Recently, Cyber Research NZ and Australia staff and customers attended BlackHat Asia 2016 in Singapore. I have attended many of the BlackHat events in the past, in my quest to continually build knowledge, stay up to date with threats, find talent and most importantly study the latest security products that influence our ability to deliver quality service to our NZ and Australian clients.
In a sea of vendors in the business hall, I met with the local Singapore team from Darktrace. A UK Based firm who are leading the way in “machine learning” (or AI) based Cyber Security products. The crowd that swelled around their stand made the rest of the business hall look deserted at times. Perhaps it was the visually stunning 3D “Threat Visualizer” view of your environment (which would look great in the Cyber Research SOC). I had a great time chatting to the local Darktrace team, and watching a demonstration of the visually spectacular product. It was absolutely the best product I have ever seen at a Blackhat event. It’s disruptive in my opinion and I don’t use that term lightly. They refer to it as an “Enterprise Immune System”. It lives inside your business, learning what information flows are ‘normal’ and recognizing when something unusual occurs. If this all sounds like hype, don’t be fooled. The case studies speak for themselves. Locally here in NZ trials are going very well with strong interest. NZX and TSB Bank were early adopters with other banks following suit. Telstra Australia have rolled it out across their entire business.
Some of their large European customers have some impressive case studies. Darktrace was dropped into a large Energy Generator/Grid and after only two weeks, it uncovered attackers (probably state sponsored) had infiltrated their network. (probably had been there for years) With their finger “on the button” they could have literally taken down an electricity network that covers half of Europe. This is inside an organization that spends millions on Cyber Security annually. Now, I have a personal interest in the Energy / Utilities space due to my own background in this area and can imagine that Darktrace would perform well sitting across critical infrastructure, smart meters, generation control systems, SCADA, etc because the traffic is fairly consistent and therefore any anomaly would be immediately apparent.
Finally, if you are reading this and not convinced, you can try for a month for free. Their Proof of Value (POV) offering means you can put it in your environment and get some incredible insights almost immediately. Cyber Research is now a Darktrace Partner / Reseller in New Zealand and are very much looking forward to seeing the success of this product across our growing customer base.