Overview

Operational technology infrastructure is in a security crisis. Almost half of cyber-attacks on OT go undetected until they wreak significant damage and in 2019, 90% of industrial organizations reported suffering at least one damaging attack in the last two years. When dealing with physical equipment that often follows regimented schedules and specific functions, one cyber incident can result in millions of dollars in damage. Traditional OT controls don’t afford organization-wide visibility over the OT network. How these devices may be vulnerable is often poorly understood. Industrial software may go unpatched and machines may have little to no native security.

Darktrace’s Industrial Immune System (IIS) is the first Cyber AI security platform to be deployed across ICS and SCADA systems. The IIS is a fundamental shift in the defense of critical infrastructure and vital manufacturing centers. Darktrace AI learns the unique ‘pattern of life’ of every industrial device and environment that it safeguards — analyzing rich data flows from across 100% of the digital estate in real time. This knowledge of each machine’s complex and evolving connectivity patterns enables the Industrial Immune System to detect the anomalous behavior indicative of all cyber-threats, including never-before-seen attacks that bypass legacy tools.

“Prior to Darktrace, we had limited insight into our industrial environment, but now we have total visibility of our SCADA systems,” said Paul Martinello, Vice President of Information Security at Energy+. “There’s truly nothing else on the market like Darktrace.”

Cyber AI is the only tool that can ingest the massive number of data points these complex OT networks present. Leveraging unsupervised machine learning, the Darktrace Cyber AI Platform is able to correlate context-rich calculations of risk for expansive and complex physical networks.