MITRE Archives - ThreatsHub Cybersecurity News

Industry-wide partnership on threat-informed defense improves security for all

September 16, 2020 TH Author adversary emulation plan, Center for Threat-Informed Defense, Cybersecurity, FIN6, Microsoft security intelligence, MITRE, MITRE ATT&CK, MITRE Engenuity, TAAL

MITRE Engenuity’s Center for Threat-Informed Defense has published a library of detailed plans for emulating the threat actor FIN6 (which Microsoft tracks as TAAL). Microsoft is proud to be part of this industry-wide collaborative project.
The post Industry-wide partnership on threat-informed defense improves security for all appeared first on Microsoft Security. READ MORE HERE…

Microsoft Secure

Blue teams helping red teams: A tale of a process crash, PowerShell, and the MITRE ATT&CK evaluation

June 11, 2020 TH Author Cybersecurity, Microsoft security intelligence, Microsoft Threat Protection, MITRE, PowerShell, Step 19

Inspired by MITRE’s transparency in publishing the payloads and tools used in the attack simulation, we’ll describe the mystery that is Step 19 and tell a story about how blue teams, once in a while, can share important learnings for red teams.
The post Blue teams helping red teams: A tale of a process crash, PowerShell, and the MITRE ATT&CK evaluation appeared first on Microsoft Security. READ MORE HERE…

TrendMicro

Trend Micro’s Top Ten MITRE Evaluation Considerations

April 28, 2020 TH Author Current News, Endpoint, endpoint protection, MITRE, Privacy & Policy

The introduction of the MITRE ATT&CK evaluations is a welcomed addition to the third-party testing arena. The ATT&CK framework, and the evaluations in particular, have gone such a long way in helping advance the security industry as a whole, and the individual security products serving the market. The insight garnered from these evaluations is incredibly…
The post Trend Micro’s Top Ten MITRE Evaluation Considerations appeared first on . Read More HERE…

TrendMicro

Getting ATT&CKed By A Cozy Bear And Being Really Happy About It: What MITRE Evaluations Are, and How To Read Them

April 23, 2020 TH Author end point, MITRE, Security, user protection

Full disclosure: I am a security product testing nerd*. I’ve been following the MITRE ATT&CK Framework for a while, and this week the results were released of the most recent evaluation using APT29 otherwise known as COZY BEAR. First, here’s a snapshot of the Trend eval results as I understand them (rounded down): 91.79%…
The post Getting ATT&CKed By A Cozy Bear And Being Really Happy About It: What MITRE Evaluations Are, and How To Read Them appeared first on . Read More HERE…

Microsoft Secure

Insights from the MITRE ATT&CK-based evaluation of Windows Defender ATP

December 4, 2018 TH Author APT3, ATT&CK, BORON, Cybersecurity, MITRE

In MITREs evaluation of endpoint detection and response solutions, Windows Defender Advanced Threat Protection demonstrated industry-leading optics and detection capabilities. The breadth of telemetry, the strength of threat intelligence, and the advanced, automatic detection through machine learning, heuristics, and behavior monitoring delivered comprehensive coverage of attacker techniques across the entire attack chain. MITRE tested the
Read more
The post Insights from the MITRE ATT&CK-based evaluation of Windows Defender ATP appeared first on Microsoft Secure. READ MORE HERE…