Cybereason‘s patented method involves generating baseline behavior on a single endpoint to accurately detect Pass-the-Hash attacks on a network. By comparing real-time system activity to baseline fingerprints, deviations are flagged as evidence of an ongoing attack. This method effectively identifies PTH attacks from known non-standard NTLM implementations. GlobalData’s report on Cybereason gives a 360-degree view of the company including its patenting strategy. Buy the report here.

According to GlobalData’s company profile on Cybereason, IoT network security was a key innovation area identified from patents. Cybereason's grant share as of April 2024 was 65%. Grant share is based on the ratio of number of grants to total number of patents.

Preventing pass-the-hash attacks on networked systems

Source: United States Patent and Trademark Office (USPTO). Credit: Cybereason Inc

A recently granted patent (Publication Number: US11916953B2) outlines a computer-implemented method designed to prevent malicious attacks on networked systems. The method involves generating baseline fingerprints of system activity, monitoring real-time system activity, and detecting deviations that may indicate a Pass-the-Hash (PTH) attack. By comparing real-time fingerprints to baseline fingerprints, the system can flag suspicious activity associated with the detected deviation, allowing for timely intervention to prevent potential security breaches.

Additionally, the patent details various aspects of the method, such as collecting information on operating system libraries, examining cryptographic techniques, detecting inconsistencies in process identities using HTTP user-agent strings, and identifying non-standard implementations of New Technology LAN Manager (NTLM). The method also includes provisions for receiving feedback on detected deviations to refine baseline fingerprints and improve the system's ability to distinguish between genuine threats and false positives. Overall, the patented method offers a comprehensive approach to enhancing network security by proactively identifying and responding to potential malicious attacks, ultimately safeguarding networked systems from cybersecurity threats.

To know more about GlobalData’s detailed insights on Cybereason, buy the report here.

Premium Insights


The gold standard of business intelligence.

Blending expert knowledge with cutting-edge technology, GlobalData’s unrivalled proprietary data will enable you to decode what’s happening in your market. You can make better informed decisions and gain a future-proof advantage over your competitors.


GlobalData, the leading provider of industry intelligence, provided the underlying data, research, and analysis used to produce this article.

GlobalData Patent Analytics tracks bibliographic data, legal events data, point in time patent ownerships, and backward and forward citations from global patenting offices. Textual analysis and official patent classifications are used to group patents into key thematic areas and link them to specific companies across the world’s largest industries.