Updated statement regarding LockBit claims
We have completed a thorough security investigation following yesterday’s tweets by LockBit claiming they had compromised Darktrace’s internal systems. We can confirm that there has been no compromise of our systems or any of our affiliate systems. Our service to our customers remains uninterrupted and is operating as normal and no further action is required.
Statement regarding LockBit claims
Earlier this morning we became aware of tweets from LockBit, the cyber-criminal gang, claiming that they had compromised Darktrace’s internal security systems and had accessed our data. Our security teams have run a full review of our internal systems and can see no evidence of compromise. None of the LockBit social media posts link to any compromised Darktrace data. We will continue to monitor the situation extremely closely, but based on our current investigations we are confident that our systems remain secure and all customer data is fully protected.
Darktrace Antigena Launched: New Era as Cyber AI Fights Back
Darktrace Antigena Launched: New Era as Cyber AI Fights Back
Darktrace, the world’s leading machine learning company for cyber security, and creators of the Enterprise Immune System, today announced the general availability of Darktrace Antigena, the first solution to react autonomously against in-progress cyber-threats. Top Darktrace customers have proven that Darktrace Antigena augments their human security teams, taking automatic action against the evolving cyber-threats targeting their networks. The machine fights back.
Our new reality is that cyber-attacks are becoming faster than we could have ever imagined,” commented Michael Sherwood, CIO, City of Las Vegas. “Darktrace Antigena is the only automated response technology on the market that is capable of fighting the most important battles for us. Using Darktrace’s AI, we can now stop never-before-seen threats in their tracks, allowing us to remain uniquely proactive in the face of a rapidly-changing threat landscape.”
Darktrace Antigena has enabled us to take our cyber defense to the next level,” commented Steve Drury, COO, Family Building Society. “Protecting our systems and data from the ever increasing cyber-threat is now a fundamental requirement. Our customers would expect nothing less, so it is critical that we are able to detect and respond to any unusual activities in our information systems as soon as they emerge. We were impressed with the power of Darktrace Antigena when we saw it in action during the Proof of Value. After a period of learning, the Antigena logic demonstrated its power to detect and contain potential ransomware attacks by blocking unusual traffic instantaneously, proving that Darktrace Antigena’s ability to fight against in-progress threats is a real game-changer.”
The Enterprise Immune System is the only proven application of machine learning that automates the process of both detecting and responding to cyber-threats inside a network. Modeled after the most powerful biological system, the human immune system, the disruptive technology leverages advances in machine learning and probabilistic mathematics to learn the normal ‘pattern of life’ for every user and device in a network.
Darktrace Antigena then uses that understanding to automatically respond to serious threats by taking proportionate, remedial action that neutralizes threats and allows the security team precious time to catch up. As a part of the Enterprise Immune System, Darktrace Antigena acts like a digital antibody, taking only very targeted action – for example, it can slow down or stop a compromised connection or device, but does not impact normal business operations.
With Antigena, Darktrace has added the ability for its customers to level the playing field by containing attacks until responders can root out their cause and eradicate them,” commented Rik Turner, Senior Analyst, Infrastructure Solutions at Ovum.
To date, the Enterprise Immune System has detected over 30,000 previously unknown in-progress attacks. Some real-world examples of threat scenarios that Darktrace Antigena has mitigated include:
- Capital management firm: Darktrace Antigena stopped sensitive customer information from being stolen by an external attacker. It created an automatic response when an attacker was detected making suspicious connections to a device inside the network while conducting reconnaissance.
- Financial software company: Darktrace Antigena swiftly mitigated a malware attack when a device was infected by a malicious Trojan which was scanning hundreds of devices for open channels of communication in a suspected attempt to exploit vulnerabilities. Darktrace Antigena blocked outgoing connections from the device, allowing it to be isolated and cleaned before the infection could develop further.
- Healthcare organization: Darktrace Antigena autonomously took action to stop a ransomware attack in its tracks. An employee inadvertently downloaded a malicious file received in an email – the malware immediately started to encrypt data on the employee’s computer. Within thirty seconds, Antigena had isolated the device and stopped the attack before it spread across the network.
Demand for Darktrace Antigena is very strong,” said Nicole Eagan, CEO, Darktrace. “Security teams should be spending time looking forward, analyzing how business decisions impact cyber risk, not in constant firefighting mode. Darktrace Antigena’s automated response is a fundamental step change in the evolution of cyber defense and fulfills our Enterprise Immune System vision.”
For more information, please visit www.darktrace.com/antigena.
Darktrace is the world’s leading machine learning company for cyber security. Created by mathematicians from the University of Cambridge, the Enterprise Immune System uses AI algorithms to automatically detect and take action against cyber-threats within all types of networks, including physical, cloud and virtualized networks, as well as IoT and industrial control systems. A self-configuring platform, Darktrace requires no prior set-up, identifying advanced threats including zero-days, insiders and stealthy, silent attackers in real time. Headquartered in San Francisco and Cambridge, UK, Darktrace has 23 offices worldwide.