White Papers

This white paper examines the technology and design principles behind Darktrace’s Cyber AI Analyst, a groundbreaking innovation that automates threat investigations at speed and scale.

This white paper investigates how a unified approach to threat detection and response enables the Darktrace Immune System to neutralize advanced threats that other tools miss.

Email Security Threat Report 2020

This threat report explores 13 email threats — from spear phishing to account takeover — that evaded legacy security tools but were neutralized in real time by Darktrace’s AI.

This white paper explores eight case studies of threats the Cyber AI Platform identified in SaaS environments. In every case, the threatening activity evaded static defenses, but thanks to Darktrace, was contained and actioned well before it could escalate into a crisis.

This white paper explores how Darktrace’s Cyber AI Platform is uniquely suited to detect the subtle signs of a threat in the cloud. It examines 11 case studies of advanced attacks that evaded other security tools but were identified by Cyber AI, including compromised credentials, a malicious insider and misconfiguration.

The Immune System Approach: Cyber AI for Industrial Control Systems

This white paper discusses Darktrace's Industrial Immune System, a fundamental innovation that views data from an Industrial Control System network in real time, and establishes an evolving baseline for what is normal for operators, workstations and automated systems within that environment.

Autonomous Response: The Threats Darktrace Antigena Finds

This report details seven case studies of attacks that were intercepted and neutralized by cyber defense AI, including insider threat, ransomware, and IoT attacks.

Darktrace Antigena: The Future of AI-Powered Autonomous Response

This white paper will explore the critical challenges that security teams face in this new era of cyber-threat, and how Darktrace Antigena is leveraging AI to autonomously fight back against advanced attacks, giving human responders the critical time needed to catch up.

This white paper explains Darktrace’s approach to machine learning and shines a light on the unique interplay between unsupervised machine learning, supervised machine learning, and deep learning behind the world’s leading cyber AI technology.

Triton 2.0 & The Future of OT Cyber-Attacks

This white paper evaluates the development of OT attack campaigns, identifying new trends in order to anticipate what an AI-augmented ‘Triton 2.0’ attack might look like.

General Data Protection Regulation

The implementation of GDPR represents one of the most significant events in data protection regulatory history. Darktrace is applicable to a range of requirements under GDPR. Darktrace provides the real-time visibility required to make intelligence-based decisions in live situations, while enabling in-depth investigations into historical activity.

NIST Framework for Improving Critical Infrastructure Cybersecurity

While primarily aimed at organizations that own or operate critical infrastructure, the NIST Framework can be advantageous for any organization that implements it, in any industry, as it provides concrete guidance on how to measure and improve an organization’s cyber security.

Complying with New York DFS Cybersecurity Regulations

This white paper explains how Darktrace can help financial services organizations comply with key areas of the new 23 NYCRR 500 regulation, particularly with some of the more challenging measures, such as the 72-hour rule, managing third-party risk, and detecting and responding to cyber-threats.

Darktrace and the SAMA Cyber Security Framework

This white paper explains how Darktrace can help financial services organizations comply with the regulations of the new SAMA Cyber Security Framework. Applicable to a range of requirements, Darktrace AI will enable businesses in Saudi Arabia to meet the most challenging obligations of the framework.

Darktrace and the UK NIS Directive

This white paper explains how the Darktrace AI platform helps your company to comply with the Cyber Assessment Framework of the EU's NIS Directive, released in April 2019.

Threat Discoveries: What Darktrace Industrial Finds

This report provides several case studies of alerts raised in real industrial networks where Darktrace was deployed. Each example features a description of the alert and the outcome of the specific investigation.

Darktrace Discoveries in Asia

As attackers learn to move at unprecedented speeds, organizations are embracing cyber AI to regain the advantage over today’s ever-changing adversary – and win. This special report highlights five real-world threat scenarios in Asia, that were identified and neutralized by Darktrace’s powerful AI technology as they were emerging, before they could escalate into crises.

Australian Notifiable Data Breaches Scheme

The Australian NDB Scheme is a legislative framework that introduces rigorous and mandatory data breach notification provisions for all entities regulated by the Privacy Act 1988. This white paper explains how Darktrace detects the earliest signs of anomalous activity to ensure compliance.

Data Sheets

Darktrace for Mergers & Acquisitions
Cyber Defense for the Telecommunications Industry
Darktrace Inoculation

Case Studies

Customer Insights: Self-Learning Cyber Defense
Hear how the Enterprise Immune System is used at first hand – Darktrace customers reveal the benefits of self-learning defense technology.
Customer Insights: Antigena Email
“A huge step forward from whitelists and blacklists”. Learn why hundreds of organizations rely on Antigena Email to defend their inboxes from the full range of email threats, from supply chain takeover and domain spoofing.
Greg DeBrecourt, Cybersecurity Manager at AeroVironment, discusses how Darktrace Cyber AI provides total visibility into the company’s infrastructure. Darktrace is the “extra set of eyes” that allows the team to continuously monitor its digital estate, including data transfers and user activity.
King’s Hawaiian
King’s Hawaiian, world famous for its Hawaiian sweet rolls, turned to Darktrace AI to secure its complex digital ecosystem and manufacturing floor from advanced cyber-threats. Learn how Darktrace’s Cyber AI is able to detect and respond to the earliest signs of cyber-attack regardless of where they emerge across the expansive organization – keeping the brand’s IP secure and the production facilities operational.
Terra Firma
“Darktrace is a huge step forward from other systems.” Learn why a leading European private equity investment firm has entrusted Darktrace AI to detect a range of threats across its entire digital estate.
Salve Regina University
As a leading institute in higher education, Salve Regina University needed a cyber technology that could keep student and university data secure, while still enabling the free flow of information on campus. Learn how Darktrace cyber AI has allowed the university to meet this challenge head on, and how its team relies on Antigena to fight back against threats before they can do damage.
“The bad guys are already using AI to devise spear phishing attacks. It’s a cyber war.” Learn how Hydrotech, a leading industrial technology provider, uses Darktrace’s Cyber AI to fight back against sophisticated threats to its cloud and SaaS environments.
Global Travel
“With Darktrace, we have a peace of mind that our data and internal systems are protected.” James Chua, General Manager of Global Travel, explains how deploying Darktrace’s Enterprise Immune System gave the company visibility into its network and the ability to detect signs of unauthorized data exfiltration or insider threat, to protect and secure troves of customer data.
eBay Classifieds Group
“The ability to see and take action is key, which is why we are so excited about the Antigena capability that Darktrace has.” Hear from James Bynoe, Head of Cyber & Information Security from eBay Classified, on how Darktrace’s AI for cyber can raise the bar and help small teams’ performance “by having artificial intelligence as a component of your overall program”.
Gallagher-Kaiser Corporation
Gallagher-Kaiser Corporation is a Michigan based turn-key supplier of paint finishing systems, commercial HVAC, and mechanical automotive systems. Hear from Rick Bertoncin, Director of Technology and Security: “I truly think everybody should have artificial intelligence as part of their arsenal in cyber security.”
In an effort to protect its foundational intellectual property as well as its sensitive customer, employee, and partner information, Aqua-Leisure deployed Darktrace’s self-learning technology. According to Leonard Galinsky, Director of IT for Aqua-Leisure, “Darktrace has allowed us to gain unprecedented insight.”
Pacific Dental Services
Hear from Nemi George, Senior Director of Information Security at Pacific Dental Services discuss how Darktrace’s cyber AI defends its network from the inside out.

Australian Non-Profit Youth Organisation
Australian Independent School
East Asian Telecommunications Company
Peer-to-Peer Lending Marketplace
Electricity Transmission Company
Insurance Company
Clothing Retailer
International Sporting Goods Manufacturer
Global Educational Foundation
UK Law Firm for Pensions & Retirement Savings
UK Energy Saving Organization
UK Reinsurer of Terrorism Risk
UK Real Estate Investment Trust
Cypriot Law Firm
Singaporean Ticketing Provider
US Software Company
Global Maritime Company
UAE Logistics Provider
US Telecommunications Company
South African Insurance Company
UK Public Infrastructure Provider
Independent International School
International Digital Payment Company
Italian Digital Service Provider
Canadian Media Content Company
Global Furniture Manufacturer
Online Car Rental Service
European Vehicle Supplier
International Plumbing Technology Manufacturer
Provider of Public Safety Software
Pioneer of Digital Credential Management Services
French Risk Management Company
US Healthcare Provider
Global Contract Manufacturing Organization

Video Features

Introducing Cyber AI Analyst
Cyber AI Analyst is Darktrace’s AI investigation technology, which automatically triages, interprets, and reports on the full scope of security incidents targeting your dynamic workforce.
Introducing the Darktrace OT Engineer Interface
Learn how to use Darktrace’s new OT Engineer interface within the Threat Visualizer, including how to triage the OT alerts that have immediate operational consequences — streamlining operations for plant operators and security professionals alike.
WIRED Brand Lab: How AI can fight disinformation
Justin Fier joined WIRED’s editor in chief, Nick Thompson to discuss the promise of AI in fighting against ever evolving hacking threats, and countering misinformation.
Darktrace SaaS Console
Darktrace’s SaaS Console allows users to visualize and analyze SaaS behaviors across the workforce from one central location, providing all the data needed to effectively triage events in the cloud.
Cyber AI for SaaS: Protecting Your Dynamic Workforce
Darktrace’s Enterprise Immune System learns the unique ‘patterns of life’ of your entire workforce, providing visibility and protection across SaaS environments and beyond.
McLaren and Darktrace: Remote Working
McLaren’s transition to remote working was accelerated overnight with Darktrace’s AI, protecting data while ensuring their employees stay highly productive. Hear more from Karen McElhatton, Group CIO in this video.
Remote Working Security Risks
The world has shifted to working remotely. Join Max Heinemeyer as he dives into some of the cyber security risks and dangers that employees may face when working from home — and what they can do about it.
McLaren champions Antigena Email
McLaren Group CIO Karen McElhatton shares how Darktrace Antigena keeps McLaren safe from potential email threats.
Antigena Email: The Self-Defending Inbox
Powered by self-learning AI, Antigena Email neutralizes the email attacks that evade border defenses. The technology continuously analyzes inbound and outbound mail flow, understanding the human behind email interactions.
Nicole Eagan at AWS re:Invent 2019: Securing the Super Bowl
Nicole Eagan joins Floyd Fernandes, CISO of CBS Interactive, to explore how they hosted the 2019 Super Bowl smoothly and securely with AWS and Darktrace AI.
MacRobert Award 2019 Finalist: Darktrace
Darktrace have been selected as a 2019 MacRobert Award finalist for Antigena, our autonomous response AI that can both identify and neutralise cyber-attacks.
The cyber challenge: Innovating our way out
Poppy Gustafsson, Co-CEO of Darktrace, discusses why humans are vulnerable to attackers, how hackers are becoming increasingly innovative and ultimately how cyber AI can help us invent ourselves out of the problem.

Industry Analyst Reports

Cybersecurity Insiders: 2020 Insider Threat Report

This report, produced by Cybersecurity Insiders, reveals the recent rise of insider threats and explores how organizations across industries are addressing the challenges surrounding internal risk.

This report from Forrester evaluates the emergence of offensive AI, organizations’ current security practices, and how well prepared they are to fight off such attacks.

IDC Perspective: Making Strides in Cybersecurity

This case study from leading analyst firm IDC tells the story of Milton Keynes University Hospital (MKUH) NHS Foundation Trust in England, which deployed Darktrace’s Cyber AI Platform to fight back against advanced attacks in the wake of last year’s global WannaCry campaign.

Ovum: ‘Darktrace AI powers all phases of threat defense’

This report from leading analyst firm Ovum declares Darktrace’s Enterprise Immune System “a strong example of leveraging artificial intelligence” and “one of the few cases where talk about use of AI in cyber security has turned into action”.

451 Research: ‘Darktrace succeeding with a focus on the ‘good’ and the ‘not good enough’’

This report analyzes how Darktrace's use of unsupervised machine learning is positioning it as the leader in anomaly detection, and outlines how Darktrace Antigena autonomously responds to potential threats in real time.

451 Research: ‘Darktrace is immune to old security ideas’

This report from 451 Research provides an overview of Darktrace’s technology and products, along with the current state of the cyber-security industry and where Darktrace fits in today’s landscape.

Ovum ‘On the Radar: Darktrace detects threats with machine learning’

Ovum’s Rik Turner outlines and analyzes Darktrace’s unique approach to cybersecurity and how it fulfills the need for anomaly-based threat detection without rules and signatures.