MITRE has published the results of this year's ATT&CK Evaluations, which assessed how enterprise cybersecurity solutions fare against attacks by the Scattered Spider hacking group and Chinese state-backed threat operation Mustang Panda, with the former being the organization's first scenario involving cloud-based intrusions, SecurityWeek reports.
This year's assessments, which also included MITRE's first-ever testing of reconnaissance detection, included WithSecure, Trend Micro, Acronis, AhnLab, Cyberani, CrowdStrike, Cybereason, ESET, Cynet, Sophos, and WatchGuard.
However, Microsoft, SentinelOne, and Palo Alto Networks withdrew over the need for excessive resources to undertake the evaluations. While the evaluation framework has been updated to focus on protection and alert quality, MITRE emphasized that it does not rank vendors as part of the assessment.
Multiple firms have already touted 100% detection and protection rates, claims which Forester principal analyst Allie Mellen said should not be trusted as they could have been altering results for their benefit or activating settings that could not be easily replicated in the real world.
This year's assessments, which also included MITRE's first-ever testing of reconnaissance detection, included WithSecure, Trend Micro, Acronis, AhnLab, Cyberani, CrowdStrike, Cybereason, ESET, Cynet, Sophos, and WatchGuard.
However, Microsoft, SentinelOne, and Palo Alto Networks withdrew over the need for excessive resources to undertake the evaluations. While the evaluation framework has been updated to focus on protection and alert quality, MITRE emphasized that it does not rank vendors as part of the assessment.
Multiple firms have already touted 100% detection and protection rates, claims which Forester principal analyst Allie Mellen said should not be trusted as they could have been altering results for their benefit or activating settings that could not be easily replicated in the real world.




