Cortex XDR blocked all steps in the protection assessment and detected all 19 steps in both attack scenarios
SANTA CLARA, Calif., March 31, 2022 /PRNewswire/ — Palo Alto Networks (NASDAQ: PANW), a Leader in endpoint security, announced today that it has successfully completed the MITER Ingenio ATT&CK® Round 4 Evaluation — achieve 100% Prevention and 100% Detection of attacks. XDR cortex® was evaluated for its ability to protect and detect simulations of the Sorceress spider and sandworm threat groups real-world attacks.
Detecting and mitigating real world threats is the ultimate validation of a security solution. According to MITER, sorceress spider is financially motivated Russiabased on threats that has been conducting ransomware campaigns against a variety of organizations, from large corporations to hospitals. MITER describes sand worm as a Russian threat group known for carrying out notable attacks, such as the targeted attacks on Ukrainian power companies in 2015 and 2016 and the NotPetya attacks of 2017.
Cortex XDR received outstanding results on all measures, including:
- 100% prevention against all attacks in the protection phase of the evaluation.
- 100% detection of all 19 attack steps.
- More than 98% of the attack substeps were identified with “technique-level analytical detections.”
- Over 98% visibility of all adversary activity in both attack scenarios.
These excellent results are based on Cortex XDR’s industry-leading endpoint telemetry collection that powers our cloud-based analytics and behavioral threat protection. All (100%) of the detections provided by Cortex XDR were classified as technique level detections, the highest value detections available in the evaluation. Cortex XDR automates the investigation process, providing comprehensive attack histories that can clearly reveal the how, what, and why of an attack and give analysts the critical information they need for a fast and comprehensive remediation.
“Cortex XDR is a leading solution for the industry, and we are delighted to have achieved such significant results again in this year’s MITER evaluation,” said gonenfink, senior vice president of Cortex products at Palo Alto Networks. “MITER Engenuity results are the best measure of the effectiveness of security products for today’s threats and an important vendor evaluation yardstick for customers. Our performance is a testament to the continuous innovation we bring to Cortex XDR and a proof of our ability to provide customers with exceptional protection. We value MITER’s threat-informed approach that helps drive the industry forward, making it a safer world.”
“This latest round indicates significant product growth from our participating vendors. We are seeing an increased emphasis on threat-informed defense capabilities, which in turn has built on the information security community’s emphasis on prioritizing the ATT&CK framework,” said Ashwin Radhakrishnan, interim general manager of ATT&CK Evaluations. at MITER Ingenio.
For more information, please read our “2022 MITER Engenuity ATT&CK Assessment Results” Blog and see the results here.
About MITER Ingenio
MITER Engenuity, a subsidiary of MITER, is a technology foundation for the public good. Mission-driven MITER teams are dedicated to solving problems for a safer world. Through our public-private partnerships and federally funded research and development centers, we work across government and in partnership with industry to address challenges to our nation’s security, stability, and well-being.
MITER Engenuity brings MITER’s deep technical knowledge and systems thinking to the private sector to solve complex challenges that government alone cannot solve. MITER Engenuity catalyzes the collective R&D strength of the US federal government, academia, and the broader private sector to address national and global challenges, such as protecting critical infrastructure, creating a resilient semiconductor ecosystem, building a genomics center for the public good and accelerate use case innovation. in 5G, and democratizing threat-based cyber defense.
About Palo Alto Networks
Palo Alto Networks, the global leader in cybersecurity, is shaping the cloud-centric future with technology that is transforming the way people and organizations operate. Our mission is to be the cybersecurity partner of choice, protecting our digital way of life. We help address the world’s biggest security challenges with continuous innovation that leverages the latest advances in artificial intelligence, analytics, automation, and orchestration. By offering an integrated platform and powering a growing ecosystem of partners, we are at the forefront of protecting tens of thousands of organizations across clouds, networks, and mobile devices. Our vision is a world where every day is safer than the last. For more information visit www.paloaltonetworks.com.
Palo Alto Networks, Cortex XDR, and the Palo Alto Networks logo are registered trademarks of Palo Alto Networks, Inc. in the United States and in jurisdictions around the world. All other trademarks, trade names or service marks used or mentioned in this document are the property of their respective owners. All unpublished services or features (and any services or features not generally available to customers) referenced in this or other press releases or public statements are currently unavailable (or not yet available to customers). general customers) and may not be delivered when expected or at all. Customers purchasing Palo Alto Networks applications should make their purchase decisions based on currently generally available services and features.
SOURCE Palo Alto Networks, Inc.