Abstract: Arrangements for detecting unauthorized activity based on input method analysis and monitoring are provided. In some aspects, identity information associated with a user may be received and be stored. An input may be received from a computing device of the user. An input pattern of the received input may be determined. Using a machine learning model, the input pattern of the received input may be compared to input patterns of humans and input patterns of machines. Based on the comparison, it may be determined whether the user is a human user or a non-human user. Responsive to determining that the user is a non-human user, a request may be transmitted to the user to provide increased authentication credentials. Responsive to determining that the user is a human user, an identity of the user may be verified by comparing the input pattern of the received input to the stored identity information.

Abstract: Enterprise organizations often have thousands or tens of thousands of employees accessing various websites while conducting business. Users may inadvertently reach compromised websites, unsecure websites, and/or websites that include broken links, which may be used by bad actors to redirect users to websites that include malware threats. Accordingly, arrangements described herein provide for real-time detection and notification of non-functioning websites to enable users to avoid potential malicious acts associated with these non-functioning websites.

Abstract: Various aspects of the disclosure relate to automated identification of illicit transfers of cryptocurrency via mixing organizations. A cryptocurrency tracing system is configured to transfer a series of electronic transactions between known digital wallets via a suspect mixing organization. The cryptocurrency tracing system traces each cryptocurrency transaction through a plurality of mixing digital wallets to identify all possible mixing digital wallets being used by the mixing organization. Based on the identified mixing digital wallets, suspect digital wallets are identified and a second series of transactions are initiated between the known digital wallets via the mixing digital wallets. Based on these transfers, suspect digital wallets can be monitored to identify cryptocurrency transfer patterns representative of an attempt to obscure illicit funds transfers. Once identified, the suspect digital wallets may be automatically frozen.

Abstract: Aspects related to impersonation detection using an authentication enforcement engine are provided. An authentication enforcement platform may retrieve electronic signatures and device records. The platform may train an authentication enforcement engine, using the electronic signatures and device records, to generate similarity scores for transmissions. The platform may intercept a transmission. The platform may generate a similarity score for the transmission based on extracted information of the transmission. The platform may identify whether the similarity score satisfies a threshold. If the similarity score satisfies a threshold, the platform may update a device record, update the authentication enforcement engine, and route the transmission. If the similarity score fails to satisfy the threshold score, the platform may identify whether manual review is necessary. In some examples, the platform may initiate security actions responsive to the transmission.

Abstract: Methods for enhancing compatibility of a document of an entity with an organization's database on a computer server to facilitate detection of a fraudulent submission. Methods may include receiving a populated document in a first format from the entity, using a processor to digitize the document into a digital format, such as bytes, and further into a second format, where the first format may not be compatible with the database and the second format may be compatible with the database. Methods may include using the processor, optionally running a statistical model, to determine an entity identifier, a predicted value of a data field in the document, and whether there is a difference between the value in the predicted data field and a corresponding value in the populated document. Methods may include implementing a corrective action, such as raising a fraud alert at the organization, when there is a difference.

Abstract: Methods for automating a submission of a compliance filing from an organization to a regulatory authority. Methods may include enhancing compatibility of a document submitted by an entity to an organization with the latter's database to facilitate automated submission of a compliance document. Methods may include receiving a populated document in a first format from the entity, using a processor to digitize the document into a digital format, such as bytes, and further into a second format, where the first format may not be compatible with the database and the second format may be compatible with the database. Methods may include updating the database with data from the document. Methods may include using the processor to run a statistical model to determine an appropriate compliance filing relating to change in information about the entity, to populate the compliance filing, and to submit the completed compliance filing with the regulatory authority.

Abstract: Arrangements for detecting unauthorized activity based on input method analysis and monitoring are provided. In some aspects, identity information associated with a user may be received and be stored. An input may be received from a computing device of the user. An input pattern of the received input may be determined. Using a machine learning model, the input pattern of the received input may be compared to input patterns of humans and input patterns of machines. Based on the comparison, it may be determined whether the user is a human user or a non-human user. Responsive to determining that the user is a non-human user, a request may be transmitted to the user to provide increased authentication credentials. Responsive to determining that the user is a human user, an identity of the user may be verified by comparing the input pattern of the received input to the stored identity information.

Abstract: Arrangements for comprehensive threat mitigation are provided. In some aspects, an indication of threat or potential threat may be received from an external entity. In some examples, the threat may include a cybersecurity threat. In response to receiving the indication of threat, identifying data associated with the external entity may be extracted from the indication and used to retrieve pre-stored customizations associated with the desired mitigating actions of the external entity. The one or more mitigating actions may be identified and instructions to execute the one or more mitigating actions may be generated and transmitted to one or more computing devices for execution.

Abstract: Arrangements for comprehensive threat mitigation are provided. In some aspects, an indication of threat or potential threat may be received from an external entity. In some examples, the threat may include a cybersecurity threat. In response to receiving the indication of threat, identifying data associated with the external entity may be extracted from the indication and used to retrieve pre-stored customizations associated with the desired mitigating actions of the external entity. The one or more mitigating actions may be identified and instructions to execute the one or more mitigating actions may be generated and transmitted to one or more computing devices for execution.

Abstract: A method for analyzing messages for malicious content is provided. The method includes intercepting a message comprising a quick response (QR) code or a uniform resource locator (URL). The QR code corresponds to the URL. A status of the message is determined by determining a source of the message. The source of the message is compared to known malicious sources. In response to the source of the message not matching any of the known malicious sources, the source of the message is compared to known safe sources. In response to the source of the message not matching any of the known safe sources, the URL is compared to known malicious URLs. In response to the URL matching a respective one of the known malicious URLs, the status of the message is determined as malicious. The message is released to be displayed along with the status.

Abstract: A system for implementing token-based authentication of text messages comprises an entity server in communication with a token server. The entity server sends a first message to the token server to request for a security token. The first message includes entity and user information with a reason for generating the security token. The token server generates the security token and sends it to the entity server. The token server stores the security token and associated data in a memory of the token server. The entity server sends a second message and the security token to a user device. The token server receives the second message and the security token from the user device for verification, and determines that the security token associated with the second message matches the stored data in the memory. The token server sends a validation message to the user device that the second message is authenticated.

Abstract: Apparatus and methods for integrating data from multiple computer-based communication platforms and dynamically adjusting search results for search queries received from each of the computer-based communication platforms in response to unique security settings is provided. The methods may include a system. The system may include a centralized database for receive indicators of concern (“IOCs”) from the communication platforms and tag each IOC with an identifier associated with a communication platform from which the IOC was received. The system may also include an API for modifying search queries received from the communication platforms and applying the modified search queries to the centralized database. The system may further include a dynamic filter for dynamically adjusting search results based at least in part on an originator of a search query.

Abstract: Methods for enhancing compatibility of a document of an entity with an organization's database on a computer server. Methods may include using a computer hardware processor to digitize a document from a first format into a digital format, such as bytes, when the first format may not be compatible with the database. Methods may further include using a computer hardware processor to convert the document from a digital format into a second format, where the second format of the document may be compatible with the organization's database. Methods may include using a computer hardware processor to populate the database on the computer server with data from the document in the second format. Methods may further include storing the populated database and the document in the second format on the computer server.

Abstract: Methods for enhancing compatibility of a document of an entity with an organization's database on a computer server to facilitate detection of a fraudulent submission. Methods may include receiving a populated document in a first format from the entity, using a processor to digitize the document into a digital format, such as bytes, and further into a second format, where the first format may not be compatible with the database and the second format may be compatible with the database. Methods may include using the processor, optionally running a statistical model, to determine an entity identifier, a predicted value of a data field in the document, and whether there is a difference between the value in the predicted data field and a corresponding value in the populated document. Methods may include implementing a corrective action, such as raising a fraud alert at the organization, when there is a difference.

Abstract: Methods for enhancing compatibility of a document of an entity with an organization's database on a computer server to facilitate detection of a fraudulent submission. Methods may include receiving a populated document in a first format from the entity, using a processor to digitize the document into a digital format, such as bytes, and further into a second format, where the first format may not be compatible with the database and the second format may be compatible with the database. Methods may include using the processor, optionally running a statistical model, to determine an entity identifier, a predicted value of a data field in the document, and whether there is a difference between the value in the predicted data field and a corresponding value in the populated document. Methods may include implementing a corrective action, such as raising a fraud alert at the organization, when there is a difference.

Abstract: Methods for automating a submission of a compliance filing from an organization to a regulatory authority. Methods may include enhancing compatibility of a document submitted by an entity to an organization with the latter's database to facilitate automated submission of a compliance document. Methods may include receiving a populated document in a first format from the entity, using a processor to digitize the document into a digital format, such as bytes, and further into a second format, where the first format may not be compatible with the database and the second format may be compatible with the database. Methods may include updating the database with data from the document. Methods may include using the processor to run a statistical model to determine an appropriate compliance filing relating to change in information about the entity, to populate the compliance filing, and to submit the completed compliance filing with the regulatory authority.

Abstract: Methods for enhancing compatibility of a document of an entity with an organization's database on a computer server to facilitate detection of a fraudulent submission. Methods may include receiving a populated document in a first format from the entity, using a processor to digitize the document into a digital format, such as bytes, and further into a second format, where the first format may not be compatible with the database and the second format may be compatible with the database. Methods may include using the processor, optionally running a statistical model, to determine an entity identifier, a predicted value of a data field in the document, and whether there is a difference between the value in the predicted data field and a corresponding value in the populated document. Methods may include implementing a corrective action, such as raising a fraud alert at the organization, when there is a difference.

Abstract: Methods for enhancing compatibility of a document of an entity with an organization's database on a computer server. Methods may include using a computer hardware processor to digitize a document from a first format into a digital format, such as bytes, when the first format may not be compatible with the database. Methods may further include using a computer hardware processor to convert the document from a digital format into a second format, where the second format of the document may be compatible with the organization's database. Methods may include using a computer hardware processor to populate the database on the computer server with data from the document in the second format. Methods may further include storing the populated database and the document in the second format on the computer server.

Abstract: In a public setting, an audio/visual (A/V) obfuscation device can be used to provide privacy during a conversation occurring either in-person or via an electronic device. The A/V obfuscation device is configured to provide one or both of an electronic or physical barrier to ensure privacy for at least part of the conversation. The A/V obfuscation device provides audio masking and/or an optical block to impede third-parties from overhearing or observing the conversation. The A/V obfuscation device includes devices capable of capturing audio and/or video information of conversation participants and/or electronic devices. The captured audio and/or video information may be analyzed and processed to generate obfuscation audio and/or video signals to obscure at least a portion of aspects of the conversation.

Abstract: Apparatus and methods for integrating data from multiple computer-based communication platforms and dynamically adjusting search results for search queries received from each of the computer-based communication platforms in response to unique security settings is provided. The methods may include a system. The system may include a centralized database for receive indicators of concern (“IOCs”) from the communication platforms and tag each IOC with an identifier associated with a communication platform from which the IOC was received. The system may also include an API for modifying search queries received from the communication platforms and applying the modified search queries to the centralized database. The system may further include a dynamic filter for dynamically adjusting search results based at least in part on an originator of a search query.