Bitdefender Achieves Highest Level of Detection for All Major Steps in the MITRE Engenuity ATT&CK® Enterprise Evaluations for Three Consecutive Years
September 20, 2023 - Bitdefender, a global cybersecurity leader, today announced it achieved 100% detection of all major evaluation steps with the highest possible level of description for each step for the third consecutive year in the MITRE Engenuity ATT&CK Enterprise Evaluations. The evaluations were conducted through independent tests that simulate adversary behavior and techniques assessing the detection and protection capabilities of the 31 participating vendors.
“Enterprises are under tremendous pressure to strengthen their cyber resilience across environments as state-sponsored threat actors increase attacks both in sophistication and frequency,” said Dragos Gavrilut, vice president of threat research at Bitdefender. “Our achievement in identifying techniques used by advanced adversaries further validates Bitdefender as an industry leader in threat detection technologies. Independent tests like the MITRE ATT&CK Evaluations are crucial for helping organizations evaluate the effectiveness of cybersecurity technologies against complex multi-stage attacks based on their risk, industry, and specific environment.”
The 2023 ATT&CK Evaluations tested cybersecurity vendors for their ability to detect techniques and tactics used by Turla, a sophisticated Russian-based threat group that has infected victims in over 45 countries. The group is known for targeting government agencies, diplomatic missions, military groups, research and media organizations, using novel methods for intrusion, maintaining operational security, and remaining well hidden in environments. Each participant was evaluated based on detection rates and across 19 total steps and 143 sub-steps in the framework's attack kill chain from initial compromise through the final stage of execution.
Testing the 19 major steps included detection for initial compromise, establishing a foothold, lateral movement, persistence, privilege escalation and were performed using Microsoft Azure cloud services.
MITRE Engenuity evaluated Bitdefender GravityZone Platform , a unified risk and security analytics platform that offers advanced Endpoint Protection (EPP), Endpoint Detection and Response (EDR), Extended Detection and Response (XDR) and cloud security for physical, virtual, and multi-cloud environments. The platform delivers deep security context to detections and offers a direct path to Bitdefender Managed Detection and Response (MDR) services.
“Turla is one of the most sophisticated threat actors, and their tradecraft is platform diverse, dynamic in stealth, and layered in persistence,” said Amy Robertson, MITRE cyber threat intelligence lead, ATT&CK Evals. “This round provides an emulation that focuses on kernel and service-level operations that often run with the same permissions as detection and protection products. Our goal is to empower end users and purchasers with unbiased insights into the product capabilities that detect these advanced adversary behaviors, while also collaborating with the participating vendors to evolve their products.”
Bitdefender GravityZone , as well as other Bitdefender solutions are available in Romania through Simple IT, Bitdefender Partner in Romania.
About Simple IT
SIMPLE IT is a distributor for software solutions and hardware appliances, adding value with consulting, training, implementation, configuration and support services, backed by certified specialists, in order to offer the best IT experience to customers and partners. For more information, please visit www.simpleit.com.ro.