CrowdStrike Sets Record for Fastest Threat Detection in MITRE Engenuity's ATT&CK Evaluations: Managed Services-Round 2
CrowdStrike Sets Record for Fastest Threat Detection in MITRE Engenuity's ATT&CK Evaluations: Managed Services-Round 2
CrowdStrike detects advanced adversary attack in real-world, closed-book simulation in just four minutes, six to 11 times faster than competitive vendors; scores highest in detection coverage at 98%
CrowdStrike在現實世界中的閉卷模擬中檢測到高級對手攻擊,僅用了四分鐘,比競爭對手快六至十一倍;檢測覆蓋率最高,達到了98%。
AUSTIN, Texas--(BUSINESS WIRE)--Jun. 18, 2024-- CrowdStrike (NASDAQ: CRWD) set a new speed benchmark for cybersecurity threat detection, identifying and alerting on a sophisticated eCrime adversary attack in just four minutes during the closed-book MITRE Engenuity's ATT&CK Evaluations: Managed Services-Round 2. CrowdStrike Falcon Complete MDR operates at the speed of the adversary, detecting the security incident six to 11 times faster than competitive vendors, while scoring the highest in detection coverage at 98 percent.
2024年6月18日,德克薩斯州奧斯汀--(BUSINESS WIRE)(納斯達克代碼:CRWD)(納斯達克:crowdstrike)在MITRE工程有限公司(MITRE Engenuity)的ATT&CK評估:託管服務-第二輪中,針對複雜的電子犯罪對手攻擊進行了僅四分鐘的識別和警報,創下了網絡安全威脅檢測的新記錄。CrowdStrike Falcon Complete MDR --一款安全防護軟件,以對手速度運轉,在檢測到安全事件的方面,比競爭對手快6至11倍,檢測覆蓋率最高達98%。. MITRE奮發有限公司的ATT&CK評估是一種模擬真實網絡犯罪攻擊而不提前通知供應商威脅情景的封閉式評估,因此可以最準確地評估供應商的能力。在此情景中,Falcon代理的預防能力是不被允許的,Falcon平台只運行在僅僅檢測的模式下,即沒有自動化操作來終止進程。在這種嚴格的環境下,CrowdStrike報告發現了43個對手技術中的42個,佔比達98%。MITRE記錄了CrowdStrike的平均檢測時間(MTTD)--特定攻擊活動執行和收到有關該活動的電子郵件警報之間的平均時間,在記錄了只有四分鐘的記錄之前--創下了威脅檢測速度的新里程碑。"阻止違規行爲需要安全團隊以對手速度運轉。Falcon平台的獨特雲本地、人工智能本地架構與一種智能傳感器提供了業界最佳的分析師體驗和最快、最有效的網絡安全結果,"CrowdStrike的總統Michael Sentonas說:"多個平台和縫合在一起的解決方案很難使用,會產生操作複雜性,並在速度最重要的時候撐慢安全團隊。這在測試場景中是顯而易見的,而在真實環境中更加如此。CrowdStrike精英團隊、Falcon平台和我們對對手的了解的強大結合,在提供停止違規行爲所需的速度和功效方面是無與倫比的。"
MITRE's closed book evaluation emulated a real-world eCrime attack without giving the vendors prior knowledge of the threat scenario – creating the most accurate assessment of a vendor's capabilities. In this scenario, prevention capabilities of the Falcon agent were not permitted and the Falcon platform was operating in detect-only mode, meaning no automated actions could be taken to kill processes. In this rigorous setting, CrowdStrike reported 42 out of the 43 (98%) adversary techniques. MITRE recorded CrowdStrike's mean-time-to-detect (MTTD) – the average time between when a specific attack activity was performed and an email alert regarding that activity was received – at a record-breaking four minutes, setting a new benchmark for speed in threat detection.
附加資源。MITRE的封閉式評估模擬了一個真實的電子犯罪攻擊,沒有提供供應商對威脅情景的事先知識,從而創造了對供應商能力的最準確評估。在該情景中,要求Falcon代理不能進行預防能力,Falcon平台只能在僅僅檢測的模式下運行,也就是說沒有自動化操作可以用於殺死進程。在這種的環境下,CrowdStrike報告了43個對手技術中的42個項目(98%)。MITRE記錄了CrowdStrike的平均檢測時間(MTTD):特定的攻擊活動被執行和電子郵件警報接收到有關該活動的平均時間,設置了新的威脅檢測速度里程碑,達到了創紀錄的4分鐘。
"Stopping breaches requires security teams to operate at the speed of the adversary. The Falcon platform's unique cloud-born, AI-native architecture with one intelligent sensor delivers the best analyst experience and the fastest, most effective cybersecurity outcomes in the industry," said Michael Sentonas, President of CrowdStrike. "Multiple platforms and stitched-together solutions are hard to use, create operational complexity, and slow security teams down when speed matters most. This is evident in testing scenarios and even more so in real-world environments. The powerful combination of CrowdStrike's elite team of experts, the Falcon platform, and our knowledge of the adversary is unmatched in delivering the speed and efficacy needed to stop breaches."
"停止違規行爲需要安全團隊以對手速度運轉。Falcon平台的獨特雲本地、人工智能本地架構與一種智能傳感器提供了業界最佳的分析師體驗和最快、最有效的網絡安全結果,"CrowdStrike的總統Michael Sentonas說:"多個平台和縫合在一起的解決方案很難使用,會產生操作複雜性,並在速度最重要的時候撐慢安全團隊。這在測試場景中是顯而易見的,而在真實環境中更加如此。CrowdStrike精英團隊、Falcon平台和我們對對手的了解的強大結合,在提供停止違規行爲所需的速度和功效方面是無與倫比的。"
Additional Resources
更多資源。
- To learn more about how CrowdStrike achieved 98% coverage scores and set the benchmark in threat detection time, read our blog.
- For full results and more information about the evaluations, visit here.
- To register for the CrowdStrike CrowdCast on the MITRE ATT&CK Evaluation: Managed Services on June 27, visit here.
About CrowdStrike
crowdstrike
CrowdStrike (Nasdaq: CRWD), a global cybersecurity leader, has redefined modern security with the world's most advanced cloud-native platform for protecting critical areas of enterprise risk – endpoints and cloud workloads, identity and data.
(納斯達克代碼:CRWD),全球網絡安全領導者,憑藉全球最先進的雲原生平台重新定義了現代安全領域——專注於企業風險的關鍵領域——端點和雲工作負載、身份和數據。
Powered by the CrowdStrike Security Cloud and world-class AI, the CrowdStrike Falcon platform leverages real-time indicators of attack, threat intelligence, evolving adversary tradecraft and enriched telemetry from across the enterprise to deliver hyper-accurate detections, automated protection and remediation, elite threat hunting and prioritized observability of vulnerabilities.
CrowdStrike Falcon平台由CrowdStrike Security Cloud和世界一流的人工智能技術提供支持,利用來自企業全局的實時攻擊指標、威脅情報、不斷演進的對手策略和豐富的遙測數據,實現超準確的檢測、自動保護和修復、精英威脅狩獵以及漏洞的優先觀察。
Purpose-built in the cloud with a single lightweight-agent architecture, the Falcon platform delivers rapid and scalable deployment, superior protection and performance, reduced complexity and immediate time-to-value.
Falcon平台專爲雲端開發,採用單一輕量化代理體系結構,可實現快速、可擴展的部署、卓越保護和性能、降低複雜性和立即投入使用。
CrowdStrike: We stop breaches.
CrowdStrike:我們阻止攻擊。
Learn more: https://www.crowdstrike.com/
Follow us: Blog | Twitter | LinkedIn | Facebook | Instagram
Start a free trial today: https://www.crowdstrike.com/free-trial-guide/
2024 CrowdStrike, Inc. All rights reserved. CrowdStrike, the falcon logo, CrowdStrike Falcon and CrowdStrike Threat Graph are marks owned by CrowdStrike, Inc. and registered with the United States Patent and Trademark Office, and in other countries. CrowdStrike owns other trademarks and service marks, and may use the brands of third parties to identify their products and services.
2024 CrowdStrike, Inc.所有權利已保留,CrowdStrike,falcon標識,CrowdStrike Falcon和CrowdStrike Threat Graph是CrowdStrike,Inc.擁有的,已在美國專利和商標局和其他國家註冊的商標。CrowdStrike擁有其他商標和服務商標,並可能使用第三方品牌來識別其產品和服務。
View source version on businesswire.com: https://www.businesswire.com/news/home/20240617088058/en/
在businesswire.com上查看原始版本businesswire.com: https://www.businesswire.com/news/home/20240617088058/en/
Jake Schuster
CrowdStrike Corporate Communications
press@crowdstrike.com
Jake Schuster
crowdstrike 通信-半導體 公司通信
press@crowdstrike.com
Source: CrowdStrike
來源:CrowdStrike
譯文內容由第三人軟體翻譯。