Comunicado de imprensa

April 14, 2023 11:42 AM

Updated statement regarding LockBit claims

Mike Beck, Chief Information Security Officer, Darktrace

We have completed a thorough security investigation following yesterday’s tweets by LockBit claiming they had compromised Darktrace’s internal systems. We can confirm that there has been no compromise of our systems or any of our affiliate systems. Our service to our customers remains uninterrupted and is operating as normal and no further action is required.

Comunicado de imprensa

April 13, 2023 9:30 AM

Statement regarding LockBit claims

Earlier this morning we became aware of tweets from LockBit, the cyber-criminal gang, claiming that they had compromised Darktrace’s internal security systems and had accessed our data. Our security teams have run a full review of our internal systems and can see no evidence of compromise. None of the LockBit social media posts link to any compromised Darktrace data. We will continue to monitor the situation extremely closely, but based on our current investigations we are confident that our systems remain secure and all customer data is fully protected.


Comunicado de imprensa

Darktrace adiciona o sistema de aviso prévio ao e-mail da Antigena

Phishing Scheme Attempted to Leverage Legitimate Government Site for Solicitation of Fake Philanthropic Donations
Cambridge, Reino Unido
21 de junho de 2022

Cobertura da mídia

News publication logo

Darktrace adiciona o sistema de aviso prévio ao e-mail da Antigena

Leia a história
21 de junho de 2022

Darktrace, a global leader in cyber security AI, today announced that its Antigena Email product has added an early warning system, allowing members of the Darktrace community to contribute and benefit from insights gleaned from across the fleet. This new capability is now available to Antigena Email users and includes the extension of anonymized, learned domain behavioral profiles across Darktrace’s expansive and diverse group of global customers.

“Darktrace stops all kinds of cyber-attacks against organizations in every sector in over 110 countries globally. That represents a huge bank of knowledge about how malicious payloads behave in the very earliest stage of a cyber-attack,” commented Jack Stockdale OBE, Darktrace CTO. “Antigena Email has now realized the vision of leveraging collaborative, anonymized insights to leave attackers with nowhere to hide.”

Ninety-four percent of cyber-attacks begin in the inbox. As organizations continue to rely on email as a primary workplace collaboration tool and attacks become increasingly novel and sophisticated, email security technologies that rely on behavior rather than threat intelligence become more imperative.

Darktrace’s Self-Learning AI observes emails to build bespoke behavioral profiles for each customer and leverages these behavioral profiles, rather than a ledger of binary ‘good’ or ‘bad,’ to accurately determine whether each email belongs in a recipient’s inbox. Antigena Email uniquely analyzes domains within email addresses and links in email bodies and attachments to evaluate their popularity and typical presence in the inbox.

Now, when Antigena detects unusual domain behavior in a customer environment, a supplementary interpretation can be made by comparison with this new fleet-wide version of the behavioral profiles. This new functionality can lead to increased suspicion, for example, of a potential account compromise when a fleet-wide popular domain suddenly strays from its usual behavioral patterns – even in a trusted supplier or vendor.

This update recently allowed Darktrace to stop a phishing campaign sent from a compromised government account in South America that was soliciting fake philanthropic donations. Although the government domain was legitimate, the attacker had inserted their own “reply-to” address into the email headers. This address had zero domain precedent locally or globally and, in combination with other indicators, led Antigena Email to flag this email as suspicious.

Sobre Darktrace

Darktrace (DARK.L), a global leader in cyber security AI, delivers world-class technology that protects over 6,800 customers worldwide from advanced threats, including ransomware and cloud and SaaS attacks. Darktrace’s fundamentally different approach applies Self-Learning AI to enable machines to understand the business in order to autonomously defend it. Headquartered in Cambridge, UK, the Group has more than 2,000 employees worldwide. Darktrace was named one of TIME magazine’s ‘Most Influential Companies’ for 2021.

share this article