AI Is Helping Uncover Cyberthreats Lurking in the Digital Dark

Cyberthreats are constantly evolving and becoming more sophisticated, making it difficult for companies to keep up with the latest trends. Reactive security measures are no longer adequate to protect against these threats, as they often come too late after the damage has already been done.

In response to this growing concern, Darktrace announced new artificial intelligence (AI) products to help companies pre-empt these threats. Based on the company's findings that high-priority attempts to breach systems have increased by 49% globally between January and June 2022, the new products are designed to provide real-time protection against these threats.

PREVENT/E2E (End-to-End) and PREVENT/ASM (Attack Surface Management) use AI to think like an attacker and find pathways to a company's most critical assets from inside and outside the company. They also track and analyze the most innovative attacks and provide information to help organizations learn more efficiently and automate defenses.

"A purely reactive approach to security is quickly becoming inadequate. Early data from research into how organizations are mitigating cyber risk and threats shows a shift towards proactive, ‘always-on’ technologies continually running tests on existing systems. Yet a continuous approach is fundamentally impossible to achieve without automation and AI, and Darktrace’s combination of AI technology that learns self and its new PREVENT product family will bring real value to thinly stretched security teams," said Chris Kissel, Research Director at the International Data Corporation (IDC), to Darktrace.

In particular, PREVENT/E2E is designed to work with a company's existing security infrastructure and provides an outcome-based approach to managing cyber risk. It incorporates capabilities from multiple disciplines, including attack path modeling, automated penetration testing, breach and attack emulation, security awareness testing and training, and vulnerability prioritization.

Meanwhile, PREVENT/ASM is specifically designed for rapid and continuous surveillance of a specific target. Shadow IT, supply chain, mergers and acquisitions, configuration errors, and other situations are examples of PREVENT/ASM's use cases.

"Our team is finding Darktrace PREVENT very useful as it provides the types of insights and reflections we need to ensure we maintain a level of transparency and validity within our digital environment. I can see lots of ROI for municipal environments, especially those built-in cloud and virtual environments, use cases for external auditing, visibility into IoT environments, continuous pentesting, and actively monitoring risk. It also addresses some of the skilled analyst shortages the cyber security industry faces," said Michael Lee Sherwood, chief innovation officer for the City of Las Vegas.