Pioneer of the first MITRE Engenuity ATT&CK Deception Evaluation
SentinelOne, the company with the leading autonomous cybersecurity platform, announces the results of the first MITRE Engenuity ATT&CK® Deception Evaluation. As the first and only XDR provider to participate, SentinelOne has the most comprehensive MITRE ATT&CK analytics coverage to help organizations reduce risk across device, cloud and identity attack surfaces. The provider continued to be recognized for its ability to repel sophisticated identity-based attacks and insider threats.
The first MITRE ATT&CK Deception Evaluation tested the ability of vendors to protect themselves against the APT29 threat group. The Singularity XDR platform – and in particular the Hologram solution – was awarded for the following capabilities:
- Real-time protection against Active Directory compromise: Every time attackers try to gain access to Active Directory (AD), the solution protects against theft with circumvention techniques and fake credentials.
- Securing critical assets: The use of data camouflage misleads attackers and protects file and account information in the areas of identity, data, end devices, cloud and IoT to prevent data theft and destruction.
- Prevention of lateral movements and escalation of privileges: Modern technology blocks the use of golden ticket and silver ticket attack techniques, and also prevents attackers from gaining access to endpoints on the network.
- Optimized insights into the behavior of attackers: The solution goes one step beyond detection and response and provides detailed insights into the behavior of attackers, including actionable TTP information and sound attack forensics with high reliability.
“As attackers continue to bypass security controls, organizations need modern XDR solutions that protect against threats at every stage of the attack lifecycle,” says Raj Rajamani, Chief Product Officer at SentinelOne . “SentinelOne is the first XDR provider to natively incorporate identity and deception. Our results in the first MITRE ATT&CK Deception Evaluation confirm our commitment to pushing the boundaries of autonomous technology and helping organizations protect against identity-based attacks.”
The vendor was one of the first cyber security companies to correlate alerts in-house with the MITRE ATT&CK framework, implement the MITRE ATT&CK Endpoint Protection Product Evaluation, and adopt the MITRE ATT&CK framework as the new standard for threat hunting. As a leader in the MITRE Enterprise ATT&CK evaluations for the third year in a row and as a leader in the first MITRE ATT&CK Deception Evaluation, the provider continues to be committed to supporting companies through the MITRE Framework.