher or unauthorized user will do all above three activities at one go or within specified time interval before the actual account owner tries to log in. The system disclosed see's all these changes happening to the account as suspicious and triggers a preventive program. The preventive program will take preventive actions like back up old credentials and sensitive information, store IP details of the machine from where the activity is being carried out, restrict access to the account and finally informing the account owner by sms or Interactive Voice Response (IVR) system to confirm the changes of the suspicious activity. Based on the account owner's response by sms or IVR, the system can roll back or allow the changes to the user account. This will ensure greater safety and privacy of online accounts

1