Customer Story
Cloud

Funding Circle

Funding Circle uses Darktrace’s Self-Learning AI to secure its AWS workloads, reduce false positives, and detect subtle insider and cloud-based threats, giving its lean team clear visibility across a rapidly evolving environment.
Play video
About the company

Funding Circle is a peer-to-peer lending marketplace that empowers private investors, governments, and financial institutions to lend money directly to small businesses.

Industry
Financial Services
Employee #
Country

Security pressures in the financial services industry

The first website to facilitate peer-to-peer business financing in the UK, Funding Circle now also operates in the US, Germany, and the Netherlands. Its 81,000 global investors have lent approximately £7 billion to date, creating an estimated 115,000 new jobs in 2018 alone. Given the rapid evolution of the cyber-attacks targeting these funds — as well as the equally rapid expansion of the company itself — Funding Circle sought a security solution capable of keeping pace with both the changing threat landscape and its own changing network.

The financial services industry suffered more cybersecurity incidents than any other economic sector in each of the last two years, with European financial firms facing an average of 85 annual attempted breaches. To protect its valuable assets and sensitive data, the industry has responded by investing heavily in conventional cyber defenses. Yet criminals have countered by launching never-before-seen attacks designed to bypass traditional security tools, which rely on rules, signatures, and prior assumptions to detect known threats.

Beyond the overarching challenge of preempting never-before-seen malware, Funding Circle was especially concerned by threats to its cloud infrastructure, which introduced key security blind spots. Indeed, gaining visibility into AWS — where the company houses sensitive corporate data — is a priority for many organizations migrating to the cloud. From social engineering attacks to insider threats to stolen credentials, many of the risks to services like AWS are user-dependent. As a consequence, any security tool up to the task of defending an AWS environment must understand how these users work and collaborate across the entire digital infrastructure — not just within one application or service.

Finally, Funding Circle found that, as it made changes to its AWS infrastructure, its security stack struggled to differentiate between benign modifications and genuinely malicious activity, generating a flood of false positive alerts. Without enough time in the day to sort through so many false positives, the company needed an AI tool to automatically prioritize the most serious incidents on behalf of its security team.

Boosting AWS defenses with Darktrace / CLOUD

Following the completion of a successful Proof of Value (POV), Funding Circle deployed Darktrace, including Darktrace / CLOUD to defend its AWS workloads. Powered by Self-Learning AI, Darktrace immediately began learning the normal 'pattern of life' of every user, device, and container at the company. This continuously refined sense of 'self' enables the AI to detect even subtle deviations from normalcy, such as never-before-seen threats that exhibit highly anomalous behavior. 

With Darktrace / CLOUD, Funding Circle's lean security team also gained total oversight over cloud activities that had previously been invisible. As CSPs like Amazon continue to bolster their defenses, cyber-criminals are increasingly targeting the customer's portion of the cloud's Shared Responsibility Model, rendering visibility all the more important. In fact, industry experts estimate that 99% of cloud security failures will have occurred at the customer end through 2023. But with Darktrace flagging unusual malicious activity in the cloud, Funding Circle’s workflows are secured across its digital environment.

Uncovering insider threats and vulnerabilities

Darktrace rapidly transformed Funding Circle's security posture, affording it real-time insights into all activity across its cloud infrastructure. Among the numerous cyber hygiene issues that Darktrace has drawn out are insider BitTorrent usage, connections to unauthorized SaaS applications, and crypto-mining using company resources.

Moreover, because Darktrace AI intelligently prioritizes potential threats based on its nuanced understanding of 'self,' it all but eliminated the company's flood of false positives. "Our infrastructure is pretty volatile, since we have a lot of containers coming online and offline frequently," commented Alberto Martinez, Senior Information Security Engineer at Funding Circle. "In the past, this volatility has led to a high number of false positives, but Darktrace is able to sift through the noise to find the genuine threats.”

Key takeaways

  • Funding Circle gains full visibility into AWS and cloud activity, exposing blind spots and detecting subtle, novel threats missed by traditional tools.
  • Self-Learning AI differentiates benign changes from true risks, dramatically reducing false positives in a volatile, container-driven environment.
  • Real-time insights uncover insider threats, unauthorized SaaS use, and resource misuse, strengthening protection of sensitive financial data.

Explore more customer stories

See how others stay one step ahead with Darktrace

EVAPCO
EVAPCO strengthens global cybersecurity with Darktrace’s AI, achieving rapid autonomous threat response, reduced inbox risk, and major efficiency gains that empower teams and protect critical operations around the clock.
Read story
Aer Soléir
Aer Soléir is powering Europe’s clean energy future with a modern cybersecurity approach. Partnering with Darktrace, the renewable leader builds unified AI-driven defence, strengthening resilience, reducing risk, and scaling confidently without adding headcount.
Read story
State Government of Sinaloa
Darktrace empowered Sinaloa’s government to autonomously defend 5,000+ devices, prevent data exposure, and save millions in incident costs with real-time AI-driven cybersecurity.
Read story
Papernest
Papernest strengthened security while reducing workload, with Darktrace autonomously resolving most investigations, saving analyst hours, eliminating alert fatigue, and delivering rapid, unified deployment across its cloud environment within hours.
Read story
M&S Logistics
M&S Logistics adopted Darktrace’s ActiveAI platform for autonomous threat detection, reducing false alerts, streamlining investigations, and enhancing global data protection with label-free DLP and Microsoft-native integrations.
Read story
Langham Logistics
See how Darktrace helps Langham Logistics safeguard operations, customer trust, and the global supply chain with AI-driven visibility and autonomous response against evolving cyber-threats.
Read story
Visit Dallas
See how Visit Dallas is using Darktrace’s AI-driven cybersecurity to deliver seamless travel experiences while strengthening Dallas’ reputation as a world-class destination.
Read story
Aizawa Hospital
Discover how Aizawa Hospital achieved full visibility and monitoring across their network with Darktrace.
Read story
Osmoflo
Discover how Osmoflo stopped phishing and cut analyst workload with Darktrace's Self-Learning AI
Read story
VERTO
Discover how VETRO has saved over $500k using Darktrace across its email, cloud, and network domains
Read story
PXGEO
Discover how PXGEO scaled fast, saved 14,000 analyst hours, and strengthened cloud security with Darktrace’s AI-driven protection.
Read story
Libertex Group
Libertex Group balances fast-paced FinTech innovation with strong cyber discipline amid cloud risks and strict compliance demands.
Read story