Antigena Email

Book a Free Trial

94% of cyber-threats start with an email.

Antigena Email uses Darktrace’s core artificial intelligence to stop the most advanced email threats, intervening to protect employees from the full range of threats targeting the inbox.

Rather than relying on static rules and historical data, the technology works by understanding the unique ‘patterns of life’ of email users and the complex web of relationships between them. This self-learning approach allows Antigena Email to reveal seemingly benign emails as unmistakably malicious.

Key Benefits

Continuously updates in light of new evidence
Understands the human
Based on their unique patterns of behavior
Proportionate response
According to nature and severity of threat
5-minute install
Virtual or hardware deployment available

The Self-Defending Inbox

Antigena Email uses cyber AI to protect the email environment from the most sophisticated email threats.

Traditional gateway tools analyze emails in isolation, asking whether elements of an email have been observed in historical attacks. This retrospective approach fails to spot the subtle signs of novel or advanced attacks that cost organizations the most.

Antigena Email continuously updates its understanding of ‘normal’ for every sender and recipient, allowing it to identify any unusual activity in inbound, outbound and lateral mail flow. By treating recipients as dynamic individuals and peers, Antigena Email is able to stop the full range of threats targeting the inbox.

Advanced spear phishing

Analyzes links, attachments, domains and content alongside the ‘patterns of life’ of an organization.

Supply chain attack

Learns communication patterns between individual users and recognizes when a trusted email account has been hijacked.

Spoofing and solicitation

Detects ‘look-a-like’ domains that are designed to trick the user and identifies unusual associations among internal recipients.

Employee account takeover

Identifies anomalous login locations and unusual email processing rules as indicators of compromise.

Proven to Protect

AI Blocks Fake CEO Payroll Request

At an electricity distributor, Antigena Email detected a convincing spoof email allegedly from the company’s CEO being sent to a member of the payroll department, requesting that they update the CEO’s direct deposit information. Among other weak indicators, Antigena Email automatically calculated the anomalous proximity of the domain to those of internal employees and trusted contacts, clearly marking it as a spoof before it could reach the end user.

Advanced Spear Phishing

A threat actor who had gotten hold of the contact list of a US municipality delivered a well-crafted spear phishing attack to its staff, delivered alphabetically from A to Z. The messages contained malicious payloads disguised as links to Netflix, Amazon, and other trusted services. Darktrace’s AI analyzed these links in connection with all Office 365 email traffic, recognizing the rare domain and patterns of communication, and locking each link as it entered the network.

AI Responds to Office 365 Takeover

Darktrace’s AI caught a supply chain attack targeting a film production studio in LA, after the Office 365 credentials of a trusted supplier had been compromised. From the supplier’s account, the attacker sent a plausible email to an employee at the studio which included a malicious link. Understanding the email in its full context, Darktrace revealed this ‘trusted contact’ to be a hijacked account controlled by an attacker and neutralized the malicious payload.

Antigena Email Prevents WeTransfer Attack

A sophisticated email attack targeting five high-profile users at an academic institution attempted to leverage the familiarity of a trusted website in order to deliver a harmful link and gain multiple footholds in the organization. These emails were assigned a 100% anomaly score and Antigena Email held them back, identifying the subtle indicators of service spoofing, despite the organization having a known relationship with the sender.