公开(公告)号：US20230308477A1

公开(公告)日：2023-09-28

申请号：US18321085

申请日：2023-05-22

Applicant: LOOKOUT, INC.

Inventor： Timothy Micheal Wyatt ,  Brian James Buck ,  Nitin Shridhar Desai ,  Robert Blaine Elwell ,  Eike Christian Falkenberg ,  Meng Hu

IPC: H04L9/40 ,  G06F21/56 ,  G06F21/57 ,  H04L9/32 ,  H04L43/10 ,  H04L43/12

CPC classification number: H04L63/1466 ,  G06F21/56 ,  G06F21/577 ,  H04L9/3265 ,  H04L43/10 ,  H04L43/12 ,  H04L63/1425 ,  H04L63/0823 ,  H04L67/01

Abstract: The security of network connections on a computing device is protected by detecting and preventing compromise of the network connections, including man-in-the-middle (MITM) attacks. Communications are intercepted by a client-side proxy before being sent to a recipient designated by an application. The intercepted communication is inspected, and a first connection is determined to be used to send the communication based on the inspection. Finally, before the communication is sent via the first connection, an action is performed by the client-side proxy resulting in an indication that the first connection is compromised. The action may include comparing data associated with the first connection to data associated with known compromised connections. In various embodiments, additional security responses may subsequently be performed by the client-side proxy based on the indication that the first connection is compromised.

公开(公告)号：US11301569B2

公开(公告)日：2022-04-12

申请号：US16296039

申请日：2019-03-07

Applicant: Lookout, Inc.

Inventor： Timothy Micheal Wyatt ,  William Neil Robinson ,  Brian James Buck ,  Alex Richard Gladd

IPC: G06F21/00 ,  G06F21/57 ,  G06F8/61 ,  G06F21/55 ,  G06F21/56

Abstract: A method includes: after installation of software on a first mobile device, receiving new data from a second mobile device; analyzing, using a data repository, the new data to provide a security assessment; determining, based on the security assessment, a new security threat associated with the software; and in response to determining the new security threat, causing the first mobile device to implement a quarantine of the software.

公开(公告)号：US10742676B2

公开(公告)日：2020-08-11

申请号：US16111137

申请日：2018-08-23

Applicant: LOOKOUT, INC.

Inventor： Kevin Patrick Mahaffey ,  Timothy Micheal Wyatt ,  Brian James Buck ,  John Gunther Hering ,  Amit Gupta ,  Alex Cameron Abey

IPC: G06F17/00 ,  H04L29/06 ,  H04L12/26 ,  H04L29/08 ,  H04L12/24 ,  G06F11/07 ,  H04L12/46 ,  H04W12/12

Abstract: Data is collected from a set of devices according to a data collection policy. The data is associated with device configuration, device state, or device behavior. A norm is established using the collected data. A different data collection policy is established based on the norm. Data is collected from a particular device according to the different data collection policy. The norm is compared to the data collected from the particular device. If there is a deviation outside of a threshold deviation between the norm and the data collected from the particular device, a message is transmitted to an administrator.

公开(公告)号：US20190392174A1

公开(公告)日：2019-12-26

申请号：US16564678

申请日：2019-09-09

Applicant: LOOKOUT, INC.

Inventor： Timothy Micheal Wyatt ,  Kevin Patrick Mahaffey ,  David Luke Richardson ,  Brian James Buck ,  Marc William Rogers

IPC: G06F21/62 ,  H04W12/08 ,  H04L29/06

Abstract: Systems and methods are disclosed for managing personal data on a mobile communications device in which personal data stored at one or more locations on the mobile communications device is identified by a policy management module on the mobile communications device. A policy is then created based on the identified personal data. The policy management module on the mobile communications device monitors at least the personal data stored in the one or more locations on the mobile communications device and detects attempts to access the monitored data.

公开(公告)号：US09860263B2

公开(公告)日：2018-01-02

申请号：US15498325

申请日：2017-04-26

Applicant: LOOKOUT, INC.

Inventor： Kevin Patrick Mahaffey ,  James David Burgess ,  David Golombek ,  Timothy Micheal Wyatt ,  Anthony McKay Lineberry ,  Kyle Barton ,  Daniel Lee Evans ,  David Luke Richardson ,  Ariel Salomon

IPC: H04L29/06 ,  G06F11/00 ,  G06F12/14 ,  G06F12/16 ,  G08B23/00

CPC classification number: G06F21/577 ,  G06F21/554 ,  H04L63/0227 ,  H04L63/123 ,  H04L63/1425 ,  H04L63/1433 ,  H04L63/166 ,  H04W12/02 ,  H04W12/12

Abstract: A server receives from a mobile communication device information about a data object (e.g., application) on the device when the device cannot assess the data object. The server uses the information along with other information stored at the server to assess the data object. Based on the assessment, the device may be permitted to access the data object or the device may not be permitted to access the data object. The other information stored at the server can include data objects known to be bad, data objects known to be good, or both.

公开(公告)号：US20170230397A1

公开(公告)日：2017-08-10

申请号：US15498325

申请日：2017-04-26

Applicant: LOOKOUT, INC.

Inventor： Kevin Patrick Mahaffey ,  James David Burgess ,  David Golombek ,  Timothy Micheal Wyatt ,  Anthony McKay Lineberry ,  Kyle Barton ,  Daniel Lee Evans ,  David Luke Richardson ,  Ariel Salomon

IPC: H04L29/06

CPC classification number: G06F21/577 ,  G06F21/554 ,  H04L63/0227 ,  H04L63/123 ,  H04L63/1425 ,  H04L63/1433 ,  H04L63/166 ,  H04W12/02 ,  H04W12/12

Abstract: A server receives from a mobile communication device information about a data object (e.g., application) on the device when the device cannot assess the data object. The server uses the information along with other information stored at the server to assess the data object. Based on the assessment, the device may be permitted to access the data object or the device may not be permitted to access the data object. The other information stored at the server can include data objects known to be bad, data objects known to be good, or both.

公开(公告)号：US09344431B2

公开(公告)日：2016-05-17

申请号：US14688292

申请日：2015-04-16

Applicant: LOOKOUT, INC.

Inventor： Kevin Patrick Mahaffey ,  David Golombek ,  Daniel Lee Evans ,  David Luke Richardson ,  Timothy Micheal Wyatt ,  James David Burgess ,  Anthony McKay Lineberry ,  Kyle Barton

IPC: H04L29/06 ,  G06F21/56 ,  H04L29/08 ,  G06F7/04 ,  G06F15/16 ,  G06F17/30 ,  G06F11/34

CPC classification number: H04L63/10 ,  G06F11/3409 ,  G06F21/564 ,  H04L63/08 ,  H04L67/32 ,  H04L67/42

Abstract: Disclosed herein is a system and method for efficiently gathering information about applications for mobile communications devices (e.g., smartphones, netbooks, and tablets) and using that information to produce assessments of the applications. To gather information, a server may send a request for application data to a mobile communications device. In response, the server may receive some but not all of the first-requested application data. The server may then a second request for application data to a second mobile communications device that also has access to the application. The server may receive application data from the second mobile communications device, and store the received first- and second-requested application data. The server then uses the stored application data to assess the application.

Abstract translation: 本文公开了一种用于有效地收集关于移动通信设备（例如，智能电话，上网本和平板电脑）的应用的信息并使用该信息来产生应用的评估的系统和方法。 为了收集信息，服务器可以向移动通信设备发送应用数据请求。 作为响应，服务器可以接收一些但不是全部的第一请求的应用数据。 然后，服务器可以向也可以访问应用的第二移动通信设备的应用数据的第二请求。 服务器可以从第二移动通信设备接收应用数据，并存储接收的第一和第二请求的应用数据。 然后，服务器使用存储的应用程序数据来评估应用程序。

公开(公告)号：US20160099963A1

公开(公告)日：2016-04-07

申请号：US14973636

申请日：2015-12-17

Applicant: LOOKOUT, INC.

Inventor： Kevin Patrick Mahaffey ,  Brian James Buck ,  William Robinson ,  John G. Hering ,  James David Burgess ,  Timothy Micheal Wyatt ,  David Golombek ,  David Luke Richardson ,  Anthony McKay Lineberry ,  Kyle Barton ,  Daniel Lee Evans ,  Ariel Salomon ,  Jonathan Pantera Grubb ,  Bruce Wootton ,  Timothy Strazzere ,  Yogesh Swami

IPC: H04L29/06 ,  G06F21/57 ,  G06F21/55

CPC classification number: G06F21/577 ,  G06F21/554 ,  H04L63/0227 ,  H04L63/123 ,  H04L63/1425 ,  H04L63/1433 ,  H04L63/166 ,  H04W12/02 ,  H04W12/12

Abstract: Methods are provided for determining an enterprise risk level, for sharing security risk information between enterprises by identifying a security response by a first enterprise and then sharing the security response to a second enterprise when a relationship database profile for the first collection indicates the security response may be shared. Methods are also provided for determining whether to allow a request from an originating device where the request may have been initiated by a remote device.

Abstract translation: 提供了用于确定企业风险级别的方法，用于通过识别第一企业的安全响应，然后当第一集合的关系数据库配置文件指示安全响应时，向第二企业共享安全响应，来共享企业之间的安全风险信息。 被分享。 还提供了用于确定是否允许来自始发设备的请求可能由远程设备发起的请求的方法。

公开(公告)号：US20150118992A1

公开(公告)日：2015-04-30

申请号：US14063342

申请日：2013-10-25

Applicant: Lookout, Inc.

Inventor： Timothy Micheal Wyatt ,  Kevin Patrick Mahaffey ,  David Luke Richardson ,  Brian James Buck ,  Marc William Rogers

IPC: H04W12/08

CPC classification number: G06F21/6245 ,  H04L63/20 ,  H04W12/08 ,  H04W88/02

Abstract: A system and method to create and assign a policy for a mobile communications device are disclosed. The policy may be created based on personal data associated with the mobile communications device. For example, known sources of personal data on the mobile communications device may be identified and a policy may be created based on the known personal data. The policy may then be used to identify additional personal data associated with the mobile communications device. Thus, the personal data associated with the mobile communications device may be monitored. If an application attempts to access the monitored personal data, the access will be detected.

Abstract translation: 公开了一种用于为移动通信设备创建和分配策略的系统和方法。 该策略可以基于与移动通信设备相关联的个人数据来创建。 例如，可以识别移动通信设备上的已知的个人数据源，并且可以基于已知的个人数据来创建策略。 然后可以使用该策略来识别与移动通信设备相关联的附加个人数据。 因此，可以监视与移动通信设备相关联的个人数据。 如果应用程序尝试访问受监视的个人数据，则会检测到访问。

公开(公告)号：US20220188425A1

公开(公告)日：2022-06-16

申请号：US17686218

申请日：2022-03-03

Applicant: Lookout, Inc.

Inventor： Timothy Micheal Wyatt ,  William Neil Robinson ,  Brian James Buck ,  Alex Richard Gladd

IPC: G06F21/57 ,  G06F8/61 ,  G06F21/55 ,  G06F21/56

Abstract: In one approach, a request for software evaluation is received by an evaluation server from a user device. The request relates to software to be installed on the user device. In response to receiving the request, the evaluation server sends data associated with the software to an authenticity server. The evaluation server receives, from the authenticity server, a result from the evaluation of the software. The evaluation server determines based on the result whether a security threat is associated with the software. In response to determining that there is a security threat, the evaluation server sends a communication to the user device that causes the software to be quarantined.