METHOD OF DETECTING FRAUDULENT ACTIVITY ON USER DEVICE Russian patent published in 2017 - IPC G06F21/30 H04W12/12 

FIELD: information technology.

SUBSTANCE: method for detecting fraudulent activity on a user device when a user's computing device interacts with a remote bank server comprises the steps of: a) collecting, using the behaviour determination tool, user behaviour data during user's interaction with at least one group of graphical user interface elements, which are used for interaction with remote bank server. The purpose of interaction with remote bank server is to implement a transaction involving remote bank server. The information about the user's behaviour is information that is obtained by at least the input devices of the computing device; b) calculating, using the behaviour classification tool, the coefficient of anomaly of the user behaviour for each group of graphical user interface elements, the user's behaviour data during the interaction with which was collected in the previous step. The anomaly coefficient of user's behaviour is a numerical value, the larger is that, the less characteristic is the behaviour, the data about which was collected in the previous stage, to said user; c) detecting, by means of decision-making aids, fraudulent activity when the user device interacts with remote bank server, if the combination of anomalous behaviour coefficients of the user's behaviour computed in the previous step does not exceed a specified threshold value; d) blocking, by means of decision-making aids, the interaction of user's device with remote bank server if fraudulent activity was detected when user's device interacts with remote bank server.

EFFECT: protecting remote bank server from fraudulent activity, which is achieved by blocking the interaction of the user's device with the remote bank server, if fraudulent activity was detected during the interaction of the user's device with the remote bank server.

2 cl, 4 dwg