| 发明名称 |
IDENTIFICATION OF AND COUNTERMEASURES AGAINST FORGED WEBSITES |
| 摘要 |
A system, a method, and computer program product identify a website that is a forgery of a primary website. Client side executable code is included in a page of the primary website, which page is copied in the forged website. The client side code, when executed by a client device, determines whether the domain from which the page is served is an authorized domain. Where the serving domain is not authorized, the client device is configured to alter the execute countermeasures against the forged website, such as altering operation of the forged page. |
| 申请公布号 |
US2016226908(A1) |
申请公布日期 |
2016.08.04 |
| 申请号 |
US201615093697 |
申请日期 |
2016.04.07 |
| 申请人 |
Facebook, Inc. |
发明人 |
McGeehan Ryan |
| 分类号 |
H04L29/06 |
主分类号 |
H04L29/06 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
1. A computer implemented method comprising:
receiving a page included in a website at a client device associated with a user, the page having executable scripting code that, when executed by a processor, determines whether a network domain from which the page was served is a domain authorized to serve the page; responsive to execution of the executable scripting code determining the network domain from which the page was served is not a domain authorized to serve the page, the executable scripting code providing an identification of the domain from which the page was served to an authorized server associated with the domain authorized to serve the page; and responsive to execution of the executable scripting code determining the network domain from which the page was served is not a domain authorized to serve the page, executing countermeasure code that, when executed by the processor of the client device, modifies operation of the page to prevent phishing of user credentials. |
| 地址 |
Menlo Park CA US |
