31 March 2022
BUCHAREST, Romania and SANTA CLARA, Calif. – March 31, 2022 – Bitdefender, a global cybersecurity leader, today announced it achieved among the top scores of the 30 participating cybersecurity vendors in MITRE Engenuity’s recent independent ATT&CK Evaluations for Enterprise cybersecurity solutions. Bitdefender scored 97 percent in overall analytics insights and 95 percent in technique-level descriptions, the most in-depth detection metric identifying specific steps of how attackers breached the environment and moved laterally.
“This achievement, in identifying the precise techniques adversaries use to move through networks, validates Bitdefender’s position as an industry leader in threat prevention and detection technology,” said Dragos Gavrilut, director of cyber threat intelligence at Bitdefender. “Excelling in these capabilities is vital for enterprises to counter the sophisticated multi-stage attacks carried out by today’s cybercriminal groups and nation-state actors. Independent tests like the MITRE ATT&CK Evaluations are essential for helping organizations evaluate the effectiveness of cybersecurity technologies against complex attacks.”
The 2022 ATT&CK Evaluations tested cybersecurity vendors for their ability to detect techniques and tactics used by Wizard Spider and Sandworm, two advanced threat groups that employ ransomware and wiper malware targeting businesses and government organizations worldwide. Vendor participants were evaluated using emulations of the Data Encrypted For Impact technique used by Wizard Spider to deploy ransomware including Ryuk and Sandworm to encrypt and destroy data with their NotPetya malware. Each participant was evaluated based on detection rates across 19 total steps and 109 sub-steps in the framework’s attack kill chain from initial compromise through final stage of execution.
MITRE Engenuity evaluated Bitdefender GravityZone Ultra, the company’s unified security platform incorporating endpoint protection (EPP) and endpoint detection and response (EDR) including cross-endpoint threat correlation and advanced risk analytics. The platform delivers deep context to detections and offers a direct path to Bitdefender managed detection and response (MDR) services.
Bitdefender results include:
● Exceptional Detection of Attack Techniques -- Bitdefender GravityZone was among the leaders of vendor solutions tested at identifying ‘Technique’, the highest-level of context associated with the sub-steps on how the attack was performed. Scoring 95 percent, Bitdefender identified 103 of 109 sub-steps.
● Outstanding Analytics Performance -- Bitdefender was among the top vendors scoring 97 percent overall in total analytics coverage, providing deep analysis and rich context for 106 of 109 total sub-steps.
● Strong Linux Coverage -- Bitdefender achieved 100 percent analytics coverage of attack techniques against Linux systems.
“This latest round indicates significant product growth from our vendor participants. We are seeing greater emphasis in threat informed defense capabilities, which in turn has developed the infosec community’s emphasis on prioritizing the ATT&CK Framework,” said Ashwin Radhakrishnan general manager of ATT&CK Evaluations at MITRE Engenuity.
To view the full MITRE Engenuity ATT&CK Evaluations Enterprise 4 report results, visit https://attackevals.mitre-engenuity.org/enterprise/participants/?adversaries=wizard-spider-sandworm.
About MITRE Engenuity
MITRE Engenuity, a subsidiary of MITRE, is a tech foundation for the public good. MITRE’s mission-driven teams are dedicated to solving problems for a safer world. Through our public-private partnerships and federally funded R&D centers, we work across government and in partnership with industry to tackle challenges to the safety, stability, and well-being of our nation.
MITRE Engenuity brings MITRE’s deep technical know-how and systems thinking to the private sector to solve complex challenges that government alone cannot solve. MITRE Engenuity catalyzes the collective R&D strength of the broader U.S. federal government, academia, and private sector to tackle national and global challenges, such as protecting critical infrastructure, creating a resilient semiconductor ecosystem, building a genomics center for public good, accelerating use case innovation in 5G, and democratizing threat-informed cyber defense.
Bitdefender provides cybersecurity solutions with leading security efficacy, performance and ease of use to small and medium businesses, mid-market enterprises and consumers. Guided by a vision to be the world’s most trusted cybersecurity solutions provider, Bitdefender is committed to defending organizations and individuals around the globe against cyberattacks to transform and improve their digital experience. For more information, visit https://www.bitdefender.com.