While security and risk management have long been a priority for financial services organizations, the sector continues to consider cyber security as a critical area for transformation, as the frequency and sophistication of threats grow.
The industry is in transition from the legacy model of security, focused on preventing external threat, to an adaptive model that is capable of dealing with the uncertainty and unpredictability implicit in large and complex infrastructures.
Dealing with insider threat, as well as ‘hackers’ and ‘malware’, is a critical objective in this new model. Financial services rely on large, international workforces, including contractors, suppliers and remote workers. It is unrealistic to expect all of those people to take the right decision, every time – whether malicious or not, insider risk must be managed pragmatically, but effectively.
Darktrace delivers this next generation of cyber defense capability through its unique ability to self-learn and identify abnormal behaviors, even when they bypass all other security tools. Working with some of the largest financial institutions in the world, Darktrace gives its customers in this sector unprecedented visibility into all their digital activity, and the critical ability to detect and investigate suspicious activity – before damage is inflicted to operations, reputation or the bottom line.
Energy & Utilities
The energy and utility sector has long faced some of the most advanced attackers, from industrial espionage to state-sponsored attacks. As part of national critical infrastructure, the importance of defending these organizations in this new era of threats cannot be underestimated.
It is not just a case of protecting the corporate network either. Industrial Control Systems, such as SCADA, are increasingly being targeted in highly sophisticated attacks that threaten safety and personal security, as well as the long-term future of major infrastructure providers.
As IT and Operational Technology environments continue to converge – and the traditional air gap is undermined – it is critical to attain coverage and monitoring across all networks, so that emerging threats may be detected wherever they are moving.
Darktrace’s ICS capability, with the Industrial Immune System, complements its core Enterprise Immune System technology, making it the only threat detection and investigation tool that addresses both IT and OT environments.
Whether an employee shortcutting security policies, a skilled hacktivist with a grudge to bear, or a stealthy state actor biding time within your network, Darktrace catches the subtle signs of abnormality and identifies threats in their early stages.
Protecting increasingly interconnected critical infrastructure from new cyber threats is a significant challenge faced by the transportation sector. Damage to critical infrastructure has the potential to cause major knock-on effects for business reputation and customer satisfaction. Striking the balance between functionality and security is of vital importance for transportation companies as they provide critical services.
Cyber-attackers may target transportation companies not only to gain access to customer databases or other confidential data that may be monetized, but also to deliberately disrupt critical services, whether for political or ideological reasons. By interrupting the operational technologies managing transport infrastructures, cyber-threats can irreparably damage company reputations and pose a real threat to passenger safety.
Darktrace works with some of the world’s leading transportation companies, from airport groups to train companies, to provide defense against some of the most difficult and subtle threats within their networks.
The unique ability of Darktrace’s Enterprise Immune System to learn the normal behavior of each user, device and network, enables it to spot deviations from the norm and calculate the probability that those deviations represent genuine problems that require investigation. Darktrace detects threats as they emerge, providing total network visibility and ensuring that critical infrastructure can function reliably and safely, without interruption.
Manufacturing & Supply
Manufacturing companies face significant challenges in an age of increasing digitization, where corporate IT networks are coming to share more functions with traditional operational technologies. Protecting IT and OT environments, as well as ensuring that the supply chain is secure, means that manufacturing companies face cyber-threats from multiple angles.
Manufacturers depend on availability and reliability – machinery must be available to operate, and trusted to deliver. An undetected cyber attack could undermine the production process and cause substantial damage to finances and reputation. Insider threat poses a significant problem too – insiders could be well-placed to access critical systems to deliberately disrupt vital services, but also inadvertent mistakes could allow cyber-attackers to access operational technologies by using the corporate network as a through route. Manufacturing executives are increasingly aware of the greater risk of cyber-attack, and are taking steps to improve on existing security practises.
By working with leading manufacturing companies around the world, Darktrace is helping to defend against cyber-attacks and ensure organizations can operate without disruption. Darktrace’s self-learning technology is uniquely capable of learning a ‘pattern of life’ across both corporate IT networks and operational technologies, enabling it to detect anomalous activity in real time. Darktrace also provides total network visibility, aiding the investigative ability of security teams and providing boardroom executives with greater business oversight.
Not-for-profit organizations suffer the same cyber security concerns as their profit-making counterparts. However, the nature of their work sometimes makes them particularly susceptible to certain types of attackers, whether it is people who disagree with their cause, or groups that want to damage their reputation and ability to operate.
Given the ideological threat of hacktivists, the charity sector requires robust defense. This is not easy however, given their reliance on remote workers and volunteers, and the importance of digital outreach, making their networks hard to govern and protect. They can be seen as easy targets.
Darktrace works with leading charities and non-profit organizations to protect, addressing this challenge of protecting highly-distributed networks and information, while enabling dynamic working environments and digital activities. Darktrace’s Enterprise Immune System technology is easy to use for all levels of these organizations, from IT, and not just the IT or security team, identifying potential threats while there is still time to act, and safeguard the reputations and futures of these special interest organizations.
Media & Entertainment
Intellectual property is vital for media and entertainment companies in maintaining their competitive edge. Consumer demand for media is highly digitized, with content readily available on multiple platforms. In an age of advanced cyber-threat, media and entertainment companies must balance this availability of digital content with the security of their intellectual property, avoiding damaging leaks that could severely harm their reputation.
Due to the financial and reputational damage that cyber-attacks cause, the problem of cyber security has now become a board-level issue. Executives no longer see cyber security as a problem of technology, but rather as a business issue. This changing attitude means that media and entertainment companies are more aware of the potential damage security breaches can cause, and also ensures that networks are better protected from advanced cyber-threats.
Some of the world’s leading media and entertainment companies use Darktrace to protect against the sophisticated threats of today. Darktrace’s Enterprise Immune System technology enables these organizations to detect and defend against cyber threats in real time, protecting the key assets and important intellectual property. Darktrace also provides total network visibility, allowing an awareness of all routes a potential threat could take and the ability to monitor and track those suspicious activities. With early visibility and continuous monitoring of network activity, media and entertainment companies can effectively safeguard data and interconnected systems, whilst remaining dynamic and innovative.
Retail & e-Commerce
The retail sector relies on ease-of-purchase and a fluid customer experience in an increasingly competitive market, as e-commerce continues to grow. Amid this race to digitization, retailers must also ensure that customer data is secure and trust is maintained. This is not always an easy balance to strike.
After repeated cyber-attacks hitting the headlines in recent years, retailers are anxious to safeguard their brand reputation in the future, as attackers become increasingly sophisticated. They are embracing the Enterprise Immune System approach because it delivers visibility of all their digital platforms, and allows for effective defense, while enabling the business to move at the speed that it needs to in today’s online marketplace.
Government & Defense
Governments and the defense sector face some of the most pernicious cyber-attackers, including state-sponsored ones. The stakes are high and governments are continually confronted with new, unseen threat methodologies that change quickly, move subtly, and are very difficult to detect.
Despite the best perimeter defenses, advanced attackers continue to challenge this sector, and the insider threat is persistent. Edward Snowden proved that even the most stringently defended organizations in the world are vulnerable. The reality is that you cannot rely on staff or contractors to make the right decision, every time. Non-malicious, legitimate network users can also be dangerous.
Darktrace works with governments and the defense sector to deliver the best-in-class, most resilient defense against today’s attackers and tomorrow’s threats. It assists governments in achieving oversight and visibility of their myriad of network and users, and increases their confidence in being able to catch in-progress threats, before they do damage.
With our unique heritage in government intelligence – our experts have decades of experience in cyber defense for national security, working in high-risk environments in the US, Canada and the UK – Darktrace is uniquely placed to help protect critical assets and national infrastructures. Darktrace fights back at the same level of sophistication and speed as the adversary, whoever or whatever they are.
Healthcare & Pharma
With the digitization of healthcare records and medical processes, and the premium that is paid on the dark web for medical records, the healthcare industry is an attractive target for cyber attackers across the world.
The healthcare sector has also experienced a number of ransomware attacks in particular, where hackers encrypt a computer network’s data to hold it hostage. Healthcare organizations are often considered an easy target, as many lack the resilience to defend themselves effectively, and place a high value on their data.
Beyond immediate concerns around privacy, these breaches inflict major reputational damage, and threaten long-term confidence in the system. A major concern is not simply the threat of data being stolen or ‘held’ illegitimately, but the possibility that data can be changed, without the organization recognizing it. What happens when a patient’s blood type is changed, without your knowledge?
Darktrace’s Enterprise Immune System offers the industry the means to stay ahead of emerging threat actors that jeopardize the entire sector. We work with hospitals and healthcare providers to deliver real-time awareness and visibility of all digital interactions, and automatically flag emerging behaviors that require investigation. Darktrace achieves this before ransomware spreads, before insiders cause irrevocable damage, and before criminals jeopardize data integrity.
Legal & HR
Cyber security is a major concern for law firms and the legal sector at large, as it handles substantial amounts of sensitive client data. From details relating to protected witnesses, patent applications, mergers and acquisitions, to financial negotiations and pending litigations, it is this rich data that makes these firms such a target for cyber-attackers. Law firms are also targeted in order for hackers to perform reconnaissance, or to side-step into a client’s network.
Your employees and staff are entrusted with highly sensitive data, but how do you properly vet them and their interactions? Can you guarantee that they will not expose data inadvertently, or deliberately contravene correct process? What if they themselves are targeted? Insider threat is impossible to fully predict, and will remain a problem that only automated and intelligent oversight can address.
Reputational damage to a law firm leads to a loss in trust that jeopardizes client relationships and harms customer acquisition. In the light of high-trust position that law firms operate in, cyber security has quickly become a critical issue.
Many law firms across the world, including Magic Circle and AmLaw 100 firms, are turning to Darktrace to provide them with the defense capability necessary to pre-empt emerging threats. It enables them to get ahead of issues that may be bubbling beneath the surface of their busy networks which would otherwise go undetected. Investment in innovative technology and machine learning has allowed law firms to demonstrate a serious cyber security strategy in line with client expectations, and increases confidence in their resilience and ability to defend against both insider and external threats.
Technology & Telecoms
The volumes of data and complexity of IT infrastructures that telecommunications companies manage and operate create major security challenges. As operators continue to modernize, and adopt more innovative products and services, they have become increasingly vulnerable to attacks that target their infrastructures, and put critical services in jeopardy.
Some of the world’s largest telecommunication providers rely on Darktrace’s technology to protect increasingly challenged infrastructures, from virtualized environments to large-scale physical networks. This enables them to maintain availability and reliability for their customers, while protecting against some of the most pernicious threats that routinely target them.
This leading Scottish accountancy firm was looking for a cutting-edge cyber security technology capable of real-time threat detection as well as addressing the issue of insider threat, not only to strengthen its own cyber security strategy but also to provide a solution to the issues it sees several of its clients facing.
Founded in 1993, Pool Re is a reinsurance company, whose members comprise the majority of commercial property insurers in the UK. In order to stay ahead of cyber attackers, Pool Re recognized its need to strengthen its cyber defense strategy by deploying a technology able to detect emerging threats and mitigate the risk they pose.
As one of Europe’s largest publicly-listed property development and investment companies, British Land wanted to defend its critical assets from advanced cyber-attacks, zero-day exploits and insider threat by employing the latest, cutting-edge cyber security technology.
Blackhawk Network is a globally-recognized company that pioneered ‘branded value’ providing solutions like gift cards, digital payments, and loyalty points. It needed a single tool to provide full network visibility and early-threat detection to increase efficiency and stay on top of a fast-moving threat landscape. By installing the Enterprise Immune System, Blackhawk Network has renewed confidence that it can spot and mitigate threats, as they emerge, in real time.
This leading provider of outsourced billing services and payment cycle management needed a technology that could detect zero-day threats without having to be continuously updated. By basing its security stack on Darktrace’s advances in unsupervised machine learning, Billtrust has increased its confidence that its sensitive customer information is protected from rapidly-evolving cyber-threats.
DirecTV is an American direct broadcast satellite service provider and broadcaster with more than 20 million subscribers. DirecTV recognized its need to improve its cyber security strategy as a whole in order to be prepared to handle potential issues. After completing a four-week Proof of Value (POV) with Darktrace’s Enterprise Immune System, during which several points of investigation were flagged up, DirecTV decided to deploy the technology as a permanent cyber security solution.
Trek is one of the world’s largest bicycle companies, producing more bikes in the United States each year than any other company. As a leading manufacturer of high-quality bicycle components and technologies, Trek considers the protection of its intellectual property and designs of paramount importance. In order to stay proactively defended against ever-evolving modes of attack, Trek Bikes decided to deploy Darktrace’s Enterprise Immune System with a 4-week Proof of Value (POV).
As one of the largest telecommunications companies in the world, BT has an extremely complex network and large dataset containing confidential customer information. With billion pound revenues and a worldwide reputation to protect, BT chose Darktrace’s Enterprise Immune System technology to protect against sophisticated and rapidly-evolving cyber threats.
Irwin Mitchell is amongst the 20 largest law firms in the UK, with 11 offices across the country and over 2,400 employees. Irwin Mitchell has long prioritized the integrity of its data systems, and particularly that of its clients’ information. The firm wanted to improve its ability to detect potential cyber-threats, or suspicious incidents, early, by acquiring a better understanding of the activity of its networks and where, if anywhere, unexpected events might be occurring.
In response to its complex security needs, Wellcome Trust chose to deploy Darktrace’s Enterprise Immune System. With its unique ability to detect abnormal behavior as soon as it occurs, the Trust could optimize its capacity for effective threat mitigation. Simultaneously, the company finally had a comprehensive picture of its entire network, with full visibility into every digital behavior and exchange.
Transport systems are becoming increasingly interconnected via digital applications, making them more susceptible to cyber-attacks. FirstGroup was aware that new attack vectors meant that its critical systems and networks were vulnerable to new and evolving cyber-threats from all over the world, and decided to deploy Darktrace’s Enterprise Immune System technology into the core of its network, in order to enhance its ability to defend itself against potential damaging cyber incidents.
Virgin Trains, part of the world renowned Virgin Group, chose to deploy Darktrace’s mathematics-driven Enterprise Immune System technology, due to its unique ability to detect threats that bypass other legacy security controls in real time, as they emerge on the network. In doing so, Virgin Trains have succeeded in striking the balance of protecting its information and brand, while continuing to leverage global interconnectivity and human creativity.
QUI! Group is an Italian company active in the digital services sector, providing corporate and social welfare solutions, electronic money, merchant networks and loyalty systems. QUI! Group decided to deploy Darktrace’s Enterprise Immune System at the heart of its network, to enhance its ability to address potentially malicious threats before they cause significant damage.
Macrosynergy Partners manages a global macro discretionary trading fund, which invests in foreign exchanges and associated derivatives. In the context of an increasingly complex digital environment and growing investor demands for robust and resilient information infrastructures, Macrosynergy identified cyber defense as a strategic priority and turned to Darktrace's Enterprise Immune System to provide total oversight of their network.
Established since 1963, BH Global Corporation Ltd is a Singapore SGX mainboard listed group providing supply chain management, design and manufacturing and engineering services to the marine and offshore and oil and gas industries. BH Global also has a security division that provides Enterprise IT security services, night visions security, and infrared health screening. A leader in each of its sectors of business, BH Global provides integrated and advanced solutions collectively across multiple industries.
Royal British Legion
The Royal British Legion is a charity providing financial, social and emotional support to members and veterans of the British Armed Forces and their families. The charity is one of the UK’s largest membership organizations and employs over 1,300 people. The Royal British Legion needed a new-era technology to not only defend its critical assets but also provide it with complete network visibility to improve its overall understanding of what is going on inside its own systems.
MACOM decided to deploy Darktrace’s award-winning Enterprise Immune System across its complex system, due to its unique capability to detect emerging abnormal behaviors and threats as they occur, without requiring any a priori knowledge. The technology is powered by machine learning and probabilistic mathematics from the University of Cambridge, which enables it to establish a ‘pattern of life’ specific to MACOM’s network allowing it to report any deviations from ‘normal’ behavior, which may be indicative of a serious breach. In this way, MACOM is kept up-to-date about its network activity and informed of incidents in real time.
Faced with the challenge of defending against advanced cyber-threats, Quickplay realized that it required a next-generation security solution that would take into account its highly-connected environment and the large volumes of data that its employees handle on a day-to-day basis. The company wanted to improve its ability to preempt potential security problems quickly and stop suspicious activities from escalating.
HBG Gaming is a leading gaming company, providing a host of games to Italian consumers including slot machines, video lotteries, bingo, betting and online games. As broadband services expand and online gaming diversifies across smartphones, tablets and other devices, the industry is becoming increasingly exposed to sophisticated cyber attacks. Securing customers’ personal and financial details is vital for HBG Gaming to provide a reliable gaming service and maintain its position as a trusted brand.
This industry-leading furniture manufacturer was keen to defend its critical data assets from any potential compromise to its intellectual property and designs, confidential corporate information or customer data. Furthermore, the company was increasingly aware of the limitations of perimeter defenses and legacy approaches, which are unable to detect insider threat.
This online car rental company deployed Darktrace’s Enterprise Immune System in order to develop an evolving baseline of activity, specific to its network. This enables Rentalcars.com to detect even the most subtle threats as they emerge. With total network visibility, the company is well placed to investigate threats in real time, and mitigate potential risks to their online operations.
As biology becomes increasingly digitized, biotechnology research companies, such as Human Longevity Inc., have to strengthen their cyber defense strategies accordingly. In order to protect its intellectual property and critical data from sophisticated cyber-attacks, Human Longevity decided to deploy Darktrace's cutting-edge cyber defense technology, founded in mathematics and machine learning developed by specialists from the University of Cambridge.
Sackers is the UK’s leading commercial law firm for pension scheme trustees, employers and providers. In order to provide the best range of services to its clients, Sackers chose Darktrace’s Enterprise Immune System to ensure that it remains at the forefront of developments and changes in legislation and regulation in the pensions and retirement savings industry.
City of Las Vegas
The City of Las Vegas serves as the legislative body that governs Las Vegas, Nevada. While their network covers 3,000 users, the City of Las Vegas oversees private and sensitive data of both the 600,000 residents and over 42 million tourists per year. With Darktrace's unique ‘immune system’ approach, City of Las Vegas has increased its confidence that sensitive information is protected and secure.
The Scottish Government
The Scottish Government is a devolved government which was established in 1999 and is responsible for a vast amount of sensitive data. As such, it recognized the need to defend its systems from potential cyber-threats as paramount, particularly in the face of modern cyber attackers. The Scottish Government selected Darktrace because its advanced ‘immune system’ cyber defense technology provides it with complete network visibility, an overview of its user and device behaviors, and the confidence that potentially damaging cyber-attacks will not go unnoticed.
Giunti Editore is the second largest Italian publishing house, publishing books on a wide range of topics and managing a number of book stores and printing warehouses throughout Italy. In order to defend its intellectual property and critical data from sophisticated cyber-attackers, the company was looking for an innovative technology capable of real-time threat detection.
Servizi in Rete
As an online and digital service provider, Servizi in Rete highly prioritizes the defense of its sensitive business and customer data against sophisticated cyber-attackers and insider threat. The company wanted a cutting-edge cyber security technology to provide complete network visibility and real-time threat detection.
Saniflo is a French-owned subsidiary of leading global manufacturer the SFA Group, selling plumbing technology for residential and commercial premises. Eager to maintain its reputation for technical expertise and quality of service, Saniflo was looking for a cyber security solution capable of keeping up with a constantly-evolving cyber threat landscape, which could also provide full network visibility.
This leading provider of public safety software needed an innovative security solution to stay on top of fast-moving threats. By deploying the Enterprise Immune System, Spillman Technologies can now detect unknown attacks, as they emerge. In addition, the organization now has 100% visibility into their network, allowing Spillman Technologies to take a proactive stance in the face of a rapidly-evolving threat landscape.
Chantecler is one of the leading jewelry brands in Italy, established on the island of Capri in 1947. It had been looking for a cyber security solution capable of defending its network, including its digital assets and intellectual property, from the latest, most advanced cyber-attacks. Chantecler also needed a new-generation technology capable of providing complete network visibility.
Based in Portland, Oregon, KEEN manufactures footwear for outdoor activities and lifestyle use. As one of the fastest-growing footwear manufacturers globally, KEEN considers security of its sensitive data a priority. Due to its machine learning capabilities to detect threats at their nascent stages, KEEN selected Darktrace in order to stay abreast of fast-moving threats, without the use of rules, signatures, or prior assumptions.
Based in Scottsdale, Arizona, Parchment is the most widely adopted digital credential management service, allowing learners, academic institutions, and employers to request, verify, and share academic credentials. In order to secure this critical and sensitive data, Parchment deployed the Enterprise Immune System to detect threats in real-time, understand and visualize its entire network as the company grows, and to stay on top of a rapidly-evolving threat landscape.
The stakes of cyber-threats in this sector are high given the possible implications on the integrity of national critical infrastructure. As a large company with an extensive customer base, spanning several global locations, Apave has many users on its network at all times. Given the limitations of traditional legacy tools in detecting potential insider threat, the company wanted to focus less on perimeter defense and more on the activity inside its network.
Milan-Bergamo Orio al Serio International Airport
The digitization of airport practices creates potential vulnerabilities and possible entry-points for cyber adversaries. This is a pressing concern for Orio al Serio International Airport which, as part of Italy’s critical national infrastructure, is already a likely target for malicious attacks. As such, the airport was keen to strengthen its cyber defense strategy with the latest, most innovative cyber technology available. After deploying Darktrace’s immune system technology, Orio al Serio International Airport is now alerted to genuinely anomalous behavior, that may be indicative of cyber-threat, in real time.
This leading Canadian local distribution company was concerned about fast-moving and automated threats, like ransomware, that has the potential to compromise its network within minutes. By arming itself with the Enterprise Immune System’s innovative self-learning technology, Energy+ has renewed confidence in its security stack’s ability to detect and mitigate evolving and increasingly automated attacks.
Founded in 1917, Sunsweet is the world’s largest manufacturer of dried fruit, controlling more than a third of the global prune market. In order to help secure the sensitive data of nearly 300 grower-members, Sunsweet deployed the Enterprise Immune System to detect emerging threats, in real-time. By relying on the latest advancements in unsupervised machine learning and artificial intelligence, it has increased productivity while enjoying greater confidence in its ability to stay abreast of a threat landscape that is increasingly characterized by speed, sophistication, and automation.
Swope Health Services
Swope Health Services provides primary care, mental health programs, and community outreach to the broader Kansas City area. With over 500 employees, it provides patient-centered medical care to over 40,000 patients and its network carries the highly sensitive medical information of over 200,000 individuals. After a thorough market review, Swope Health Services deployed Darktrace’s Enterprise Immune System to detect and respond to emerging threats in real time. Armed with genuine machine learning and AI algorithms, Swope Health Services now has complete visibility of its entire network and can stay proactive in the face of an advanced threat landscape.