Achieving 100% Protections in MITRE ATT&CK Eval Round 7
Once again, AhnLab has demonstrated our industry-leading cybersecurity capabilities in the independent MITRE ATT&CK Evaluations Enterprise Round 7, achieving 100% Protections. Our rock-solid defense, powered by contextualized and accurate cross-domain detection, indicates that our rigorously tested solutions are ready to safeguard our customers from ever-evolving cyber attacks in the real world.
In round 7, the detection and protection capabilities of AhnLab EDR, AhnLab EPP, and AhnLab XDR were rigorously assessed. Notably, our products achieved 100% protection in testing, and there are additional highlights to be noted from the real-world user perspective.
1. 100% Protections – Proving Industry-Leading Defense Capabilities
We blocked 100% of malicious activities in the Protections testing, successfully keeping the evaluation environment and systems secure. The result once again demonstrates our industry-leading defense capabilities, which have been continuously verified through previous MITRE ATT&CK evaluations, other global cybersecurity assessments, and real-world customer environments.
Notably, the protection included tests composed solely of normal events, in addition to those comprised of malicious behaviors. Our solutions precisely identified these non-malicious events as normal and did not block them, thereby proving the accuracy of blocking capabilities. In simple terms, we stopped what needed to be stopped and allowed what needed to be allowed, delivering both robust security and practicality for real-world customers.
2. Cross-Domain Threat Visibility Across On-Premises and Cloud
As explained earlier, MITRE incorporated on-premises (Windows/Linux) and cloud scenarios in round 7. Our solutions provided detailed evidence and analysis of sophisticated techniques that span across operating systems, delivering comprehensive visibility and context of threat activities.
In the newly introduced cloud scenario this year, we integrated AhnLab XDR with the cloud resources in the testing environment to establish an architecture for behavioral detections. Embracing the concept of “open XDR” with seamless integration, AhnLab XDR effectively detected malicious activities carried out by attackers across cloud environments and provided contextual analysis. Consequently, we were able to demonstrate our exceptional cross-domain detection capabilities not only in on-premises environments but also in the cloud.
3. About 90% Accuracy in False Positives along with Zero Delays
For non-malicious substeps designed to assess detection accuracy and quality, we achieved about 90% accuracy. This result indicates that no threat alerts were generated for normal activities, demonstrating that our solutions can effectively address the false positive issue that many customers encounter when operating security systems.
Additionally, the evaluation assesses whether there was any delay in detections, as real-world users need to leverage detection evidence immediately for threat response. Our solutions provided all detection results in real-time, achieving zero-delay detections.
Download eBook to learn more about our results.
