Press Release
Updated statement regarding LockBit claims
We have completed a thorough security investigation following yesterday’s tweets by LockBit claiming they had compromised Darktrace’s internal systems. We can confirm that there has been no compromise of our systems or any of our affiliate systems. Our service to our customers remains uninterrupted and is operating as normal and no further action is required.
Press Release
Statement regarding LockBit claims
Earlier this morning we became aware of tweets from LockBit, the cyber-criminal gang, claiming that they had compromised Darktrace’s internal security systems and had accessed our data. Our security teams have run a full review of our internal systems and can see no evidence of compromise. None of the LockBit social media posts link to any compromised Darktrace data. We will continue to monitor the situation extremely closely, but based on our current investigations we are confident that our systems remain secure and all customer data is fully protected.
Press Release
New Research Finds Organizations Need to Adopt a Holistic Approach to Improve Cyber Readiness
Darktrace, a global leader in cyber security artificial intelligence, today announced a new IDC InfoBrief, sponsored by Darktrace, ‘Building the Case for a Virtuous Cycle in Cybersecurity’*. The research was conducted to identify the key challenges facing cyber security professionals operating in increasingly noisy cyber security environments, and the report outlines recommended solutions to bolster cyber readiness.
IDC conducted a survey of 300 organizations across the U.S. and Europe spanning multiple verticals including financial services, transportation, and healthcare. The data revealed the key challenges facing most of these organizations concern the ability to effectively prioritize and contextualize the large amounts of data organizations get from several cyber security alert systems, as well as identifying the key actions necessary for effective mitigation of threats and vulnerabilities.
The study’s key findings are:
- Evolving attack vectors make it difficult to prepare proactively, with only 31% of respondents highly confident that their tools can continuously adjust to new configurations
- There is a lack of dynamic testing capabilities, as 65% of participants agreed that pen testing provides only a snapshot in time which is of limited value, as it quickly becomes out of date
- While 76% of surveyed professionals thought visualizing attack paths was of moderate or high importance, only 29% were highly confident they had a robust mechanism to test their environments against the most current threat vectors
- The number of organizations that can continuously run preventative exercises such as pen tests and attack surface evaluation is between just 24% and 31% across all sectors
The IDC InfoBrief calls for the adoption of a ‘virtuous cycle’ model as a way of closing these critical security gaps, incorporating prevention, detection, response, and healing. It calls for “a multipronged approach that includes establishing a security posture and proactively managing the access and assets, monitoring what is happening in the environment, and ensuring a fit-for-purpose remediation approach including backup and disaster recovery.” The study also highlights AI as the solution for improved detection and response capabilities and continuous monitoring, as well as playing an integral part in the ‘virtuous cycle’, citing AI’s ability to look for subtle changes in the behaviors of entities within a network.
“It’s clear from this study that organizations need to adopt a holistic approach to improve their readiness,” commented Christopher Kissel, Research Vice President of IDC's Security & Trust Products. “The solution is to create a virtuous cycle, leveraging AI to create an ecosystem across an entire organization able to continuously stress-test environments, give an instantaneous response, and determine if remediation is working.”
“Security teams don’t need more data, they need clear prioritization, and intelligent automation to lighten the load and this report sets that out in concrete terms,” said John Allen, VP of Cyber Risk and Compliance at Darktrace. “Security professionals are overwhelmed with vulnerabilities, and they can’t get to them all in time. At Darktrace we’re committed to delivering an AI Loop that can provide continuous visibility, prioritized into meaningful actions for security teams, and harden weak points. That’s how we’re helping security teams get proactive.”
Darktrace PREVENT™ is the third of four product families in Darktrace’s Cyber AI Loop™ which also includes Darktrace DETECT and RESPOND™. The final part of Darktrace’s Cyber AI Loop, Darktrace HEAL™, will go to market in 2023.
Commenting on the efficacy of PREVENT and its ability to augment an entire security ecosystem, Jim Webber, Vice President of Information Technology at Direct Federal Credit Union, said: “PREVENT is continuously looking for assets that live outside of our internal IT environment. With PREVENT constantly doing vulnerability testing on our behalf, I don’t need worry about missing something- that is very reassuring.”
*doc #EUR149649622, January 2023
IDC InfoBrief Methodology
In July 2022, IDC surveyed senior security professionals at 300 companies across Europe and the U.S., looking at where security professionals are challenged in implementing preventative security measures and the gaps in their security postures that they are struggling to fill. All organizations surveyed had over 500 employees. Individuals surveyed were predominantly IT directors, IT managers, IT security management specialists, CIOs and CTOs. The full IDC Infobrief can be viewed here.
New Research Finds Organizations Need to Adopt a Holistic Approach to Improve Cyber Readiness
cv
Darktrace named a Challenger in first Gartner® Magic Quadrant™ for Email Security Platforms · Evaluated on Completeness of Vision and Ability to Execute Darktrace, a global leader in AI for cybersecurity,today announces that Darktrace / EMAIL™, has been recognized in thefirst ever Gartner Magic Quadrant™ for Email Security Platforms (ESP) as a Challenger. Chris Kozup, Chief Marketing Officer, Darktrace, said of therecognition: “We are extremely proud to have been recognized in the first MagicQuadrant for ESP. We believe the factthat wehave seen such wide scale adoption is testament to the unique way in which wedevelop products to keep our customers safe from even the most sophisticated emailcompromises. We believe our placement reaffirms our dedication to deliveringexceptional customer service, and innovations that safeguard against the emailchallenges of today—and tomorrow.” Darktrace customers consistently acknowledge its exceptional customersupport, delivered by an award-winning[1]service team. Darktrace has the highest percentage of 5-star ratings with a 4.8rating on Gartner® Peer Insights™ out of 249 reviews as on[MW1] 19th December. We feel this unwavering commitment to customersatisfaction is evident in strong renewal rates and accelerated growth inDarktrace / EMAIL over the past few years, gaining almost 5,000 customers sinceits launch in 2019. Darktrace / EMAIL, one of the fastest-growing emailsecurity products on the market, is built on Darktrace’s unique Self-LearningAI, a multi-layered AI engine that leverages different types of AI includingNLP and behavioral analysis to detect threats, instead of traditional securitymeasures such as signatures and sandboxing. This approach enables Darktrace todetect and stop threats like business email compromise attacks and noveltechniques, including some 56% of which passed through customers’ other emailsecurity layers. This pioneering approach has enabled Darktrace to introduce industry-leadingcapabilities such as QR code analysis and automated incident investigations, alongsidedifferentiated functionality to help teams add new depth to their emailsecurity, including: Account take over and Lateral mail account compromise protection. Contributing yet another layer to the AI behavioural profile for each user, security teams can now spot early symptoms of account compromise or malicious insiders before a link or attachment payload is sent, and exfiltration occur Microsoft Teams security with advanced messaging analysis: Advancing beyond simple text analysis to behavioral and natural language content analysis that tracks context across both email and instant messaging to identify the approximately 38% of phishing, sophisticated social engineering and novel insider threats other solutions fail to capture · Drastically improveend user reporting with Cyber AI Analyst narratives: Real-time awareness training capabilities reduce falsepositives in phishing investigations by up to 60% by providing context specificanalysis of each received email to each employee as they interact with their mail.· MailboxSecurity Assistant to increase security team operational efficiency: All forms ofsecondary investigations can now automatically perform advanced behavioralbrowser analysis and stop malicious links within webpages, reducing manualeffort of security analysts to detecting phishing links, and allowing them to remediateup to 70% more malicious phishing links than before.· AI based,autonomous data loss prevention: to immediately protect organizations from misdirected emails,insider threats, and data loss—both classified and unclassified – using userbehavior and dynamic content analysis to determine sensitivity, removing administrativeoverhead from manual expressions and labeling.Marco Cavallo, IT Manager at Darktrace / EMAIL customer Arpa Industries comments:“During the POV, Darktrace / EMAIL showed how specific attacks weresurgically blocked. We realized that other tools wouldn’t have detected thesethreats.” Darktrace / EMAIL is part of Darktrace’s ActiveAI Security Platform™,offering network, cloud, endpoint, identity and operational technologyprotection from a single shared architecture, all built on Darktrace’s uniqueAI engine – providing a strong, integrated approach to threat prevention,detection and response across an organization’s entire digital footprint. Darktrace’s global presence supports a diverse and varied customer base,and adapts proactively to customer pain points of all kinds. Darktrace’sadaptability across all market segments, from SMBs to large enterprisessupports both first time email security buyers and mature email securitystacks. It is able to meet varied security needs with lower setuprequirements, includes capability for advanced depth in configuration and,particularly for mature organizations, can augment existing security providerswith additional protections. Download the fullMagic Quadrant for Email Security Platforms here Resources:· Read more onthe Darktrace Blog· Read more abouthow business email compromise attacks are evolving on The Inference Gartner disclaimersGartner, Magic Quadrant for EmailSecurity Platforms, Max Taggett, Nikul Patel, Franz Hinner, Deepak Mishra, 16December 2024 GARTNER is a registered trademarkand service mark of Gartner and Magic Quadrant and Peer Insights are aregistered trademark, of Gartner, Inc. and/or its affiliates in the U.S. andinternationally and are used herein with permission. All rights reserved.
Gartner Peer Insights content consists of the opinions of individual endusers based on their own experiences with the vendors listed on the platform,should not be construed as statements of fact, nor do they represent the viewsof Gartner or its affiliates. Gartner does not endorse any vendor, product orservice depicted in this content nor makes any warranties, expressed orimplied, with respect to this content, about its accuracy or completeness,including any warranties of merchantability or fitness for a particularpurpose. Gartner does not endorse any vendor,product or service depicted in its research publications and does not advisetechnology users to select only those vendors with the highest ratings or otherdesignation. Gartner research publications consist of the opinions of Gartner’sresearch organization and should not be construed as statements of fact.Gartner disclaims all warranties, expressed or implied, with respect to thisresearch, including any warranties of merchantability or fitness for aparticular purpose. About DarktraceDarktrace is a global leader in AI for cybersecurity that keepsorganizations ahead of the changing threat landscape every day. Founded in2013, Darktrace provides the essential cybersecurity platform protectingorganizations from unknown threats using its proprietary AI that learns fromthe unique patterns of life for each customer in real-time. The DarktraceActiveAI Security Platform™ delivers a proactive approach to cyber resiliencewith pre-emptive visibility into security posture, real-time threat detection,and autonomous response – securing the business across cloud, email,identities, operational technology, endpoints, and network. Breakthroughinnovations from our R&D teams in Cambridge, UK, and The Hague, Netherlandshave resulted in over 200 patent applications filed. Darktrace’s platform andservices are supported by over 2,400 employees around the world who protectnearly 10,000 customers across all major industries globally. To learn more,visit http://www.darktrace.com. ----
[1] Darktrace wins two Globeeawards for excellent customer service [PressRelease] [MW1]shouldthis be 'of'
About Darktrace
Darktrace (DARK.L), a global leader in cyber security artificial intelligence, delivers complete AI-powered solutions in its mission to free the world of cyber disruption. Breakthrough innovations from the Darktrace Cyber AI Research Centre in Cambridge, UK and its R&D centre in The Hague, The Netherlands have resulted in over 125 patent applications filed and significant research published to contribute to the cyber security community. Darktrace’s technology continuously learns and updates its knowledge of 'you' for an organization and applies that understanding to achieve an optimal state of cyber security. It is delivering the first ever Cyber AI Loop, fuelling a continuous end-to-end security capability that can autonomously prevent, detect, and respond to novel, in-progress threats in real time. Darktrace employs over 2,200 people around the world and protects over 8,100 organizations globally from advanced cyber-threats. It was named one of TIME magazine’s ‘Most Influential Companies’ in 2021.