Mark K Shull, Age 7212050 SE Virginia Ct, Sandy, OR 97055

7493403, Feb 17, 2009

Mar 13, 2007

11/685311

Mark Shull - Chevy Chase MD, US
Ihab Shraim - Germantown MD, US
David Silver - Sparks NV, US
Allen Enfant Chen - Germantown MD, US
Elisa Cooper - Boise ID, US

Markmonitor Inc. - Boise ID

G06F 15/16

709229, 709245

Embodiments of the invention provide systems and methods for validating ownership of a domain name. According to one embodiment, a validating ownership of a domain name can comprise retrieving one or more domain name ownership records. For example, the one or more domain name ownership records comprise Who Is records. Validity of the one or more domain name records can be confirmed with a designated domain manager. According to one embodiment, confirming validity of the one or more domain name records with the designated domain manager can comprise authenticating the designated domain manager based on a certificate provided by the designated domain manager.

7761583, Jul 20, 2010

Jan 6, 2009

12/349042

Mark Shull - Chevy Chase MD, US
Ihab Shraim - Germantown MD, US
David Silver - Sparks NV, US
Allen Enfant Chen - Germantown MD, US
Elisa Cooper - Boise ID, US

MarkMonitor Inc. - Boise ID

G06F 15/16

709229, 726 2, 713170, 709225

Embodiments of the invention provide systems and methods for validating ownership of a domain name. According to one embodiment, a validating ownership of a domain name can comprise retrieving one or more domain name ownership records. For example, the one or more domain name ownership records comprise Who Is records. Validity of the one or more domain name records can be confirmed with a designated domain manager. According to one embodiment, confirming validity of the one or more domain name records with the designated domain manager can comprise authenticating the designated domain manager based on a certificate provided by the designated domain manager.

7870608, Jan 11, 2011

Nov 23, 2004

10/996566

Ihab Shraim - Germantown MD, US
Mark Shull - Chevy Chase MD, US

MarkMonitor, Inc. - Boise ID

G06F 12/14

726 22, 726 26

Various embodiments of the invention provide solutions (including inter alia, systems, methods and software) for dealing with online fraud. In particular, various embodiments of the invention can provide early warning of an online fraud, for instance by finding suspicious domains and/or monitoring those domains for activity. If a suspicious domain shows activity (for example, if a web site associated with the domain becomes active), one or more actions may be taken with respect to the domain.

7913302, Mar 22, 2011

Nov 23, 2004

10/996993

Ihab Shraim - Germantown MD, US
Mark Shull - Chevy Chase MD, US

MarkMonitor, Inc. - Boise ID

G06F 11/00
G06F 12/14
G06F 12/16
G08B 23/00

726 22, 713170

Various embodiments of the invention provide solutions (including inter alia, systems, methods and software) for dealing with online fraud. In particular, various embodiments of the invention provide advanced responses to an identified instance of online fraud. Such advanced responses can incorporate one or more of a variety of strategies for defeating an attempt by a server to filter and/or otherwise avoid responses to its fraudulent activity. Merely by way of example, in accordance with some embodiments, one or more HTTP responses to a server's request (such as an online form, etc. ) may be submitted and/or transmitted for reception by the server. In some cases, each of the submitted responses may appear to comprise valid information responsive to the server's request. In other cases, one or more countermeasures may be implemented to defeat an attempt by a phisher (or any other operator of an illegitimate server) to filter responses.

7992204, Aug 2, 2011

Nov 23, 2004

10/996567

Ihab Shraim - Germantown MD, US
Mark Shull - Chevy Chase MD, US

Markmonitor, Inc. - Boise ID

G06F 11/00

726 22, 726 26

Solutions (including inter alia, systems, methods and software) for dealing with online fraud. Certain of these solutions provide enhanced responses to an identified instance of online fraud. Such enhanced responses can incorporate one or more of a variety of strategies for defeating an attempt by a server to filter and/or otherwise avoid responses to its fraudulent activity. Merely by way of example, responses may be disguised (e. g. , by transmitting the responses from a variety of computers, by transmitting responses that appear to originate from a computer different than the actual source of the responses, etc. ). In some cases, a response strategy may be implemented that forces the server (and/or an operator thereof) to choose between accepting the responses and blocking potential responses from the targets of the fraudulent scheme.

8041769, Oct 18, 2011

Nov 23, 2004

10/996568

Ihab Shraim - Germantown MD, US
Mark Shull - Chevy Chase MD, US

Markmonitor Inc. - Boise ID

G06F 15/16

709206

Various embodiments of the invention provide solutions (including inter alia, systems, methods and software) for dealing with online fraud. In particular, various embodiments of the invention provide ways to incite unsolicited email messages (such as spam messages, phish messages, etc. ). In accordance with some embodiments, a bait email address may be planted in a particular location on the Internet. In particular embodiments, the location of the planted email address may be tracked in order to determine which locations are relatively more likely to generate unsolicited email messages. In other embodiments, domains likely to host the bait email addresses receiving unsolicited messages may be obtained. In some cases, unsolicited messages may be analyzed and/or otherwise processed to determine whether the messages are possibly associated with a fraudulent activity. Such analysis may lead to the investigation of one or more web sites and/or to the initiation of a response against a fraudulent activity.

2005025, Nov 17, 2005

May 2, 2004

10/709398

Ihab Shraim - Germantown MD, US
Mark Shull - Chevy Chase MD, US
James Hepworth - Meridian ID, US

eMarkMonitor, Inc. - Boise ID

G06F015/16

726022000

Various embodiments of the invention provide solutions, including systems, methods and software, for dealing with unethical uses of electronic mail, and in particular, with attempts to use email messages to facilitate online fraud. Some embodiments function to gather a set of at least one incoming email message, analyze that incoming message, categorize the message as a categorize the incoming email message as a fraudulent email message. Other embodiments can investigate the uniform resource locator included with the incoming email message to determine information about a server hosting the web site referenced by the uniform resource locator and pursue a response to a fraudulent attempt to collect personal information. In some cases, responses may be administrative and/or technical in nature.

2006006, Mar 30, 2006

Nov 23, 2004

10/997626

Ihab Shraim - Germantown MD, US
Mark Shull - Chevy Chase MD, US

MarkMonitor, Inc. - Boise ID

G06F 17/00

707102000

Various embodiments of the invention provide methods, systems and software for analyzing data. In particular embodiments, for example, a set of data about a web site may be analyzed to determine whether the web site is likely to be illegitimate (e.g., to be involved in a fraudulent scheme, such as a phishing scheme, the sale of gray market goods, etc.). In an exemplary embodiment, a set of data may be divided into a plurality of components (each of which, in some cases, may be considered a separate data set). Merely by way of example, a set of data may comprise data gathered from a plurality of data sources, and/or each component may comprise data gathered from one of the plurality of data sources. As another example, a set of data may comprise a document with a plurality of sections, and each component may comprise one of the plurality of sections. Those skilled in the art will appreciate that the analysis of a particular component may comprise certain tests and/or evaluations, and that the analysis of another component may comprise different tests and/or evaluations. In other cases, the analysis of each component may comprise similar tests and/or evaluations. The variety of tests and/or evaluations generally will be implementation specific.