For small and medium-sized enterprises (SMEs) and managed service providers, a top priority for cybersecurity managers is keeping the IT environment up and running. To protect against cyber threats and prevent data breaches, it is vital to understand the current cybersecurity vendor landscape and continually evaluate the effectiveness of available solutions. Fortunately, the 2024 MITER ATT&CK Evaluation—the most trusted resource for tracking effective solutions—is now available. this practical guidance distills the main findings and advice on interpreting the results.
Cynet was the only vendor to achieve 100% visibility and 100% protection in the 2024 assessment. This means that An all-in-one cybersecurity platform. detected 100% of threats tested in the detection phase and blocked 100% of attacks simulated in the protection evaluation phase. In addition, Cynet achieved 100% detection with no false positives.
“These MITER ATT&CK 2024 assessment results reflect the commitment of our entire team to ensure success for Cynet’s partners, customers and end users,” says Cynet Founder and CEO Eyal Gruner. “Achieving 100% detection visibility and 100% protection is a motivating milestone that validates the compelling benefits Cynet’s versatile cybersecurity platform provides to organizations worldwide.”
This 2024 performance is notable after Cynet made history in the 2023 MITER ATT&CK assessment. This was the first time a vendor provided 100% visibility and 100% analytics coverage without configuration changes. However, it is important to note that MITER does not rank suppliers or announce “winners”. Cybersecurity leaders must interpret the data to determine which solution best fits their team’s unique needs.
What is the MITER ATT&CK Score?
MITER is a non-profit foundation that supports private sector companies that “solve problems for a safer world”. Their annual ATT&CK assessment is considered the fairest and most impartial technical test of competing security vendor solutions.
- MITER uses simulated attacks in a controlled lab environment to evaluate how vendor solutions behave against a set of similarly introduced threats.
- Vendor solutions are tested consistently, without external, extraneous factors influencing the results, as in the case of a real deployment.
This approach helps assess how effectively a solution can detect the many individual steps that an adversary can use to launch an attack. Because MITER uses techniques from real threat groups, each technique presented reflects what might happen in the real world.
The assessment allows vendors to demonstrate whether their solution detects the threats presented and the information provided for each detection.
MAIN RESULTS
Cynet provides 100% detection visibilityperfectly defining each attack action without configuration changes or delays.
The ability to detect threats is a fundamental measure of an endpoint protection solution. Identifying the stages of an attack in the MITER ATT&CK sequence is critical to protecting an organization. Missing any step could allow the attack to propagate and eventually lead to a breach or other catastrophic results.
This year, the attack sequence consisted of 16 stages, which were broken down into 80 malicious sub-stages. During Cynet testing, 3 substeps were not completed due to technical reasons and are considered unavailable (not counted), resulting in 77 substeps completed. Cynet identified each of the 77 substages. In this year’s MITER testing, Cynet had ZERO misses and detected 100% of attacks on Windows and MacOS devices, as well as Linux servers.
All 77 detections were performed without the need for configuration changes.
Cynet provides 100% protectionblocking every attack attempt.
About half of the participating security vendors were unable to test all 10 attack phases planned for the Protection tests due to technical issues. MITRE was able to perform all 10 stages of the attack for Cynet. Cynet blocked each of the 10 stages of the attack – preventing malicious activity from taking place.
Cynet provides 100% preventionblocking every attack in the first phase.
The protection measures whether any sub-step of the protection step has been blocked. For example, if a step consisted of 5 substeps, the supplier might skip the first four, block the fifth, and consider the entire step blocked. Cynet measures prevention by how quickly (early) at each of the 10 attack stages the threat was prevented.
Prevention measures the percentage of substeps that were blocked. Ideally, the vendor would block the first sub-step at each step checked so that each subsequent sub-step of that step is considered blocked. Using this measure, Cynet is the only vendor to achieve 100% prevention – blocking the execution of each of the 21 sub-steps of protection.
Conclusion
Partnering with the right cybersecurity provider is one of the first and most effective steps you can take to ensure the best possible protection for your organization or customers. The 2024 MITER ATT&CK Assessment Results justify why Cynet’s all-in-one cybersecurity platform is becoming an increasingly popular solution for fast-growing SMEs and SME. By demonstrating that highly effective protection can be truly intuitive and affordable, Cynet sets an example that competing vendors must now strive to emulate.
Sign up to see Cynet in action today.
