US 9,813,431 B2
Browser initiated reporting of fraud
Steven W. Parkinson, San Jose, CA (US)
Assigned to Red Hat, Inc., Raleigh, NC (US)
Filed by Steven W. Parkinson, San Jose, CA (US)
Filed on May 31, 2007, as Appl. No. 11/809,251.
Prior Publication US 2008/0301309 A1, Dec. 4, 2008
Int. Cl. G06F 15/16 (2006.01); H04L 29/06 (2006.01); G06F 21/62 (2013.01); H04L 29/08 (2006.01)
CPC H04L 63/1416 (2013.01) [G06F 21/6272 (2013.01); H04L 67/22 (2013.01); G06F 2221/2101 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A method comprising:
receiving, at a processing device, a source indicator from each of a plurality of remote client applications, wherein the source indicator comprises a first address of a website;
determining a first domain name for the website in view of the first address;
accessing the website using the source indicator to retrieve one or more pages associated with the website;
traversing the one or more pages to extract user information collected by the one or more pages and a second address comprising a destination email address including a second domain name to which the one or more pages send the user information;
in response to determining the second domain name is different than the first domain name, detecting, by the processing device, from each of the plurality of remote client applications, a respective indication of a fraudulent activity, wherein the fraudulent activity comprises forwarding the user information to the second address;
storing, by the processing device, the respective indications of the fraudulent activity in a database associated with the website and aggregating the respective indications with previously received indications of the fraudulent activity from other remote client applications;
generating, by the processing device, a value representing a level of safety associated with the website, the value generated in view of the aggregated indications of the fraudulent activity;
providing, by the processing device, the value representing the level of safety associated with the website to one of the plurality of remote client applications, the one of the plurality of remote client applications to compare the value with a user-created profile to determine whether the website is safe; and
providing, by the processing device, a description of the fraudulent activity for the website derived from data provided by the plurality of remote client applications.