"This year, MITRE made headlines primarily because its leading vulnerability database was in danger of being discontinued. For years, another issue has been plaguing the American non-profit. The voluntary ATT&CK evaluations in which security players participate are no longer popular. Below, we explain why and what MITRE plans to do to turn the tide. This year's list of participants is particularly disappointing, not in terms of caliber, but in the length of its participant list."
"This is a striking development. The MITRE ATT&CK Evaluations are well known in the security world ever since their 2019 inception. Every year, the tests validate the capabilities of leading endpoint security products. Big names such as CrowdStrike, Fortinet, SentinelOne, Microsoft, Palo Alto Networks, Sophos, and Trend Micro have participated multiple times. This is always a conscious choice, as participation depends entirely on the vendor. Although MITRE acts as a neutral party in the testing process, the evaluations are effectively a kind of open-book test."
MITRE faced two major problems: its leading vulnerability database risked discontinuation and its voluntary ATT&CK Evaluations are losing participants rapidly. Participant counts fell from 30 in 2022 to 11 this year, with Acronis, AhnLab, CrowdStrike, Cyberani, Cybereason, Cynet, ESET, Sophos, Trend Micro, WatchGuard, and WithSecure still participating. The ATT&CK Evaluations, launched in 2019, validate endpoint security capabilities by emulating specific, pre-announced threats in controlled test environments and reviewing detection techniques. Participation is voluntary, allows vendors to adjust tooling during tests, and functions as a public signal of confidence in product performance. Vendors pursue high scores, though perfect results across all subcategories are difficult.
Read at Techzine Global
Unable to calculate read time
Collection
[
|
...
]