Press Release

April 14, 2023 11:42 AM

Updated statement regarding LockBit claims

Mike Beck, Chief Information Security Officer, Darktrace

We have completed a thorough security investigation following yesterday’s tweets by LockBit claiming they had compromised Darktrace’s internal systems. We can confirm that there has been no compromise of our systems or any of our affiliate systems. Our service to our customers remains uninterrupted and is operating as normal and no further action is required.

Press Release

April 13, 2023 9:30 AM

Statement regarding LockBit claims

Earlier this morning we became aware of tweets from LockBit, the cyber-criminal gang, claiming that they had compromised Darktrace’s internal security systems and had accessed our data. Our security teams have run a full review of our internal systems and can see no evidence of compromise. None of the LockBit social media posts link to any compromised Darktrace data. We will continue to monitor the situation extremely closely, but based on our current investigations we are confident that our systems remain secure and all customer data is fully protected.


Press Release

Darktrace Industrial Uses Machine Learning to Identify Cyber Campaigns Targeting Critical Infrastructure

Cambridge (UK) and San Francisco
November 7, 2017
New Business Unit and Technology Updates Launched in Wake of Warnings and Requirements Issued by U.S. and EU

Darktrace, the world leader in machine learning technology for cyber defense, has today announced the creation of Darktrace Industrial, a new business unit dedicated to identifying emerging and existing compromises on industrial systems and critical infrastructure networks.

Cyber-threats to critical infrastructure are evolving at a pace that is nearly impossible to keep up with, and coupled with the escalated international attention to ICS threats, the security of our systems is our utmost business priority,” commented Michael Sherwood, Director of Technology and Innovation, City of Las Vegas. “Darktrace Industrial is fundamentally changing the game of ICS cyber defense – armed with its machine learning technology, we feel confident in our ability to identify the subtle and increasingly sophisticated attacks threatening our infrastructure. The Industrial Immune System’s combination of genuine AI and unprecedented visibility heralds a new future for proactively defending OT environments."

Threats to critical infrastructure are garnering worldwide attention. Recently, the U.S. government issued a rare public warning that sophisticated threat-actors are targeting energy and industrial firms. In addition, the European Union Network and Information Security (NIS) Directive introduced security requirements as legal obligations for operators providing essential services including industrial automation control systems and connected devices.

A product update, Darktrace Industrial Immune System version 3, can detect silent and subtle attacks on control systems with new capabilities including:

  • New mathematical techniques focused on detecting low and slow attacks
  • Powerful ways to analyze and visualize ICS zone structures
  • Improved detection of compliance breaches within OT environments
  • Expanded support for legacy industrial systems and non-traditional IT, such as IoT

Industrial environments, reliant on legacy bespoke systems, face new security challenges such as connected industrial devices, sensors, remote maintenance repair operations, and increasing connectivity to IT environments. Darktrace’s self-learning approach understands the normal ‘pattern of life’ for every operator and device automatically without requiring agents, or knowledge of operating systems.

Industrial control systems have long operated under ‘air-gap’ principles that assume their isolation from IT and publicly accessible networks. In reality, many are accessible from IT networks for control and integration,” commented Scott Crawford, Research Director for information security with 451 Research. “As ‘smart’ technologies become more integral to physical controls, their wide accessibility and connections to public networks are only likely to grow. This is an increasingly serious concern, considering the public and personal safety dependent on ICS, and the potential for disruption and catastrophic damage.”

“With increased digitization and the rise of the Industrial Internet of Things, the need for cyber security within operational environments has never been higher,” commented Andrew Tsonchev, Director of Technology at Darktrace Industrial. “Darktrace has a four-year investment in the Industrial Immune System, the world’s first and only proven machine learning technology capable of detecting emerging attacks on OT environments, including ‘low and slow’ attacks, and ‘unknown unknowns’. Darktrace Industrial will enable the accelerated adoption of this pioneering technology, which already defends some of the world’s most complex industrial control environments from nuclear plants to power grids.”

About Darktrace Industrial

Darktrace is the world’s leading machine learning company for cyber defense. Created by mathematicians from the University of Cambridge, Darktrace’s Industrial Immune System technology uses AI algorithms that mimic the human immune system to defend industrial networks of all types and sizes. In an era where OT and IT are increasingly converging, Darktrace’s technology is uniquely positioned to provide full coverage of both enterprise and industrial environments. By applying advanced machine learning and AI algorithms, Darktrace Industrial defends critical infrastructure across the world, and is relied upon by leading energy providers, utility companies and manufacturers to secure their ICS and SCADA environments. Headquartered in San Francisco and Cambridge, UK, Darktrace has 30 offices worldwide.

For more information, please visit www.darktraceindustrial.com.

       
               
News coverage
News publication logo

Darktrace Industrial Uses Machine Learning to Identify Cyber Campaigns Targeting Critical Infrastructure

November 7, 2017

cv
Darktrace named a Challenger in first Gartner® Magic Quadrant™ for Email Security Platforms ·      Evaluated on Completeness of Vision and Ability to Execute Darktrace, a global leader in AI for cybersecurity,today announces that Darktrace / EMAIL™, has been recognized in thefirst ever Gartner Magic Quadrant™ for Email Security Platforms (ESP) as a Challenger. Chris Kozup, Chief Marketing Officer, Darktrace, said of therecognition: “We are extremely proud to have been recognized in the first MagicQuadrant for ESP.  We believe the factthat wehave seen such wide scale adoption is testament to the unique way in which wedevelop products to keep our customers safe from even the most sophisticated emailcompromises. We believe our placement reaffirms our dedication to deliveringexceptional customer service, and innovations that safeguard against the emailchallenges of today—and tomorrow.” Darktrace customers consistently acknowledge its exceptional customersupport, delivered by an award-winning[1]service team. Darktrace has the highest percentage of 5-star ratings with a 4.8rating on Gartner® Peer Insights™ out of 249 reviews as on[MW1]  19th December. We feel this unwavering commitment to customersatisfaction is evident in strong renewal rates and accelerated growth inDarktrace / EMAIL over the past few years, gaining almost 5,000 customers sinceits launch in 2019. Darktrace / EMAIL, one of the fastest-growing emailsecurity products on the market, is built on Darktrace’s unique Self-LearningAI, a multi-layered AI engine that leverages different types of AI includingNLP and behavioral analysis to detect threats, instead of traditional securitymeasures such as signatures and sandboxing. This approach enables Darktrace todetect and stop threats like business email compromise attacks and noveltechniques, including some 56% of which passed through customers’ other emailsecurity layers. This pioneering approach has enabled Darktrace to introduce industry-leadingcapabilities such as QR code analysis and automated incident investigations, alongsidedifferentiated functionality to help teams add new depth to their emailsecurity, including: Account     take over and Lateral mail account compromise protection.     Contributing yet another layer to the AI behavioural profile for each     user, security teams can now spot early symptoms of account compromise or     malicious insiders before a link or attachment payload is sent, and     exfiltration occur   Microsoft Teams security with advanced messaging analysis: Advancing beyond simple text analysis to     behavioral and natural language content analysis that tracks context     across both email and instant messaging to identify the approximately 38% of     phishing, sophisticated social engineering and novel insider threats other     solutions fail to capture ·      Drastically improveend user reporting with Cyber AI Analyst narratives: Real-time awareness training capabilities reduce falsepositives in phishing investigations by up to 60% by providing context specificanalysis of each received email to each employee as they interact with their mail.·       MailboxSecurity Assistant to increase security team operational efficiency: All forms ofsecondary investigations can now automatically perform advanced behavioralbrowser analysis and stop malicious links within webpages, reducing manualeffort of security analysts to detecting phishing links, and allowing them to remediateup to 70% more malicious phishing links than before.·       AI based,autonomous data loss prevention: to immediately protect organizations from misdirected emails,insider threats, and data loss—both classified and unclassified – using userbehavior and dynamic content analysis to determine sensitivity, removing administrativeoverhead from manual expressions and labeling.Marco Cavallo, IT Manager at Darktrace / EMAIL customer Arpa Industries comments:“During the POV, Darktrace / EMAIL showed how specific attacks weresurgically blocked. We realized that other tools wouldn’t have detected thesethreats.” Darktrace / EMAIL is part of Darktrace’s ActiveAI Security Platform™,offering network, cloud, endpoint, identity and operational technologyprotection from a single shared architecture, all built on Darktrace’s uniqueAI engine – providing a strong, integrated approach to threat prevention,detection and response across an organization’s entire digital footprint. Darktrace’s global presence supports a diverse and varied customer base,and adapts proactively to customer pain points of all kinds. Darktrace’sadaptability across all market segments, from SMBs to large enterprisessupports both first time email security buyers and mature email securitystacks. It is able to meet varied security needs with lower setuprequirements, includes capability for advanced depth in configuration and,particularly for mature organizations, can augment existing security providerswith additional protections.   Download the fullMagic Quadrant for Email Security Platforms here Resources:·      Read more onthe Darktrace Blog·      Read more abouthow business email compromise attacks are evolving on The Inference  Gartner disclaimersGartner, Magic Quadrant for EmailSecurity Platforms, Max Taggett, Nikul Patel, Franz Hinner, Deepak Mishra, 16December 2024 GARTNER is a registered trademarkand service mark of Gartner and Magic Quadrant and Peer Insights are aregistered trademark, of Gartner, Inc. and/or its affiliates in the U.S. andinternationally and are used herein with permission. All rights reserved.
Gartner Peer Insights content consists of the opinions of individual endusers based on their own experiences with the vendors listed on the platform,should not be construed as statements of fact, nor do they represent the viewsof Gartner or its affiliates. Gartner does not endorse any vendor, product orservice depicted in this content nor makes any warranties, expressed orimplied, with respect to this content, about its accuracy or completeness,including any warranties of merchantability or fitness for a particularpurpose. Gartner does not endorse any vendor,product or service depicted in its research publications and does not advisetechnology users to select only those vendors with the highest ratings or otherdesignation. Gartner research publications consist of the opinions of Gartner’sresearch organization and should not be construed as statements of fact.Gartner disclaims all warranties, expressed or implied, with respect to thisresearch, including any warranties of merchantability or fitness for aparticular purpose.  About DarktraceDarktrace is a global leader in AI for cybersecurity that keepsorganizations ahead of the changing threat landscape every day. Founded in2013, Darktrace provides the essential cybersecurity platform protectingorganizations from unknown threats using its proprietary AI that learns fromthe unique patterns of life for each customer in real-time. The DarktraceActiveAI Security Platform™ delivers a proactive approach to cyber resiliencewith pre-emptive visibility into security posture, real-time threat detection,and autonomous response – securing the business across cloud, email,identities, operational technology, endpoints, and network. Breakthroughinnovations from our R&D teams in Cambridge, UK, and The Hague, Netherlandshave resulted in over 200 patent applications filed. Darktrace’s platform andservices are supported by over 2,400 employees around the world who protectnearly 10,000 customers across all major industries globally. To learn more,visit http://www.darktrace.com.   ---- 
[1] Darktrace wins two Globeeawards for excellent customer service [PressRelease] [MW1]shouldthis be 'of'

About Darktrace

About Darktrace

Darktrace is the world’s leading machine learning company for cyber security. Created by mathematicians from the University of Cambridge, the Enterprise Immune System uses AI algorithms to automatically detect and take action against cyber-threats within all types of networks, including physical, cloud and virtualized networks, as well as IoT and industrial control systems. A self-configuring platform, Darktrace requires no prior set-up, identifying advanced threats in real time, including zero-days, insiders and stealthy, silent attackers. Headquartered in San Francisco and Cambridge, UK, Darktrace has 30 offices worldwide.