Company Delivers the Most Comprehensive Active Defense with Detection Coverage for 123 of the 190 MITRE Shield Use Cases
Attivo Networks®, an award-winning leader in cyber deception and attacker lateral movement threat detection, today announced that its solutions provide organizations with a vast majority – 82 percent – of the active defense measures presented in MITRE Shield. The ThreatDefend® Platform components – ADSecure™, BOTsink®, and Endpoint Detection Net (EDN) – represent the industry’s most comprehensive threat detection coverage, providing organizations with 27 of the 33 defensive techniques identified by MITRE. Additionally, these solutions provide an active defense for 123 of 190 MITRE Shield use cases.
According to the organization’s website, “MITRE Shield is a publicly available, free knowledge base of common techniques and tactics that can help experts take proactive steps to defend their networks and assets.” MITRE Shield takes a similar approach to present active defense concepts as MITRE ATT&CK® does for offense, and leveraging them together enables organizations to create active defense playbooks to address specific adversaries.
“Attivo Networks offers solutions that are purpose-built to defend in ways MITRE highlights in Shield,” said Nitin Jyoti, Attivo Networks vice president of product management. “The company’s portfolio of products are ideal for creating an active defense and are designed to drive adversaries to take actions that reveal their tactics and tools early in the attack lifecycle.”
Cyber deception is renowned for its ability to create an active defense. Unlike other forms of deception solutions, the Attivo ThreatDefend platform provides comprehensive attack prevention and detection capabilities that enable it to cover not only decoy techniques, but also a wide variety of other methods. The platform proactively diverts attackers away from their targets with fake information that misdirects them to decoys, and through denial of access, can conceal and prevent an attacker from obtaining critical information such as Active Directory objects, data, and file storage systems. With the ability to control the path of the attacker into a decoy, defenders can gather the valuable insights that they need to understand their adversary’s tools and techniques, as well as intent.
For more information on how Attivo Networks solutions provide organizations with the most comprehensive coverage of defense techniques and use cases as identified in MITRE Shield, download “Attivo Deception MITRE Shield Mapping” at https://go.attivonetworks.com/WC-MITRE-Shield-Mapping-whitepaper.html.
About Attivo Networks
Attivo Networks®, the leader in cyber deception and lateral movement attack detection, delivers a superior defense for revealing and preventing unauthorized insider and external threat activity. The customer-proven Attivo ThreatDefend® Platform provides a scalable solution for derailing attackers and reducing the attack surface within user networks, data centers, clouds, remote worksites, and specialized attack surfaces. The portfolio defends at the endpoint, Active Directory, and throughout the network with ground-breaking innovations for preventing and misdirecting lateral attack activity. Forensics, automated attack analysis, and third-party native integrations streamline incident response. The company has won over 130 awards for its technology innovation and leadership. For more information, visit www.attivonetworks.com.
Matter Communications for Attivo Networks
Loren Guertin & Kate Duchaney