Advancing UK Aerospace, Defence, Security & Space Solutions Worldwide
  • Home
  • /
  • Security
  • /
  • Darktrace AI fends off phishing attack on North American private equity firm

Security

Darktrace AI fends off phishing attack on North American private equity firm

Darktrace today announced that its AI-powered email security solution, Antigena Email, recently uncovered a targeted phishing attack at a North American private equity firm.


Image courtesy Darktrace

The company, which manages over 150 restaurants across the US, was trialling Darktrace’s Self-Learning AI when the attack took place. Intending to bolster email security, the company had deployed Darktrace’s email security solution, Antigena Email, which had learned the ‘normal’ email communications of every user within the organisation in order to detect the abnormalities associated with an email threat.

Advertisement
ADS S &P RT

The attack, which slipped past the company’s existing security controls, started when an employee received an email appearing to originate from internal ‘HR’. The email had been carefully designed to look like a SharePoint Microsoft document and was titled ‘Q3 Commission 2021 and Agenda’, an attempt to induce the recipient into clicking on a malicious link.

Detecting that the IP address of the email was unusual, Darktrace AI identified this as spoofing activity and further investigation suggested it was part of a wider trend of targeted phishing campaigns at the time which used fake Microsoft branding. These attacks are often launched with the intention of causing operational disruption or conducting IP and financial theft.

The company’s security team were alerted and issued company-wide warnings about the attack, averting a crisis. Had Antigena Email been deployed in fully autonomous mode, it would have double-locked the malicious links to ensure they were not clickable.

“Email impersonation attacks have been on the rise for a number of years – these are hyperrealistic ‘digital fakes’ that expertly mimic the writing style of trusted contacts, colleagues and suppliers,” commented Mike Beck, Darktrace’s Global CISO. “We simply cannot put the onus on humans to spot these well-researched, targeted email attacks and that’s why it is crucial that organisations have AI in place as a first line of defense – capable of detecting the subtle signs of a fake and intervening before a user even has to engage with the email. This is the future of email security.”

Advertisement
ODU RT 2

 

 

Advertisement
Babcock LB
Robosys Automation, ACUA Ocean and OREC secure Innovate UK funding

Security

Robosys Automation, ACUA Ocean and OREC secure Innovate UK funding

20 December 2024

Advanced maritime autonomy developer, Robosys Automation, supported by USV manufacturer, ACUA Ocean and Offshore Renewable Energy Catapult (OREC), have jointly secured grant funding through Innovate UK, for a specialist project exploring Collaborative Autonomy in USVs and ROVs across Maritime Autonomous Surface Ships (MASS) operations.

ACUA Ocean launches USV Pioneer

Security

ACUA Ocean launches USV Pioneer

18 December 2024

The UK-based autonomous unmanned surface vessel (USV) developer ACUA Ocean has successfully completed the test launch of the USV Pioneer from its base at Turnchapel Wharf in Plymouth.

ADS welcomes new VPs for Security and Defence

Defence Security

ADS welcomes new VPs for Security and Defence

17 December 2024

ADS Group - the UK trade association for aerospace, defence, security and space organisations (with over 1,400 members) - has welcomed Leonardo’s Clive Higgins as VP for Defence and PA Consulting's Dr Budgie Dhanda MBE as VP of Security and Resilience.

Darktrace named a Leader in 2024 IDC MarketScape for Worldwide NDR

Security

Darktrace named a Leader in 2024 IDC MarketScape for Worldwide NDR

16 December 2024

Darktrace has been recognised as a Leader in the IDC MarketScape: Worldwide Network Detection and Response (NDR) 2024 Vendor Assessment.

Advertisement
ODU RT
CLD appoints Trevor Donlin as Technical Director

Security

CLD appoints Trevor Donlin as Technical Director

16 December 2024

Cheshire headquartered CLD Physical Security Systems (CLD), a design led supplier of perimeter security solutions, has announced the appointment of Trevor Donlin as Technical Director, to head up its US operations.

Lloyd

Security

Lloyd's of London launches cyber insurance consortium with HITRUST certification

13 December 2024

An innovative cyber insurance consortium in collaboration with Lloyd's of London and backed by a network of globally recognised AA-rated insurers, has been unveiled by HITRUST, a provider of cybersecurity assurance.

Advertisement
ADS S &P RT