Abstract: Typically, a business desires to track and monitor all applications run on its servers. Nonetheless, one or more unauthorized applications may be running on the business's servers, exposing the business to potential regulatory liability and security breaches. Apparatus and methods are provided for isolating and disabling one or more unauthorized applications running on a server. The apparatus may comprise a system including a content-filtering web proxy server configured to filter outgoing requests and data associated with the requests. The system may also include a remediation framework configured to monitor request data in a proxy log stored by the proxy server. The remediation framework may be triggered to perform remedial action when the remediation framework determines that a request and associated data, as stored in the proxy log, meets predetermined conditions. The remediation framework, when triggered, may execute steps to truncate functionality of the unauthorized applications.

Abstract: Embodiments of the present invention provide systems and methods for automated and intelligent analysis of information. The system receives interaction data, interaction metadata, and external information in order to identify parties of interactions, subjects of interactions, and infer relationships between parties and subjects based on the content, context, frequency, and amount of available interaction data. Weighted score scores are generated and used to rank the inferred relationships and determined relevance between parties and subjects. This data may be stored in a graphical database and later used to response to user data queries to facilitate collaboration.

Abstract: Aspects of the disclosure relate to a cognitive automation based compliance management system. A computing platform may receive, via a network, an alert notification indicative of a change to a legal framework applicable to an enterprise organization. Subsequently, the computing platform may, in response to the alert notification, detect a task that may be impacted by the change. Then, the computing platform may, upon detecting the task, identify at least one task parameter associated with the task. Then, the computing platform may compare the at least one task parameter with the change to determine whether the task is impacted by the change. Subsequently, the computing platform may, upon a determination that the task is impacted by the change, recommend, via the network, one or more actions associated with the task.

Abstract: Typically, a business desires to track and monitor all applications run on its servers. Nonetheless, one or more unauthorized applications may be running on the business's servers, exposing the business to potential regulatory liability and security breaches. Apparatus and methods are provided for isolating and disabling one or more unauthorized applications running on a server. The apparatus may comprise a system including a content-filtering web proxy server configured to filter outgoing requests and data associated with the requests. The system may also include a remediation framework configured to monitor request data in a proxy log stored by the proxy server. The remediation framework may be triggered to perform remedial action when the remediation framework determines that a request and associated data, as stored in the proxy log, meets predetermined conditions. The remediation framework, when triggered, may execute steps to truncate functionality of the unauthorized applications.

Abstract: Aspects of the disclosure relate to a cognitive automation based vendor compliance system. A computing platform may monitor, via an enterprise network, use of a software product hosted by an enterprise computing infrastructure. Subsequently, the computing platform may determine a product usage score, where the product usage score is indicative of a number network devices using the software product. Then, the computing platform may determine, for the software product, a product performance score, where the product performance score is indicative of one or more performance issues associated with the software product. Then, the computing platform may compare, for the software product, at least one of: (1) the product usage score to a product usage threshold, and (2) the product performance score to a product performance threshold. Subsequently, the computing platform may recommend, based on the comparing, one or more actions associated with the software product.

Abstract: Aspects of the disclosure relate to cognitive automation-based engine processing to propagate data across multiple systems via a private network to overcome technical system, resource consumption, and architecture limitations. Data to be propagated can be manually input or extracted from a digital file. The data can be parsed by analyzing for correct syntax, normalized into first through sixth normal forms, segmented into packets for efficient data transmission, validated to ensure that the data satisfies defined formats and input criteria, and distributed into a plurality of data stores coupled to the private network, thereby propagating data without repetitive manual entry. The data may also be enriched by, for example, correcting for any errors or linking with other potentially related data. Based on data enrichment, recommendations of additional target(s) for propagation of data can be identified. Reports may also be generated. The cognitive automation may be performed in real-time to expedite processing.

Abstract: Aspects of the disclosure relate to optimizing authentication and management of wireless devices in zero trust computing environments. In some embodiments, a computing platform may receive, from a user computing device, a connection request. Subsequently, the computing platform may generate, using an artificial-intelligence engine, a profile for the connection request. Based on the profile for the connection request generated using the artificial-intelligence engine, the computing platform may determine that the connection request is valid. In response to determining that the connection request is valid, the computing platform may establish a connection with the user computing device. Based on establishing the connection with the user computing device, the computing platform may assign an identity to the user computing device.

Abstract: A method for identifying and mitigating a negative sentiment trend derived from sentiment analysis is provided. The analysis is based on aggregating a plurality of biometric information artifacts obtained from consumers in a consumer center. The method includes harvesting the artifacts from the plurality of consumers, identifying a biometric information trend. The biometric trend includes a verbal communications trend recorded from among the plurality of consumers. The verbal communications are captured using microphone(s). The method may also include periodically updating the harvesting to update the biometric information trend. The method may also include determining, over the pre-determined amount of time, that the biometric information trend is a negative biometric information trend. In response to the determining the method may trigger, based at least in part on a slope of the negative biometric information trend, a mitigating response to the negative biometric information trend.

Abstract: A method for analyzing communications on the internet to identify a probability of an occurrence of an anomalous event relating to a pre-determined entity is provided. The method may include searching on the internet, to identify communications comprising negative sentiment associated with the pre-determined entity. When identified, the method may include further searching for communications including data regarding a physical location and an intended action, both being associated with the pre-determined entity. When one or more instances of these communications are identified, the method may include activating smart sensors embedded within proximity to the identified physical location to capture non-identifiable data and transmit the captured data to a data analysis engine to identify and confirm a probability of the occurrence of the anomalous event.

Abstract: Systems and methods for implementing sentiment analysis of computer code are provided. Developers who write source code may include comments or other natural language artifacts in the source code. These artifacts may be illustrative of current or legacy cybersecurity threats. Systems and methods may mine comments, and/or other code artifacts, for the dual purposes of cybersecurity threat detection and mitigation. Advanced code analytics may be leveraged for a deeper understanding of the sentiments expressed by the artifacts. Such sentiment may include negative sentiments expressed in error code selection and/or descriptions. All information retrieved is preferably human identity agnostic in line with personal data regulation compliance.

Abstract: A system for aggregating sentiment analysis of communications between a plurality of entity groups is provided. The system may include a plurality of entity groups. Each entity group may include one entity, two entities or a plurality of entities. The system may include a plurality of communications. Each of the communications may be transmitted from a first entity. A first entity group may include the first entity. The plurality of entity groups may include the first entity group. Each of the communications may be transmitted to a second entity. The second entity may be included in a second entity group. The second entity group may be included in the plurality of entity groups. The system may also include a sentiment score determination module. The sentiment score determination module may determine an aggregate sentiment score for the plurality of communications. The sentiment score may determine a communication threat level.

Abstract: A virtual reality system including a virtual reality user device with a display that presents a virtual reality environment to a user, an electronic transfer engine, and a virtual overlay engine. The virtual reality user devices receives network component data and security data for a network components. The virtual reality user devices generates overlays the security data onto the network component data to generate a virtual overlay.

Abstract: An augmented reality user device includes a display, a physical identification verification engine, a gesture confirmation engine, and in interface. The display overlays a virtual file document onto a tangible object. The physical identification verification engine receives biometric data for a witness and confirms the witness's identity. The display displays a gesture motion from the signor. The gesture capture engine captures a gesture motion from the witness. The gesture capture engine generates a witness digital signature based on the captured gesture motion from the witness. The gesture capture engine generates a witness transfer token, the witness transfer token comprising the witness digital signature based on the captured gesture from the witness and the witness identity confirmation token. The interface communicates the witness transfer token to a server.

Abstract: Aspects of the disclosure relate to processing systems that implement an enhanced reality device to facilitate transactions at a screen-less automated teller machine (ATM). A computing platform may receive a request to initiate a transaction with a screen-less automated ATM. Based on the request to initiate the transaction, the computing platform may send pre-transaction interface information and commands directing the enhanced reality device to generate a pre-transaction interface. The computing platform may receive an authentication request from the screen-less ATM indicating its availability and requesting authentication information. In response to validating the authentication information, the computing platform may generate transaction interface information. The computing platform may send the transaction interface information to the enhanced reality device. The computing platform may receive a transaction completion indication from the screen-less ATM.

Abstract: Aspects of the disclosure relate to processing systems that implement an enhanced reality device to facilitate transactions at a screen-less automated teller machine (ATM). A computing platform may receive a request to initiate a transaction with a screen-less automated ATM. Based on the request to initiate the transaction, the computing platform may send pre-transaction interface information and commands directing the enhanced reality device to generate a pre-transaction interface. The computing platform may receive an authentication request from the screen-less ATM indicating its availability and requesting authentication information. In response to validating the authentication information, the computing platform may generate transaction interface information. The computing platform may send the transaction interface information to the enhanced reality device. The computing platform may receive a transaction completion indication from the screen-less ATM.

Abstract: Aspects of the disclosure relate to cognitive automation-based engine processing to propagate data across multiple systems via a private network to overcome technical system, resource consumption, and architecture limitations. Data to be propagated can be manually input or extracted from a digital file. The data can be parsed by analyzing for correct syntax, normalized into first through sixth normal forms, segmented into packets for efficient data transmission, validated to ensure that the data satisfies defined formats and input criteria, and distributed into a plurality of data stores coupled to the private network, thereby propagating data without repetitive manual entry. The data may also be enriched by, for example, correcting for any errors or linking with other potentially related data. Based on data enrichment, recommendations of additional target(s) for propagation of data can be identified. Reports may also be generated. The cognitive automation may be performed in real-time to expedite processing.

Abstract: Apparatus and methods are provided for graphically defining a real-world cybersecurity protocol of an entity. The graphical platform includes searchable, manipulatable, graphs mapping cybersecurity threats. Manipulating nodes and relationships within the graphs translates into real-time modification of a cybersecurity protocol in effect for the entity. An ability to map known cybersecurity threats and analyze them (even according to known frameworks) may streamline and integrate efforts of cybersecurity defense teams. Graphical representation of a security protocol facilitates proactive threat hunting as well as expediting incident response activities by providing evidence-based pathways to inform impact analysis and source event analysis.

Abstract: Aspects of the disclosure relate to searching a dual database graph. The dual database graph is resident on a dual database graph platform. The platform includes two or more nodes interconnected by one or more edges. The graph database stores graph data corresponding to the graph(s) and a relational database for storing metadata corresponding to the graph(s). The method includes receiving as input a search criterion. The search criterion may include a plurality of data points corresponding to a relational database node profile or a relational database subgraph profile. The platform may search the relational database for a subset of graphs that each includes a relational database node or a relational database subgraph that matches the node profile or subgraph profile of the search criterion. The platform may then retrieve a relational database node or a relational database subgraph that matches the node profile or subgraph profile.

Abstract: A method is provided for preventing an IoT device within a trusted system from being harnessed in a malicious DDOS attack. The method may include bombarding the IoT device. The bombardment may originate from within the system, and may inundate the IoT device with harmless packets in a manner mimicking a traditional DOS attack. The inundating may utilize the resources of the IoT device to respond to the bombardment, and may thereby render the IoT device unavailable for fraudulent uses.

Abstract: A system for authorizing an electronic transaction in an augmented reality environment comprises an augmented reality user device and an authentication server. The augmented reality user device includes a display that overlays virtual objects onto a field of view of the user. The user device receives a request to verify information about a payment card used in an electronic transaction. The request includes a virtual authentication object, which is a virtual representation of an object capable of being manipulated by the user in a particular sequence to enter an authentication code. The user device displays the virtual authentication object to the user and detects gestures performed on the virtual authentication object. The user device sends the detected gestures to the authentication server. The authentication server determines the authentication code using the virtual authentication object and the detected gestures, and uses it to authorize the transaction.