Use our mobile site at: m.ITbriefing.net    Follow ITbriefing.net: Follow ITbriefing on Twitter   Follow ITbriefing via Facebook   Follow ITbriefing via RSS 
CrowdStrike Falcon Endpoint Protection Platform Validated Against MITRE ATT&CK™ Framework in Nation-State Emulation Test


 Tags:   Networks                This was published: 13 Feb 2018 - 01:26 pm         Print article: Printer friendly page
          

CrowdStrike® Inc., the leader in cloud-delivered endpoint protection, today announced it has successfully completed an evaluation by MITRE’s Leveraging External Transformational Solutions (LETS) program. The CrowdStrike Falcon® platform was validated for its ability to detect attack techniques employed by GOTHIC PANDA (also known as APT3), a sophisticated adversary with nexus to the Chinese government.



Legacy malware-focused tests are incapable of providing a realistic assessment of security products’ ability to detect advanced adversaries who often do not rely on malware but leverage exclusively legitimate living-off-the-land tools. On the other hand, the MITRE program is the first and only public adversary emulation leveraging the MITRE ATT&CK framework to validate security solutions’ detection effectiveness against real-world tradecraft from sophisticated nation-state attackers. The adversary emulation tests for the product’s ability to detect attack techniques across the kill chain: Persistence, Privilege Escalation, Defense Evasion, Credential Access, Discovery, Lateral Movement, Execution, Collection, Exfiltration and Command & Control.

CrowdStrike Falcon performed extremely well at detecting the GOTHIC PANDA adversary and tracked nearly every technique used in the emulation, providing comprehensive visibility to enable real-time investigation of the intrusion. According to the MITRE report, “CrowdStrike uses a collaboration of machine and human, bringing together both proprietary APT detecting software (Falcon Insight) and Managed Threat Hunting Service operators (Falcon OverWatch) to identify malicious activity. Combining both products, along with CrowdStrike Falcon’s user interface, assisted in the detection and investigation of GOTHIC PANDA attack techniques emulated by the LETS team.”

“CrowdStrike believes that third-party testing and independent validation of next-generation products are critical in defining the new standard in endpoint protection and helping customers differentiate hype from reality. We urge other solutions providers, especially in the next-generation category, to participate in this important MITRE validation,” said Dmitri Alperovitch, CrowdStrike’s co-founder and chief technology officer. “We are pleased with our successful performance in MITRE’s comprehensive evaluation of CrowdStrike Falcon’s ability to detect nearly all GOTHIC PANDA tradecraft and look forward to continuing our participation in reputable industry testing that represents real-world detection efficacy.”

Read a blog about this emulation by CrowdStrike CTO Dmitri Alperovitch and download the MITRE report here.

CrowdStrike was positioned highest for its ability to execute and furthest for completeness of vision in the Visionary Quadrant of the 2018 Gartner Magic Quadrant for Endpoint Protection Platforms (EPP).1

CrowdStrike Falcon leverages machine learning and behavioral analytics, trained on processing nearly 100 billion security events a day, to enable reliable detection, mitigation, and response of all threats, including malware-free intrusions.

CrowdStrike Falcon has been independently tested and certified as an effective AV replacement by AV-Comparatives for Windows and Mac and SE Labs.

Article source - Business Wire, all right reserved. Copyright 2018
Trademarks, logos, pictures and other items may be copyright of firms mentioned in this article.



 


Other related articles, tagged Networks

· Mechanical Computer-aided Design Market - High Adoption of Cloud-based PLM Solutions in APAC to Boost Growth | Technavio   (02/17/18)
· Global Gaming Market - Growing Adoption of VR and AR Technologies to Boost Growth | Technavio   (02/17/18)
· Key Findings of the Global Cloud Encryption Market | Technavio   (02/17/18)
· Intel Announces David Pottruck to Retire from Board of Directors   (02/16/18)
· Mojo Networks to Present at Wireless LAN Professionals Conference   (02/16/18)
· S&P Global Ratings360™ to Include Cyber Risk Insights from Guidewire Software’s Cyence Risk Analytics   (02/16/18)
· Cable ONE to Host Conference Call to Discuss Fourth Quarter and Full Year 2017 Results   (02/16/18)
· Verisign Announces 3.25% Junior Subordinated Convertible Debentures Due 2037 to Pay Contingent Interest   (02/16/18)
· Travel Video Awards to Debut at 2018 NAB Show   (02/16/18)
· Intelsat Announces 2017 Fourth Quarter and Full-Year Earnings Conference Call   (02/16/18)

>>>More articles  >>>

Latest tech videos:



· Mechanical Computer-aided Design Market - High Adoption of Cloud-based PLM Solutions in APAC to Boost Growth | Technavio (2018-02-17 16:26)
Mechanical Computer-aided Design Market - High Adoption of Cloud-based PLM Solutions in APAC to Boost Growth | Technavio - on DefenceBriefing.net

The global mechanical computer-aided design (MCAD) market is expected to grow at a CAGR of more than 7% during the period 2018-2022, according to a new market research study by Technavio.


· Global Gaming Market - Growing Adoption of VR and AR Technologies to Boost Growth | Technavio (2018-02-17 15:46)
Global Gaming Market - Growing Adoption of VR and AR Technologies to Boost Growth | Technavio - on DefenceBriefing.net

Technavio’s latest market research report on the global gaming market provides an analysis of the most important trends expected to impact the market outlook from 2018-2022. Technavio defines an emerging trend as a factor that has the potential to significantly impact the market and contribute to its growth or decline.


· Key Findings of the Global Cloud Encryption Market | Technavio (2018-02-17 15:06)
Key Findings of the Global Cloud Encryption Market | Technavio - on DefenceBriefing.net

The latest market research report by Technavio on the global cloud encryption market predicts a CAGR of close to 35% during the period 2018-2022.


· Intel Announces David Pottruck to Retire from Board of Directors (2018-02-16 22:26)

Intel Corporation today announced that David S. Pottruck informed the company that he will not stand for re-election to Intel’s Board of Directors at Intel’s 2018 Annual Stockholders’ Meeting. Pottruck, a member of the Board since 1998, will continue to serve as a director until the expiration of his current term at the 2018 Annual Stockholders’ Meeting.


· Mojo Networks to Present at Wireless LAN Professionals Conference (2018-02-16 22:06)
Mojo Networks to Present at Wireless LAN Professionals Conference - on DefenceBriefing.net

Mojo Networks, inventor of Cognitive WiFi™ and one of the world’s leading Cloud WiFi solution providers, will be represented with four separate speaking slots at the 2018 Wireless LAN Professionals Conference in Phoenix, Arizona, held February 20-22, 2018. The annual conference is a vendor-neutral event focused on offering WLAN professionals the opportunity to share knowledge and resources about the industry and its current challenges.


· S&P Global Ratings360™ to Include Cyber Risk Insights from Guidewire Software"s Cyence Risk Analytics (2018-02-16 21:46)
S&P Global Ratings360™ to Include Cyber Risk Insights from Guidewire Software’s Cyence Risk Analytics - on DefenceBriefing.net

S&P Global Ratings, a division of S&P Global Inc. (NYSE: SPGI) and Guidewire Software, Inc. (NYSE: GWRE), today announced they have joined forces to bring the cyber risk knowledge and insights of Guidewire Cyence Risk Analytics™ to S&P Global Ratings360™, a digital delivery system that provides a view of a company’s critical credit risk factors.


· Cable ONE to Host Conference Call to Discuss Fourth Quarter and Full Year 2017 Results (2018-02-16 21:46)
Cable ONE to Host Conference Call to Discuss Fourth Quarter and Full Year 2017 Results - on DefenceBriefing.net

Cable One, Inc. (NYSE: CABO) will host a conference call with the financial community to discuss results for the fourth quarter and full year 2017 on Thursday, March 1, 2018 at 11 a.m. Eastern Time (ET). Cable ONE will issue a press release reporting its results before market open on Thursday, March 1, 2018.


· Verisign Announces 3.25% Junior Subordinated Convertible Debentures Due 2037 to Pay Contingent Interest (2018-02-16 21:26)
Verisign Announces 3.25% Junior Subordinated Convertible Debentures Due 2037 to Pay Contingent Interest - on DefenceBriefing.net

VeriSign, Inc. (NASDAQ-NMS: VRSN), a global leader in domain names and internet security, announces that the upside trigger on its 3.25% junior subordinated convertible debentures due 2037 (CUSIP No. 92343EAD4) (the “Notes”) has been met for the six-month interest payment period from Feb. 15, 2018, to Aug. 14, 2018. As a result, contingent interest will be paid on the Notes for that six-month interest payment period. Contingent interest of approximately $10.1 million on the $1.25 billion outstanding principal amount of the Notes, or approximately $8.0728 per $1,000 principal amount of the Notes, will be paid on Aug. 15, 2018, to the holders of record as of Aug. 1, 2018.


· Travel Video Awards to Debut at 2018 NAB Show (2018-02-16 20:26)
Travel Video Awards to Debut at 2018 NAB Show - on DefenceBriefing.net

The Travel Video Awards (TVAs) will debut at the 2018 NAB Show on April 11 in Las Vegas. Created by Citizine Networks, Inc., the awards honor innovative and inspiring travel videos released in 2017 by independent filmmakers, the travel industry, media companies and lifestyle brands.


· Intelsat Announces 2017 Fourth Quarter and Full-Year Earnings Conference Call (2018-02-16 20:26)
Intelsat Announces 2017 Fourth Quarter and Full-Year Earnings Conference Call - on DefenceBriefing.net

Intelsat S.A. (NYSE: I), operator of the world’s first Globalized Network and a leader in integrated satellite communications, will hold a conference call and webcast on Monday, February 26, 2018 at 8:30 am EDT to discuss 2017 fourth quarter and full-year financial results.


· Robert Lacroix Joins Directed as Vice President of Engineering (2018-02-16 20:26)
Robert Lacroix Joins Directed as Vice President of Engineering - on DefenceBriefing.net

Directed, a leader in the automotive aftermarket and connected car space, announced today that technology veteran Robert Lacroix has joined the company as Vice President of Engineering. Lacroix will lead Directed’s global engineering team from its Lachine (Montreal), Quebec office. He will help drive Directed’s aggressive growth plans in connected car products and services.


· Technavio Announces New Research on the Global Smart Appliances Market (2018-02-16 20:06)
Technavio Announces New Research on the Global Smart Appliances Market - on DefenceBriefing.net

Market research firm Technavio has announced the release of an updated report on the global smart appliances market. This new report will provide expert market insights for the forecast period 2018-2022.


· Cable ONE Extends Arbor Day Foundation Partnership to Include Hurricane Tree Recovery Campaign (2018-02-16 18:26)
Cable ONE Extends Arbor Day Foundation Partnership to Include Hurricane Tree Recovery Campaign - on DefenceBriefing.net

Cable ONE recently expanded its partnering with the Arbor Day Foundation to include the Foundation’s newly-launched Hurricane Tree Recovery Campaign, whose goal is to plant 5 million trees over the next five years in order to help rebuild disaster-stricken communities impacted by 2017 hurricanes Harvey, Irma and Maria.


· General Cable Corporation Stockholders Approve Acquisition By Prysmian Group (2018-02-16 17:26)
General Cable Corporation Stockholders Approve Acquisition By Prysmian Group - on DefenceBriefing.net

General Cable Corporation (NYSE: BGC) today announced the voting results from the Company’s special meeting of stockholders held this morning. Stockholders of General Cable approved the Company’s previously announced acquisition by Prysmian Group (BIT: PRY) for $30.00 per share in cash.


· Central Logic to Sponsor 8th Annual Patient Flow Summit (2018-02-16 16:46)
Central Logic to Sponsor 8th Annual Patient Flow Summit - on DefenceBriefing.net

Central Logic, the pioneer and leading innovator in transfer center software solutions, is hosting the 8th Annual Patient Flow Summit in Las Vegas, Nevada, September 24-27, 2018, at the JW Marriott Resort. The Patient Flow Summit gives participants the opportunity to discuss how to solve some of the most complex patient care initiatives. To register click here.


· Helios and Matheson Acquires More MoviePass™ (2018-02-16 16:06)
Helios and Matheson Acquires More MoviePass™ - on DefenceBriefing.net

Helios and Matheson Analytics Inc. (NASDAQ-NMS: HMNY) (“HMNY”), a provider of information technology services and solutions and a majority owner of MoviePass Inc. (“MoviePass”), the nation’s premier movie-theater subscription service, today announced that, as of February 15, 2018, HMNY’s total ownership of the outstanding shares of MoviePass’ common stock (excluding shares underlying MoviePass options and warrants) is equal to approximately 78%.


· Company Profile for Hashed Health (2018-02-16 16:06)
Company Profile for Hashed Health - on DefenceBriefing.net

Hashed Health is a healthcare innovation company leading the design, development and productive use of blockchain and distributed ledger technologies. Hashed Health partners with public and private sector clients to collaboratively develop solutions and networks that solve health delivery challenges. Hashed Health’s mission is to create new shared value systems for individuals and communities of health through a variety of enterprise and consumer-focused projects.


· Quantum Group Appoints Digital Marketing Innovator Cheryl Kahanec as New Chief Executive Officer (2018-02-16 16:06)

Quantum today announced industry leader Cheryl Kahanec as its new Chief Executive Officer, effective February 16, 2018.




© Website copyright Incandore Limited 2012. All rights reserved. All content copyrights / trademarks remain the property of their respective owners.