Security News > 2021 > July > MITRE Engenuity launches ATT&CK Evaluations for ICS

MITRE Engenuity today released results from its first round of independent ATT&CK Evaluations for Industrial Control Systems.

The evaluations examined how cybersecurity products from five ICS vendors detected the threat of Russian-linked Triton malware.

ATT&CK Evaluations for ICS. The evaluations use ATT&CK for ICS, a MITRE-curated knowledge base of adversary tactics, techniques, and procedures based on known threats to industrial control systems.

"We chose to emulate the Triton malware because it targets safety systems, which prevent some of the worst consequences from happening when something goes wrong in an industrial control setting," said Otis Alexander, who leads the ATT&CK Evaluations for ICS. "The amount of publicly reported data from the attacks and the devastating impact of the malware help ensure this is a robust emulation. We hope the evaluations can help organizations find security tools that are best suited to their individual needs."

In addition to the ATT&CK Evaluations for ICS, MITRE Engenuity also evaluates security products for enterprise networks.

"MITRE Engenuity's ATT&CK Evaluations program is built on the backbone of MITRE's integrity and commitment to making the world a safer, more secure place," said Frank Duff, general manager of the ATT&CK Evaluations program.

News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/mDyXVNPj6go/