ATT&CK evaluation from the MITRE Company measured Cb Reaction’s effectiveness in detecting a variety of adversary techniques and methods
Carbon Black additionally provides MITRE ATT&CK danger intelligence feeds to Cb Reaction and Cb ThreatHunter to advance behaviour-based danger searching throughout endpoints
READING, UK – third December, 2018 – Carbon Black (NASDAQ: CBLK), a pace-setter in next-generation endpoint safety delivered by way of the cloud, as of late introduced that it delivered 0 not on time detections and nil tainted detections within the MITRE Company’s Adverse Techniques, Tactics and Not unusual Wisdom (ATT&CK) evaluation. The MITRE evaluation assessments the facility to temporarily discover explicit adversary techniques and methods as captured within the ATT&CK knowledgebase.
The opinions for this preliminary trying out length used a MITRE-developed APT3 emulation plan on behaviour detection, telemetry and enrichment, amongst different components. Within the evaluation, Cb Reaction demonstrated it would robotically discover and show hostile behaviours with out humans-in-the-loop throughout all of the MITRE ATT&CK Matrix, which incorporates: preliminary get admission to, execution, privilege escalation, defence evasion, credential get admission to, discovery, lateral motion, assortment, exfiltration, and command and regulate.
For a take a look at the overall record from MITRE on Carbon Black, click on right here: https://attackevals.mitre.org/opinions/carbonblack.1.apt3.1.html.
“We’re proud to be a number of the preliminary distributors evaluated through MITRE and we’re extraordinarily happy with those effects. We characteristic our very robust appearing to our philosophy of establishing merchandise the appropriate manner for the lengthy haul,” mentioned Scott Lundgren, Carbon Black’s Leader Generation Officer. “Goal, clear and open trying out is important as a way of riding the business ahead, and the MITRE ATT&CK framework provides a important take a look at how real-world assaults play out. We consider MITRE has set a very good same old for the way trying out will have to be performed in an open, rigorous, and complex manner. We thank MITRE for its management.”
“We’re more than happy with the participation in our first spherical of ATT&CK-based opinions,” mentioned Frank Duff, MITRE lead engineer for the opinions program. “Efficient cybersecurity can’t be executed on my own. We look ahead to persevered collaboration with the business to assist distributors perceive their features in opposition to identified adversary behaviours and empower consumers to extra successfully purchase and deploy those safety answers.”
MITRE ATT&CK Risk Intelligence Feeds for Cb Reaction & Cb ThreatHunter
Together with the evaluation effects, Carbon Black introduced it has added MITRE ATT&CK danger intelligence feeds to Cb Reaction and Cb ThreatHunter to ship new behavior-based danger intelligence to consumers.
Carbon Black’s MITRE ATT&CK feeds mix the ability of Carbon Black’s unfiltered endpoint information assortment and a powerful selection of adversary tactics to simplify danger detection and danger searching. The brand new danger feeds map immediately to the more than a few assault techniques defined through MITRE.
“Through including ATT&CK danger intelligence feeds to Cb Reaction and Cb ThreatHunter, organisations now have an unfiltered view into all endpoint task considered throughout the lens of assault development blocks and behaviors famous through MITRE. We consider this leads to extra complete and complex danger searching features for safety pros,” mentioned Lundgren. “The ATT&CK danger intelligence feeds immediately combine detection of ATT&CK techniques and methods into the Cb Reaction and Cb ThreatHunter merchandise, underscoring Carbon Black’s dedication to ATT&CK and different open requirements and frameworks.”
About Carbon Black
Carbon Black (NASDAQ: CBLK) is a number one supplier of next-generation endpoint safety delivered by way of the cloud. Leveraging its large information and analytics cloud platform – the Cb Predictive Safety Cloud – Carbon Black consolidates prevention, detection, reaction, danger searching and controlled services and products right into a unmarried platform with a unmarried agent and unmarried console, making it more uncomplicated for organisations to consolidate safety stacks and succeed in higher coverage. As a cybersecurity innovator, Carbon Black has pioneered more than one endpoint safety classes, together with software regulate, endpoint detection and reaction (EDR), and next-generation antivirus (NGAV) enabling consumers to protect in opposition to probably the most complex threats. Greater than four,600 international consumers, together with one-third of the Fortune 100, agree with Carbon Black to stay their organisations secure.
Carbon Black and Cb Predictive Safety Cloud are registered emblems or emblems of Carbon Black, Inc. in america and/or different jurisdictions.