Darktrace Blog Posts
Archive

All Posts

Attack Surface Management
クラウド
アプリ
ゼロトラスト
HEAL
PREVENT
DETECT
Ask The Expert (ATE)
Proactive Threat Notifications (PTN)
Cyber AI Analyst
Apps - AWS
OT
Apps - Azure
Apps - Microsoft 365
エンドポイント
Eメール
RESPOND
ネットワーク
ありがとうございます!あなたの投稿を受け取りました。
フォームを送信する際に何らかの問題が発生しました。
Default Darktrace Blog Post ImageBlog post image
In this blog we discuss Gootloader, a popular loader malware variant that was observed affecting a Darktrace customer in late 2023. Darktrace was able to identify and contain the suspicious attack activity before it could become a disruptive network compromise.
2024
Feb 15, 2024
該当する項目はありません。
Default Darktrace Blog Post ImageBlog post image
This blog walks through seven key trends we expect to observe in the cyber threat and cyber defense landscape during 2024.
2024
Feb 13, 2024
該当する項目はありません。
Default Darktrace Blog Post ImageBlog post image
This blog explores a series of CoinLoader compromises observed by Darktrace in late 2023. CoinLoader is a loader malware known to carry out cryptocurrency mining on infected devices. Darktrace’s autonomous detection and response capabilities allowed it to identify and shut down compromises in the first instance.
2024
Feb 8, 2024
該当する項目はありません。
Default Darktrace Blog Post ImageBlog post image
Darktrace's comprehensive report on the threats faced by businesses examines the trends our Threat Research team saw across our customer fleet in the second half of 2023.
2024
Feb 6, 2024
該当する項目はありません。
Default Darktrace Blog Post ImageBlog post image
This blog explores how Darktrace was able to identify and contain cases of the SmokeLoader malware on the network of affected customers in the summer of 2023.
2024
Jan 31, 2024
該当する項目はありません。
Default Darktrace Blog Post ImageBlog post image
Since January 15, 2024, Darktrace’s SOC and Threat Research teams have observed a surge in malicious activities targeting Ivanti Connect Secure (CS) and Ivanti Policy Secure (PS) appliances. This blog provides details of these activities, along with details of Darktrace's coverage of associated patterns of network traffic..
2024
Jan 26, 2024
該当する項目はありません。
Default Darktrace Blog Post ImageBlog post image
このブログでは、Darktrace DETECTとDarktraceのSOCチームが、パートナーの1社との信頼関係を悪用され、ネットワークが侵害された顧客をどのように支援したかについて詳しく解説します。
2024
Jan 17, 2024
該当する項目はありません。
Default Darktrace Blog Post ImageBlog post image
This blog will explore three challenges facing industries managing OT (Operational Technology) and ICS (Industrial Control Systems), the perceived benefits of adopting AI technology to address these challenges, and Darktrace/OT’s unique role in this process.
2024
Jan 9, 2024
OT
Default Darktrace Blog Post ImageBlog post image
This blog explores Darktrace’s investigation into a series of CyberCartel compromises that were detected across its customer base throughout 2023. CyberCartel is known to target government agencies and taxpaying individuals throughout Latin America.
2024
Jan 8, 2024
該当する項目はありません。
Default Darktrace Blog Post ImageBlog post image
In late August 2023, Darktrace observed malicious actors exploiting vulnerabilities on Ivanti Sentry servers within customer networks. Following these successful exploits, a variety of cryptomining and reconnaissance tools were delivered. In this blog, we will provide details of these chains of activity, along with details of Darktrace/Network’s coverage of the steps involved in them.
2023
Dec 20, 2023
該当する項目はありません。
Default Darktrace Blog Post ImageBlog post image
このブログでは、2023年9月にDarkGateマルウェアを顧客のネットワークに配信するためにMicrosoft TeamsとSharePointを悪用する悪意のある試みをDarktraceが自律検知し、対処した方法について詳述します。
2023
Dec 15, 2023
該当する項目はありません。
Default Darktrace Blog Post ImageBlog post image
Generative AI and other open-source tools are allowing threat actors to launch targeted 'one-on-one' attacks at scale. Security tools that apply AI in the wrong way won't see new and targeted attacks coming - but Self-Learning AI that trains itself on your data can. This blog compares cyber security AI approaches and methods.
2023
Dec 13, 2023
該当する項目はありません。
Default Darktrace Blog Post ImageBlog post image
This blog investigates the persistent MyKings botnet which has been observed across the Darktrace customer base since 2022, and highlights how Darktrace was able to provide full visibility over its kill chain from the beginning of the infections to the eventual cryptocurrency mining activity.
2023
Dec 6, 2023
該当する項目はありません。
Default Darktrace Blog Post ImageBlog post image
This blog post summarizes the Network and Information Security Directive (NIS2) ­– EU-wide legislation on cyber security that came into force in 2023 – exploring the most significant features, and what this means for security teams in the age of AI.
2023
Dec 5, 2023
該当する項目はありません。
Default Darktrace Blog Post ImageBlog post image
This blog discusses how Darktrace was able to identify the PurpleFox malware campaign, detecting its new tactics designed to avoid signature-based detection by leveraging mismatched filetypes, Powershell, and service control requests.
2023
Nov 27, 2023
該当する項目はありません。
Default Darktrace Blog Post ImageBlog post image
This blog discusses the US Department of Energy’s (DOE) announcement of funding for electric cooperatives, small investor-owned, and municipalities to be allocated to their cyber security posture.
2023
Nov 22, 2023
OT
Default Darktrace Blog Post ImageBlog post image
This blog discusses how Darktrace was able to successfully detect and respond to several incidents of SectopRAT compromise across its customer base.
2023
Nov 20, 2023
該当する項目はありません。
Default Darktrace Blog Post ImageBlog post image
This blog post explains how Darktrace can be used throughout the entire threat hunting lifecycle - from data collection through to threat identification, response, and documentation.
2023
Nov 9, 2023
該当する項目はありません。
Default Darktrace Blog Post ImageBlog post image
This blog details how Darktrace was able to detect and respond to the remote access trojan, PlugX, across its customer base in early 2023. Despite its highly evasive and adaptive nature, Darktrace’s was able to successfully identify PlugX compromises and prevent them from escalating.
2023
Nov 6, 2023
該当する項目はありません。
Default Darktrace Blog Post ImageBlog post image
This blog discusses the plausible threat of malicious actors taking advantage of errors in generative AI tools, or AI “hallucinations”, to launch malicious packet attacks and how Darktrace’s suite of products might detect these attempts.
2023
Oct 30, 2023
ネットワーク
Eメール
Default Darktrace Blog Post ImageBlog post image
多くのクラウドセキュリティベンダーは「レスポンス」を提供すると称していますが、その本当の意味は何でしょうか。クラウド関連のサイバー脅威に対する意味のある「対応」とはどのようなもので、どのように実現されるのでしょうか。このブログでは、そのすべてを明らかにします。
2023
Nov 1, 2023
該当する項目はありません。
Default Darktrace Blog Post ImageBlog post image
This blog details how Darktrace DETECT identified a banking trojan known to target organizations in Brazil before it was able to steal any sensitive customer data. Following the initial detection, Darktrace’s global SOC were able to investigate the incident and inform the customer for swift mitigation.
2023
Oct 13, 2023
該当する項目はありません。
Default Darktrace Blog Post ImageBlog post image
This blog explores Darktrace’s detection of and response to ViperSoftX malware across its customer fleet, despite its use of sophisticated techniques to evade detection.
2023
Oct 3, 2023
該当する項目はありません。
Default Darktrace Blog Post ImageBlog post image
This blog discusses how Darktrace was able to identify an ongoing case of SaaS account takeover which led to a subsequent phishing campaign, within days of being deployed on a prospective customer’s network.
2023
Sep 28, 2023
クラウド
Eメール
Default Darktrace Blog Post ImageBlog post image
This blog discusses the emergence of Black Basta, a relatively new ransomware group that was first observed in early 2022. In April 2023, Darktrace detected a case of Black Basta on the customer network and was able to track the ransomware at every stage of the cyber kill chain.
2023
Sep 21, 2023
該当する項目はありません。