MITRE Engenuity ATT&CK Checks



By creating a standard language to arm analysts with an ordinary to explain assaults, MITRE ATT&CK has grow to be a crucial knowledgebase for cyber defenders, finally enhancing safety effectivity and response time. The annual MITRE Analysis compares industry-wide innovation to ship the options essential to detect and reply to the evolving risk panorama.

The analysis presents cybersecurity answer consumers and prospects with an unbiased possibility to guage safety merchandise to arm themselves towards the newest advances from attackers primarily based on their areas of best want.

This yr’s analysis noticed distributors detect and reply to ways, methods, and procedures (TTPs) from two emulated adversary situations which might be broadly defining fashionable ransomware right this moment — Wizard Spider, a cybercriminal extortion gang, and Sandworm, a disruptive risk group targeted on knowledge destruction.

Important analysis classes embrace:

  • Analytic Protection: Enriched detections to ship higher context to investigation by including ATT&CK TTP mapping, enhancing triage for analysts.
  • Visibility: Clear availability of analytic or telemetry info to allow quicker response time for incident response and risk looking.
  • Safety: Menace prevention and blocking to deflect danger early-on and optimize holistic safety staff efforts.

Development Micro’s Unified Cybersecurity Platform Recorded Spectacular Outcomes

For the third yr in a row Development Micro Imaginative and prescient One proved itself as a useful device for safety groups. It examined towards simulated breaches that included 109 complete assault steps.

  • Detection: Delivered on 19/19 assault steps within the analysis, for 100% detection.
  • Visibility: Offered clear visibility on 105 out of 109 assault strategies offering 96.33% protection.
  • Safety: High rating within the safety class, providing 100% prevention.
  • Linux: High efficiency amongst main distributors, detecting and stopping 100% of assaults towards the Linux host. Development Micro recommends prospects prioritize Linux protection contemplating its reputation as essentially the most used OS in cloud-native purposes.

Development Micro Imaginative and prescient One correlates intelligence throughout electronic mail, endpoints, servers, networks and cloud workloads to generate fewer however increased constancy alerts for safety operations (SecOps) groups. The rise in effectivity simplifies investigations, optimizes SecOps productiveness, and accelerates remediation to cease risk actors of their tracks earlier than they’ve an opportunity to trigger lasting injury. Imaginative and prescient One join the dots in safety incidents, displaying how they is likely to be associated and highlighting indicators of compromise just like identified assault teams and kinds.

To learn a full copy of the MITRE Engenuity ATT&CK Analysis for Development Micro Imaginative and prescient One report, please go to: