Announcing 2020’s ATT&CK Evaluation: Carbanak and FIN7


Two years ago, MITRE launched ATT&CK Evaluations to drive the enhancement of endpoint detection solutions. This year MITRE’s Public Foundation, MITRE-Engenuity, will take the reins and continue to propel ATT&CK Evaluations forward. The Evaluations empower users to make more informed decisions on endpoint detection capabilities through a transparent evaluation process. Using MITRE’s ATT&CK framework as the benchmark, we articulate how commercial security products can detect adversary behavior. Adversary emulation, testing “in the style of” a specific adversary, allows us to scope the evaluation and ensure our evaluations are informed by known threats.

Read more…