05.04.2022 10:45:00

Darktrace AI Stops Sophisticated Ransomware Attack At South African Financial Services Provider

CAMBRIDGE, England, April 5, 2022 /PRNewswire/ -- Darktrace, a global leader in cyber security AI, today announced that its Autonomous Response technology, Antigena, successfully stopped an in-progress ransomware attack that recently targeted a financial services company in South Africa. 

The company, a growing firm providing various financial services to customers across South Africa, was trialing Darktrace AI when it was targeted by a ransomware attack. The AI technology had formed a unique understanding of the company's 'normal' behavior across its digital estate so it could spot the subtle signs of a threat and fight back at machine speed.

In the early morning hours in mid-March 2022, Darktrace AI detected that a mail server within the company was making unusual HTTP connections to an external endpoint, indicating communication with a malicious server on the internet. Equipped with an understanding of the organization's 'normal' operations, the AI instantly identified that this behavior was abnormal and potentially threatening.

The compromised mail server subsequently attempted to perform reconnaissance and lateral movement. Attackers were using 11 employees' credentials during the incident, including those belonging to C-level executives. Following this, additional machines in the organization began communicating with the malicious external server.

Darktrace's Autonomous Response technology then took action to interrupt further communication with the malicious server on the internet across the organization, while allowing the previously learned, regular behavior of machines to continue. The response was targeted and proportionate, avoiding disruption to normal business operations. After the attack was contained, the company's security team and dedicated Darktrace experts were able to conduct a full investigation to ensure that the attack was fully contained.

"The speed and scale of ransomware attacks today makes it absolutely critical that organizations are armed with technology capable of interrupting in-progress, sophisticated attacks without relying on humans to take the sledgehammer out and interrupt wider business operations in the incident response process," commented Max Heinemeyer, VP of Cyber Innovation, Darktrace. "It is inevitable that attackers will strike, often out-of-hours, and stories like these elucidate the power of handing over the keys to AI as the first responder to maintain business as usual while freeing up human teams to focus on high-level work like strategy and cyber hygiene."

About Darktrace

Darktrace (DARK:L), a global leader in cyber security AI, delivers world-class technology that protects over 6,500 customers worldwide from advanced threats, including ransomware and cloud and SaaS attacks. Darktrace's fundamentally different approach applies Self-Learning AI to enable machines to understand the business in order to autonomously defend it. Headquartered in Cambridge, UK, the company has more than 1,700 employees and over 30 offices worldwide. Darktrace was named one of TIME magazine's 'Most Influential Companies' for 2021.

Media Contacts

Tom Bermingham

Brands2Life (UK)

+44 (0) 7983 857 952

darktrace@brands2life.com

Jessica Cheney

CommStrat (US)

 +1 419 350 4614

darktrace@commstrat.com

 

Cision View original content:https://www.prnewswire.com/news-releases/darktrace-ai-stops-sophisticated-ransomware-attack-at-south-african-financial-services-provider-301517557.html

SOURCE Darktrace

Nachrichten zu Darktrace PLC Unsponsored American Depositary Receipt Repr 1 Shmehr Nachrichten

Keine Nachrichten verfügbar.

Analysen zu Darktrace PLC Unsponsored American Depositary Receipt Repr 1 Shmehr Analysen

Eintrag hinzufügen
Hinweis: Sie möchten dieses Wertpapier günstig handeln? Sparen Sie sich unnötige Gebühren! Bei finanzen.net Brokerage handeln Sie Ihre Wertpapiere für nur 5 Euro Orderprovision* pro Trade? Hier informieren!
Es ist ein Fehler aufgetreten!

Aktien in diesem Artikel