Security News > 2021 > March > MITRE Engenuity to assess commercial cybersecurity products’ ability to detect threats

MITRE Engenuity will assess commercial cybersecurity products' ability to detect the threat posed by the groups commonly known as Sandworm and Wizard Spider, both of whom have used data encryption as a key element of their attacks.

The evaluations will use ATT&CK, a MITRE-curated knowledge base of adversary tactics, techniques, and procedures that is based on published threat reporting.

MITRE Engenuity will evaluate each participating vendor's ability to detect the threats posed by Sandworm and Wizard Spider in two distinct scenarios during the evaluation.

MITRE Engenuity plans to announce results shortly from its evaluations based on Carbanak and FIN7, groups that analysts believe have stolen more than $1 billion across hundreds of businesses in the financial services and hospitality industries over the past five years.

Earlier ATT&CK evaluations examined the threat posed by APT3, a Chinese-based threat group that analysts believe has targeted U.S. organizations and Hong Kong-based political targets, and APT29, a group attributed to the Russian government and the compromise of the Democratic National Committee that started in 2015.

MITRE Engenuity makes the methodology and resulting data publicly available so other organizations may benefit and conduct their own analysis and interpretation.

News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/LWvp2mQP7XI/