MITRE ATT&CK evaluation confirms F-Secure’s industry-leading capabilities in detecting advanced attacks

MITRE ATT&CK evaluation confirms F-Secure’s industry-leading capabilities in detecting advanced attacks
16.10.2019 09:10 am

MITRE ATT&CK evaluation confirms F-Secure’s industry-leading capabilities in detecting advanced attacks

Security

Cyber security provider F-Secure has successfully completed its first-round of the MITRE ATT&CK™ evaluation. The test assesses vendors’ endpoint detection and response (EDR) solutions against techniques used by advanced persistent threat (APT) groups. It confirms that F-Secure’s capabilities to detect advanced threats are among the best in the industry.

Round one of the evaluation involved a scenario that pitted F-Secure’s EDR capabilities against an entire intrusion by APT3, a China-based Advanced Persistent Threat group.

F-Secure’s modern cloud-based detection technology, data science, and continuous research deliver leading EDR capabilities. These exceled in a number of key areas over the course of testing, including telemetry coverage and detection coverage, all in real-time with zero delays.

“Our results show that F-Secure both comprehensively detects a nation state threat actor such as APT3, and provides what is needed when it comes to data and detections,” says Alex Davies, F-Secure Senior Security Researcher. “Ensuring you have the right EDR tool is a key initial step, and building a mature security team to provide 24/7 monitoring and investigation to respond to a full range of threats will maximize the value it brings."

The comprehensive MITRE ATT&CK™ evaluation is a solid framework for independent testing of detection capabilities for post-compromise adversary tactics and techniques.

While it provides EDR buyers and vendors with credible information about the strengths and limitations of a particular EDR solution, Tim Orchard, Head of F-Secure’s MDR Business Unit, comments that comprehensive detection and response capabilities need to be tailored to the organization and threats they face. EDR is just one key component in that fight.

“For some organizations, purchasing an EDR to support a strong team and set of processes is right for their overall security strategy,” he says. “For others - based on their size and ability to attract and retain high-caliber staff capable of thinking like attackers - it’s procuring a fully-managed service. F-Secure is proud to support this wide range of options, all underpinned by the technology that MITRE recognizes as industry leading.”

F-Secure has a history of testing its own tooling and service against the techniques in the ATT&CK framework, while researching new attacker tactics and techniques. Being externally validated by such a well-respected organization as MITRE is a mark of approval.

“We’re excited to continue our collaboration with MITRE in ATT&CK evaluation round two, which is based on APT29 attacks. Our researchers have been some of the key contributors to this,” Alex Davies concludes.

Related News

Trezeo launches new products to expand its safety net for independent workers

Trezeo today announced a major extension to its existing offering, that enables independent workers to access a wider range of urgently needed product ‘bundles’. Trezeo’s... Read more »

Erste Bank Hungary Improves and Secures the Remote Banking Experience with OneSpan Mobile Security

OneSpan™ (NASDAQ: OSPN), the global leader in securing remote banking transactions, today announced that Erste Bank Hungary, a subsidiary of Erste Group Bank AG, one of the... Read more »

Semafone bolsters security with new PCI DSS certification for Cardprotect Relay+

Semafone®, the leading provider of data security and compliance solutions for call and contact centres, has achieved global... Read more »

Emirates NBD COVID-19 Coronavirus Precautionary Measures

Given the developing situation around the Coronavirus – COVID-19 outbreak, the safety and wellbeing of our customers, our employees and the community, remains our top priority... Read more »

Fraudsters Taking Advantage of Coronavirus With New Scam Emails, Warns Tax Partner at Haines Watts

EMAILS are starting to surface, targeting individuals with an email that looks like it is from Gov.uk, says Martin Gurney, a tax partner at Haines Watts.

 

He... Read more »

EMVCo Supports Security Evaluation for IoT Products

Global technical body EMVCo has confirmed its security evaluation methodologies and processes support IoT payment use cases, enabling emerging solutions and devices to be... Read more »

Magazine
ALL
Free Newsletter Sign-up
+44 (0) 208 819 32 53 +44 (0) 173 261 71 47
Download Our Mobile App
Financial It Youtube channel