US Patent 10491621 Website security tracking across a network

Website security tracking is provided which includes, for instance, collecting, by a processor, event-specific information related to a suspicious event at a website. The collecting includes executing at least one security tracking module integrated into website code of the website to store the event-specific information. The website is one website of multiple websites of a network. The tracking method also includes providing by the website an indication of the suspicious event and the collected event-specific information to an analytics system external to the website. The analytics system is to receive indications of any suspicious events from the multiple websites and determine, based at least in in part on collected event-specific information related to the suspicious events, a confidence level of whether the suspicious event is part of a common security attack on the network.