Darktrace Creates Enterprise Immune System Using AI

Table of contents

It seems like every other day there is news of some massive security breach resulting in people’s login credentials being scattered all over the digital universe usually accompanied by embarrassing mea culpa statements issued by company executives promising they will “try to do better”. Is it really that difficult to keep things secure? As it turns out, it’s really difficult.

We talked before about 9 hot cybersecurity startups looking to provide solutions that range from making sure you have installed the latest security patch to using machine learning to identify virus signatures on the fly. With the coming age of quantum computing, we will need to take things to a whole new level to ensure the security of critical industries like utilities and defense. One company is using the human immune system as inspiration to develop a security system unlike anything we’ve seen before. A startup called DarkTrace is biomimicry at its finest.

About Darktrace

Click for company website

Founded in 2013, London-based startup DarkTrace has taken in just under $180 million in 4 rounds of funding from investors that include Japanese technology conglomerate Softbank. The most recent funding round for Darktrace was in July of 2017 when they closed a $75 million Series D round. Darktrace is “one of the world’s fastest-growing cyber defense companies” and a leader in Enterprise Immune System technology, a new category of cyber solutions based on pioneering Bayesian mathematics developed by the University of Cambridge. Darktrace was actually founded by mathematicians and machine learning specialists from the University of Cambridge and world-leading intelligence experts from MI5 and GCHQ. For all the Yanks reading this, MI5 and GCHQ are the places where James Bond hangs out when he happens to be in “London England”.

Here’s the basic idea behind Darktrace. Imagine that you could easily plug a piece of software into the very backbone of your organization such that every single device, path, port, router, switch, human access permission and server could be visualized and rendered in a nice beautiful 3D diagram. Well, you can, and the interface looks much like the one seen below:

That isn’t just some pretty picture to use at your next board meeting to provide reassurance to your shareholders (though it would probably be perfect for that). That picture represents a vast digital system of interconnected devices with a great deal of complexity and unpredictability when observed by the human eye. With Darktrace though, the “eye” is actually artificial intelligence in the form of machine learning algorithms that immediately begin to learn your environment. The Darktrace system literally comes with no preconceived notions or biases, and starts to assess the situation at hand. What’s “normal”? How does everyone interact? What access permissions does everyone have? It starts to treat your organization just like the way your immune system monitors your body. If everything’s normal, it just continues to learn more about what “normal” is. Then, when something goes wrong, it is able to recognize the symptoms of the problem and raise the alarm.

Yes this whole “immune system” thing sounds pretty cool, and the name “Darktrace” implies that they’re out there shutting down all kinds of sinister boogie men just like James Bond, but does this thing really works? As we described before, the only way we can prove the existence of AI is in the results. In today’s day and age, you can’t roll into firms like the IBM salesmen of old and make people sign on the dotted line because “nobody ever got fired for buying IBM“. Today, you need to show the C-level decision makers that your system works. When you show superior results, they’ll buy your product because cybersecurity is what keeps them up at night the most. So we would ask then, just how fast is this thing being adopted? Here’s a slide posted by Darktrace on April 12th:

Since their solution lives in the cloud, it’s offered via a software-as-a-service (SaaS) model which is one of the reasons they can deploy it in about an hour. One SaaS business metric used above is “Total Contract Value” which generally means the money has been committed to Darktrace by the 2,400 clients that have signed up so far. The fact that this cybersecurity offering has been sold in such meaningful amounts across 12 different industries so quickly shows you that it’s also industry agnostic. You can’t grow your revenue 600% in a single year without having an extremely compelling value proposition that can be proven, and a product that deploys easily and doesn’t need tons of configuration changes across each client. What makes this possible is that whole “self learning” thing that AI is capable of now.

Our self-learning approach is the first non-consumer application of machine learning to work at scale, across all network types, from physical, virtualized, and cloud, through to IoT and industrial control systems.

One piece of advice they’re offering up now to marketing people is to litter your company webpage with interesting and useful information. The idea is that people would much rather read something useful rather than generic marketing copy being produced by some “growth hacker” who says things like “well, I don’t really know about what the product does because I just work in marketing”. Darktrace has done a great job of building an immense library of collateral you should look through if you’re interested:

Their marketing team has done a tremendous job of putting together a library which is a wealth of useful information like a document which provides all kinds of examples about the types of sophisticated attacks they’ve thwarted. Some interesting facts we pulled from all this marketing collateral:

  • Darktrace made the CB Insights AI 100 list and they’ve partnered with Siemens (industrial IoT applications) and Samsung (consumer device IoT)
  • For banks, the average cost per record stolen is $221, well over the average of $158
  • Darktrace installation takes 1-2 hours and value can be proven in 4 weeks (this helps explain rapid sales growth)
  • In 2016 alone, ransomware attacks spiked by 6,000 percent, raking in over $1 billion from unsuspecting victims.
  • One of Darktrace’s fast-food clients was actually being hacked through a “smart” refrigeration unit and Darktrace spotted it
  • 60 percent of all cyber-attacks are carried out by insiders, and only 1 in 4 of those attacks are accidental
  • Recently, Darktrace observed a law firm’s video-conferencing unit behaving strangely. It was transmitting large volumes of data to external IPs during board meetings. Insider trading anyone?
  • Finally, we rarely draw attention to gender, but we just had to ask – can we spend less time keeping up with the Kardashians and more time talking about women in technology like these two, one of whom co-founded Darktrace?


As an investor, when you hear about what startups like Darktace are doing, the first thing you want to do is get a piece of the action by buying stock in Darktrace. Unfortunately you won’t find a stock ticker for Darktrace because they haven’t had an IPO and they aren’t publicly traded. While it’s clear that “enterprise immune system” isn’t just a marketing term, it’s still one approach out of many, a number of which we elaborated on in a past article titled “6 AI Cybersecurity Startups“. However with Darktrace explicitly stating that they’re planning for an IPO, and the growth in place to get investors very excited about their prospects, you may not have to wait too long before you can buy shares in Darktrace as a retail investor.


Leave a Reply

Your email address will not be published.

    1. Appreciate that! And thank you for all the shares on Twitter mate. We’re glad you find value in our content.

      1. Yes i do. I dont need to express everything on myself but can refer to you … 😉 of course with mention!

  1. Darktrace (DARK.L), the British cybersecurity company that listed in April, increased its revenue growth forecast for its 2022 financial year for the second time in as many months on Wednesday, reflecting strong demand for its AI-driven products.
    The company, whose shares have increased more than 150% since its IPO, upgraded its outlook after reporting a better-than-expected 41.3% rise in revenue to $281.3 million for the year to end-June.
    It said it expects growth of 35% and 37% this year, up from its previous forecast of 29% to 32%.

  2. The Darktrace share price is currently selling at a P/S ratio of 13.5. City analysts think the company’s sales could rise to $513m (£380m) by 2023. Based on these estimates, the stock is selling at a 2023 P/E ratio of 7.3.
    In comparison, US peer Cloudflare is selling at a 2020 P/S ratio of more than 100.
    It is always going to be challenging to place an accurate five-year valuation on a stock. There are many reasons why the numbers may not turn out to be accurate as they are, after all, just estimates.
    Still, these numbers illustrate Darktrace’s potential. They suggest that the stock could be worth substantially more in five years than it is today.

    1. City analysts “suggest that the stock could be worth substantially more in five years than it is today.” Where do they come up with this stuff?

  3. Darktrace counts governments and multinationals as clients and had 5,600 customers, up 42% year-on-year, at the end of its last fiscal year. Darktrace shares are selling at a price-to-sales (P/S) multiple of 13. Some of its American peers command a valuation nearly double this level. Darktrace looks cheap, has a highly sought-after product, and is growing at a high double-digit rate.

    1. Because there are so many cybersecurity stocks it’s really tough to try and pick the one that will come out ahead of the pack ten years from now.

  4. “Short seller launches assault on tech star Darktrace”.
    ShadowFall bets against the cyber security specialist as it doubts it “will stand the test of time” Darktrace founder Poppy Gustafsson Darktrace has come under attack from the short seller ShadowFall, which has launched a barrage of criticisms of the cyber security specialist’s performance, accounting and culture.

  5. Shares in Darktrace fell sharply on Wednesday, after a senior director of the cyber security specialist was linked to the legal row over Autonomy’s sale to Hewlett Packard.
    According to The Telegraph, Justice Robert Hildyard – in a judgement handed down on Tuesday – found that Autonomy’s central management had pulled on accounting “levers” to misrepresent how well the business was fairing ahead of its 2011 sale to the US tech firm.
    Nicole Eagan, then Autonomy’s chief marketing officer, was named as “part of a clique responsible with the defendants of the operation of the impugned levels”.
    After leaving Autonomy, Eagan set up Darktrace with a number of other tech experts and became co-chief executive alongside fellow founder and current head Poppy Gustafsson. Eagan, currently Darktrace’s chief strategy officer and AI officer, remained in the role until mid 2020.

    1. Thank you very much for posting that Stan, had not seen the news. That’s some dirty laundry for sure, but it would be reasonable to assume the sins of this individual’s’ past didn’t follow her to Darktrace. Any competent board would be burning the midnight oil to figure out what actually transpired and take action accordingly. Heads will roll if that’s what it requires for the firm to save face. That last sentence seemed a bit confusing though – is Eagen still the CSO at Darktrace? And what’s an “AI Officer?” Sounds like a cool gig.

  6. Darktrace said it expects year-over-year revenue growth of at least 31% for FY23, and 29.2% at constant currency. It also expects 18.3% growth in customer numbers and an adjusted EBITDA margin of at least 22%.
    For FY24, it expects annual recurring revenue growth of between 21% and 23%. Today DARK.L +23%.