Free to read. Sign up to save your progress and take knowledge-check quizzes.

Sign up free
4 min read·Updated March 27, 2026

Darktrace

Darktrace logoBy Darktrace

Darktrace is a self-learning AI security platform that models normal behavior across enterprise environments and autonomously neutralizes cyber threats — acquired by Thoma Bravo for $5.3 billion in October 2024.

Listen to this lesson

Free preview · first 0:30
0:00 / 0:30

Audio & video lessons are paid features

Plus unlocks audio streaming. Pro adds downloadable audio, video, certificates, and more.

Plus adds:
  • Audio streaming
  • Downloadable PDFs
  • All AI Playbooks
  • Personalized content
Pro also adds:
  • Certificates of completion
  • Audio MP3 downloads
  • Video lessonssoon
  • & More…soon
Sign upSign inCompare plans

Watch this lesson

Video coming soon

Learning Objectives

  • Understand how Darktrace's self-learning AI detects threats without predefined rules
  • Evaluate the ActiveAI platform's autonomous detection, response, and recovery capabilities
  • Assess the impact of Thoma Bravo's $5.3 billion acquisition

What Is Darktrace?

Darktrace uses self-learning AI to build a "pattern of life" for every user, device, and system in an organization — then detects deviations that indicate cyber threats, without relying on signatures, rules, or known threat patterns. This means Darktrace can catch novel attacks and zero-day threats that traditional security tools miss.

The ActiveAI Platform spans network, email, cloud, endpoint, and industrial/OT environments with autonomous detection and response. Darktrace was acquired by Thoma Bravo for $5.3 billion in October 2024 and delisted from the London Stock Exchange.

💡Key Concept

Self-Learning AI vs. Signature-Based Security: Traditional security tools match network activity against databases of known threats (signatures). If a threat is new, it slips through. Darktrace's unsupervised machine learning builds a mathematical model of what "normal" looks like for each user and device, then flags anything anomalous — catching threats that have never been seen before.

ActiveAI Platform Coverage

ModuleWhat It Protects
DETECTNetwork-level threat detection via self-learning AI
RESPONDAutonomous real-time response (throttle connections, quarantine devices)
EMAILEmail security with natural language understanding
CLOUDAWS, Azure, and GCP environment monitoring
ENDPOINTEndpoint detection and response
INDUSTRIAL/OTOperational technology and IoT environments
Cyber AI AnalystAutomated investigation mimicking a human analyst; triages alerts and produces reports

Company Details

DetailInfo
Founded2013
CEOEd Jennings (appointed March 2026)
HeadquartersCambridge, United Kingdom (dual HQ with San Francisco)
Employees~2,300-2,400
Revenue (FY2024)~$782 million (+51% year-over-year)
OwnershipPrivate (Thoma Bravo; acquired October 2024 for $5.3 billion)
Customers~10,000
Net ARR Retention106.6%
Websitedarktrace.com

Key Takeaways

  • Darktrace's self-learning AI builds a "pattern of life" for every user and device, detecting novel threats without signatures or predefined rules
  • ActiveAI Platform covers network, email, cloud, endpoint, and industrial/OT with autonomous detection and response
  • Acquired by Thoma Bravo for $5.3 billion (October 2024); approximately 10,000 customers; $782 million revenue growing 51%
  • Best suited for organizations facing sophisticated or novel cyber threats that signature-based tools miss

Save your progress & take the quiz

Sign up free to bookmark lessons, track which modules you've completed, and lock in what you learned with a quick knowledge-check quiz at the end of each lesson.

Sign up freeAlready a member? Log in
🧭Recommended for you