Patents by Inventor Daniel L. Sullivan
Daniel L. Sullivan has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Publication number: 20260099600Abstract: A method of detecting the onset of a ransomware attack is presented. In an example embodiment, file backup metadata for each of a plurality of computing devices is accessed and analyzed to detect anomalous file backup activity of individual ones of the computing devices. A determination is made as to whether the detected anomalous file backup activity of at least some of the computing devices is correlated in time. File description metadata for each of the computing devices is also accessed and analyzed to identify files in the computing devices that are anomalous to other files in the computing devices. A determination whether a ransomware attack has begun is based on a determination that the detected anomalous file backup activity of at least some of the computing devices is correlated in time, as well as on the identified anomalous files.Type: ApplicationFiled: December 2, 2025Publication date: April 9, 2026Inventors: Ajaykumar Rajasekharan, Matthew Mills Parker, Daniel L. Sullivan
-
Patent number: 12511385Abstract: A method of detecting the onset of a ransomware attack is presented. In an example embodiment, file backup metadata for each of a plurality of computing devices is accessed and analyzed to detect anomalous file backup activity of individual ones of the computing devices. A determination is made as to whether the detected anomalous file backup activity of at least some of the computing devices is correlated in time. File description metadata for each of the computing devices is also accessed and analyzed to identify files in the computing devices that are anomalous to other files in the computing devices. A determination whether a ransomware attack has begun is based on a determination that the detected anomalous file backup activity of at least some of the computing devices is correlated in time, as well as on the identified anomalous files.Type: GrantFiled: April 22, 2024Date of Patent: December 30, 2025Assignee: CrashPlan Group LLCInventors: Ajaykumar Rajasekharan, Matthew Mills Parker, Daniel L. Sullivan
-
Publication number: 20240346144Abstract: A method of detecting the onset of a ransomware attack is presented. In an example embodiment, file backup metadata for each of a plurality of computing devices is accessed and analyzed to detect anomalous file backup activity of individual ones of the computing devices. A determination is made as to whether the detected anomalous file backup activity of at least some of the computing devices is correlated in time. File description metadata for each of the computing devices is also accessed and analyzed to identify files in the computing devices that are anomalous to other files in the computing devices. A determination whether a ransomware attack has begun is based on a determination that the detected anomalous file backup activity of at least some of the computing devices is correlated in time, as well as on the identified anomalous files.Type: ApplicationFiled: April 22, 2024Publication date: October 17, 2024Inventors: Ajaykumar Rajasekharan, Matthew Mills Parker, Daniel L. Sullivan
-
Patent number: 11995186Abstract: A method of detecting the onset of a ransomware attack is presented. In an example embodiment, file backup metadata for each of a plurality of computing devices is accessed and analyzed to detect anomalous file backup activity of individual ones of the computing devices. A determination is made as to whether the detected anomalous file backup activity of at least some of the computing devices is correlated in time. File description metadata for each of the computing devices is also accessed and analyzed to identify files in the computing devices that are anomalous to other files in the computing devices. A determination whether a ransomware attack has begun is based on a determination that the detected anomalous file backup activity of at least some of the computing devices is correlated in time, as well as on the identified anomalous files.Type: GrantFiled: December 22, 2022Date of Patent: May 28, 2024Assignee: CrashPlan Group LLCInventors: Ajaykumar Rajasekharan, Matthew Mills Parker, Daniel L. Sullivan
-
Publication number: 20230259623Abstract: A method of detecting the onset of a ransomware attack is presented. In an example embodiment, file backup metadata for each of a plurality of computing devices is accessed and analyzed to detect anomalous file backup activity of individual ones of the computing devices. A determination is made as to whether the detected anomalous file backup activity of at least some of the computing devices is correlated in time. File description metadata for each of the computing devices is also accessed and analyzed to identify files in the computing devices that are anomalous to other files in the computing devices. A determination whether a ransomware attack has begun is based on a determination that the detected anomalous file backup activity of at least some of the computing devices is correlated in time, as well as on the identified anomalous files.Type: ApplicationFiled: December 22, 2022Publication date: August 17, 2023Inventors: Ajaykumar Rajasekharan, Matthew Mills Parker, Daniel L. Sullivan
-
Patent number: 11611574Abstract: Disclosed in some examples are systems, methods, and machine readable mediums for identifying insider threats by determining file system element activity models that correlate to undesirable behavior and then utilizing the determined model to detect insider threats. Events involving file system elements of a client computing device (e.g., a network endpoint) may be monitored by a file system element monitoring application on the client computing device. The values of these signals are aggregated across all events of the same type that have occurred within a predetermined time window (e.g., an hour) for a particular client computing device. Each time an aggregated signal has a value over the threshold, an anomaly is recorded. Anomaly counts for each signal are then calculated as the aggregate number of anomalies for a particular signal over a second time period, the span of which is determined by the generation of first anomaly to the close of an alert by the network monitor.Type: GrantFiled: August 2, 2017Date of Patent: March 21, 2023Assignee: Code42 Software, Inc.Inventors: Ajaykumar Rajasekharan, Matthew Mills Parker, Daniel L. Sullivan
-
Patent number: 11537713Abstract: A method of detecting the onset of a ransomware attack is presented. In an example embodiment, file backup metadata for each of a plurality of computing devices is accessed and analyzed to detect anomalous file backup activity of individual ones of the computing devices. A determination is made as to whether the detected anomalous file backup activity of at least some of the computing devices is correlated in time. File description metadata for each of the computing devices is also accessed and analyzed to identify files in the computing devices that are anomalous to other files in the computing devices. A determination whether a ransomware attack has begun is based on a determination that the detected anomalous file backup activity of at least some of the computing devices is correlated in time, as well as on the identified anomalous files.Type: GrantFiled: August 2, 2017Date of Patent: December 27, 2022Assignee: CRASHPLAN GROUP LLCInventors: Ajaykumar Rajasekharan, Matthew Mills Parker, Daniel L. Sullivan
-
Publication number: 20190044963Abstract: Disclosed in some examples are systems, methods, and machine readable mediums for identifying insider threats by determining file system element activity models that correlate to undesirable behavior and then utilizing the determined model to detect insider threats. Events involving file system elements of a client computing device (e.g., a network endpoint) may be monitored by a file system element monitoring application on the client computing device. The values of these signals are aggregated across all events of the same type that have occurred within a predetermined time window (e.g., an hour) for a particular client computing device. Each time an aggregated signal has a value over the threshold, an anomaly is recorded. Anomaly counts for each signal are then calculated as the aggregate number of anomalies for a particular signal over a second time period, the span of which is determined by the generation of first anomaly to the close of an alert by the network monitor.Type: ApplicationFiled: August 2, 2017Publication date: February 7, 2019Inventors: Ajaykumar Rajasekharan, Matthew Mills Parker, Daniel L. Sullivan
-
Publication number: 20190042744Abstract: A method of detecting the onset of a ransomware attack is presented. In an example embodiment, file backup metadata for each of a plurality of computing devices is accessed and analyzed to detect anomalous file backup activity of individual ones of the computing devices. A determination is made as to whether the detected anomalous file backup activity of at least some of the computing devices is correlated in time. File description metadata for each of the computing devices is also accessed and analyzed to identify files in the computing devices that are anomalous to other files in the computing devices. A determination whether a ransomware attack has begun is based on a determination that the detected anomalous file backup activity of at least some of the computing devices is correlated in time, as well as on the identified anomalous files.Type: ApplicationFiled: August 2, 2017Publication date: February 7, 2019Inventors: Ajaykumar Rajasekharan, Matthew Mills Parker, Daniel L. Sullivan
-
Publication number: 20040049437Abstract: A transaction tax calculating system using a hybrid method of referring to tables providing rules for state and local tax brackets, rounding and exceptions and applying those rounding and bracket tax calculation rules in conjunction for rounding.Type: ApplicationFiled: September 11, 2002Publication date: March 11, 2004Applicant: govONE Solutions, LPInventors: Mikhail S. Brikman, Daniel L. Sullivan
-
Publication number: 20030093320Abstract: A transaction tax compliance system having a transaction tax compliance processor which receives transaction information from selling/purchasing input systems and returns, stores, and reports the tax liabilities caused by the transaction event.Type: ApplicationFiled: November 18, 2002Publication date: May 15, 2003Inventor: Daniel L. Sullivan
-
Publication number: 20030055754Abstract: A transaction tax compliance system having a transaction tax compliance processor which receives transaction information from selling/purchasing input systems and returns, stores, and reports the tax liabilities caused by the transaction event.Type: ApplicationFiled: September 10, 2002Publication date: March 20, 2003Applicant: govONE Solutions, LPInventor: Daniel L. Sullivan