Abstract: A computer system configured to determine safety of a suspected website is provided. The computer system includes a memory and at least one processor coupled to the memory. The at least one processor is configured to receive a request to visit the suspected website; send an incorrect password to the suspected website; receive a reply from the suspected website; and determine, based on the reply to the incorrect password, whether to execute a precautionary operation. The system may proceed with the request responsive to the reply including an error notification, as identified based on one or more of: a Document Object Model (DOM) tag; a re-appearance of a sign-in control; or an Application Programming Interface (API) call. Alternatively, the system may abandon the request responsive to the reply being affirmative, for example including a prompt or input field for a one-time password.

Abstract: A technique provides access to content within a computing environment. The technique involves identifying a network address to a resource which is currently blocked from being accessed via the network address due to operation of a content filter. The technique further involves, based on previously accessed content, modifying the operation of the content filter to unblock access to the resource via the network address. The technique further involves, after the operation of the content filter is modified to unblock access to the resource via the network address, permitting access to the resource via the network address.

Abstract: Systems and methods for preventing phishing attacks are provided. For example, the computer system includes at least one processor that is configured to recognize a uniform resource locator (URL) to which a web browser is navigating as a URL associated with a website for which phishing protection is to be provided, the recognition based on an absence of the URL from a history of visited URLs for which a user has previously visited, monitor user input into one or more data fields associated with the website, determine whether the user input into the one or more data fields includes automatically generated one-time password (OTP) information by comparing the user input against one or more OTP information characteristics, and perform a security action in response to determining user entry of OTP information.

Abstract: A computing device includes a memory and a processor configured to receive credentials stored on a client device for a website responsive to the client device initiating a launch of the website through a first browser at the client device. The processor runs a second browser to launch the website for display at the client device using the received credentials and some state information is synchronized between them for the duration of the session. The second browser isolates the website from access to other data of the client device.

Abstract: A contextual authentication method includes receiving a request to launch a web service and causing the web service to be launched on a remote browser. When a security event is detected, a security key obtained, based on a context of a client computing system, from a near-field communication (NFC) device connected to a mobile device. The security key is requested and received from the NFC device via the mobile device. The security key is delivered to the web service via the remote browser.

Abstract: A method may for audio quality verification may include generating a first transcript of a first audio data captured at a first client device engaged in a web conference session with a second client device. A second transcript of a second audio data received and/or output at the second client device may be generated and analyzed relative to the first transcript. In the event an above-threshold difference is detected between the first transcript and the second transcript, a notification may be generated for display at the first client device. The notification may indicate that the audio quality at the second client device fails to satisfy a quality threshold. Moreover, in some cases, the notification may identify portions of the first audio data that was not output at the second client device with sufficient audio quality, thereby enabling a repeat of those portions of the first audio data.

Abstract: A method for generating a microapp recommendation comprises receiving, at a client computing device, microapp metadata that characterizes multiple microapps. The method further comprises using a resource access application executing at the client computing device to launch a networked application that displays a user interface. The method further comprises calculating a composite correlation score for a particular microapp. The composite correlation score quantifies correlation between functionality provided by the user interface of the networked application and functionality provided by the particular microapp. The method further comprises using the composite correlation score to make a determination with respect to whether the particular microapp should be recommended to a user of the client computing device.

Abstract: Described herein are systems and methods for transferring data corresponding to scannable codes. A first device can transmit, responsive to identifying that a user of the first device copied data, an indication to a service that the first device copied the data. The indication can cause the service to enable a second device to paste the data copied from the first device. The first device can receive a request to copy the data from the first device to paste on the second device of the user. The first device can display, responsive to the request, a scannable code corresponding to the copied data to be scanned by a camera of the second device to enable the user of the second device to paste the copied data.

Abstract: In one aspect, an example methodology implementing the disclosed techniques includes, by a computing device, responsive to a user requesting authorization to access an application, segmenting a string of content into a plurality of substrings of different lengths, the string of content being an input to access the application. The method also includes, responsive to a determination that data in a first data structure represents a first substring of the plurality, identifying a length of another substring and at least one type of character present within that substring based on the data in the first data structure, determining a risk of unauthorized use of the string of content based on the identified length and the at least one type of character present within that substring, and allowing access to the application using the string of content based on the determined risk.

Abstract: Described embodiments provide systems and methods for adaptive data loss prevention. A first computing device may generate, according to a first response from a server and an output from a second computing device identifying sensitive data in the first response, at least one rule regarding the sensitive data, and at least one template for data loss prevention (DLP) responses. The first computing device may determine, according to the at least one rule, a match to a second response from the server, that includes the sensitive data. The first computing device may provide, according to the match and the at least one template, a DLP response to redact the sensitive data of the second response, in place of a DLP output from the second computing device identifying the sensitive data in the second response.

Abstract: SEQ CHAPTER \h \r 1 SEQ CHAPTER \h \r 1 SEQ CHAPTER \h \r 1 SEQ CHAPTER \h \r 1A computing system includes a virtual server providing virtual computing sessions to be accessed by client computing devices. Collaboration apps operating in the virtual computing sessions allow users to participate in a collaboration session with other users. Each client computing device includes a processor to enable app protection to prevent an unauthorized transfer of data by a user of the client computing device when participating in a collaboration session. The virtual server determines when the user of one of the client computing devices is to be a presenter within the collaboration session, and in response to one of the users being the presenter while the other users are non-presenters, the virtual computing session disables app protection in the presenter's client computing device for the presenter to share their screen with the non-presenters.

Abstract: Spatial audio processing allows for the replication of real-world audio behavior. In some cases, audio sources may be associated with respective spatial audio areas that define which other individuals or objects are recipients of audio generated by the respective audio source. For example, individuals or objects within a spatial audio area will receive audio generated by an associated audio source, but not individuals or objects outside of that spatial audio area. These spatial audio areas may be dynamically re-shaped, re-sized, and/or re-located based on contextual analysis includes clustering analysis and evaluating ambient attributes and user intent. Contextual cues may include grouping of audio sources or a purpose of the environment, while ambient attributes may include characteristics of environmental objects (e.g., furniture) as well as temperature, ambient noise levels, and the like. Additionally, in some examples, user intent may be discerned based on movements and audio content.

Abstract: A technique for applying signatures to documents stores a user signature in a first device and selectively releases the user signature for incorporation into documents only after performing validation. The validation includes the first device scanning a machine-readable code displayed by a second device. The first device and the second device participate in respective sessions with an online system, which stores a document to be signed. The first device extracts information from the machine-readable code and attempts to validate that information with the online system. If the validation is successful, the first device may release the user signature, e.g., by sending the user signature to the online system for incorporation into the document.

Abstract: Methods and systems for augmented key generation are described herein. A computing system may receive, from a first user device, an image of a keyboard of a second user device. The computing platform may detect, based on the image, a first missing key of the keyboard, and may generate an augmented version of the first missing key. The computing platform may send, to the first user device, the augmented version of the first missing key and commands directing the first user device to display the augmented version of the first missing key, which may cause the first user device to display the augmented version of the first missing key. Selection of the augmented version of the first missing key on the first user device may cause display of a character, corresponding to the first missing key, to be displayed at the second user device.

Abstract: Examples described herein attempt to mitigate risk associated with digitally storing sensitive information (e.g., passwords) in insecure applications and transferring the stored sensitive information to a sensitive information field (e.g., a password field in a login page). A computing device may detect a transfer to a sensitive field. The computing device may determine if a source application for the transfer is an insecure application. If the source application is an insecure application, the computing device may provide a risk mitigation action. The computing device may also transmit to an analytic server telemetry data comprising the identification of the source application, identification of a target application containing the sensitive information field, and a username associated with the computing device. The analytic server may calculate risk score based on the received telemetry data and provide further risk mitigation actions to the computing device.

Abstract: Systems and methods for supporting multiple local browser tabs and windows during a remote browser session are described. A remote browser session may be, in some examples, a remote session accessed in a local browser tab with inputs to the remote session launching web pages and applications on a server rather than locally on a device. In some remote browser session experiences, further interactions with the launched web pages and applications may be limited to being within the local browser tab. The user can instead utilize functionality and methods where applications and browser windows can be started in or moved to individual tabs or windows of the local browser. Then those different tabs and windows may be selected to switch between applications and/or web sites that are running in a shared remote session on a server saving server resources.

Abstract: A computer system is provided. The computer system includes a memory and at least one processor coupled to the memory and configured to receive a sequence of characters within a field of a web browser, the field being associated with a password entry field served to the web browser from a website. The processor is further configured to store the received sequence of characters and send an alternate sequence of characters to the website. The processor is further configured to encrypt the received sequence of characters to generate a received encrypted partial password and compare the received encrypted partial password to one or more entries in a list of encrypted partial passwords. The processor is further configured to, in response to the comparison resulting in a difference, delete the previously sent alternate sequence of characters, and send the stored sequence of characters to the website.

Abstract: Systems and methods including notification techniques for sharing information related to detected dialogs on secondary computing devices associated with a user are provided. For example, a system can include a user interface (UI) monitor on a first client computing device configured to detect a dialog and send an indication of the dialog to a workspace backend. The workspace backend can facilitate communication between the first client computing device and one or more secondary computing devices associated with the user such that the user receives notifications of dialogs displayed on the first client computing device on the one or more secondary computing devices. The user has the option of responding to the dialog on a secondary computing device, and the workspace backend facilitates transmission of the user response on the secondary computing device back to the first client computing device.

Abstract: Methods and systems for unifying display of virtual resources are described herein. A virtual session between a client device and a server device may be established. During the virtual session, a user may request, via the client device, to access a uniform resource locator (URL) via a browser associated with the server device. The URL request may be redirected. For example, the client device may receive, from the server device, a request to access the URL via a different browser. The client device may determine another browser with which to access the URL, and the URL may be launched via the other browser. The client device may generate a unified display of the URL launched via the other browser and one or more other URLs.

Abstract: A method, a system, and a computer program product for managing connections of user devices in a network-based conference. A context associated with a transmission of a first data stream in the plurality of data streams to a first user device is monitored. A context associated with a transmission of a second data stream to a second user device is monitored. The first and second user devices are communicatively connected to a network-based conference. Based on the monitoring of the contexts associated with respective transmissions of the first and second data streams, at least one first parameter of the first data stream to the first user device and at least one second parameter of the second data stream to the second user device are adjusted. The adjusted first data stream to the first user device and the adjusted second data stream to the second user device are transmitted.