Excels in Ability to Detect Sophisticated Threats with Speed and Precision

OXFORD, U.K. — Novembro 9, 2022 —

 Sophos, a global leader in innovating and delivering cybersecurity as a service, today announced that Sophos Managed Detection and Response (MDR) successfully reported malicious activity across all 10 MITRE ATT&CK® steps in the first-ever independent MITRE Engenuity ATT&CK® Evaluation for security service providers. Sophos MDR was evaluated with 15 vendors, excelling in its ability to detect sophisticated threats with speed and precision.

“The complexity and sophistication of today’s cyberthreats make it increasingly difficult for most organizations to manage it effectively on their own, and the need for managed security service partners that can not only proactively and in real-time detect threats but also respond to them on their behalf is critical,” said Mat Gangwer, vice president of operations for Sophos MDR. “MITRE Engenuity is fulfilling a vital industry need for threat-informed evaluation methodologies and publicly available results that enable organizations’ security leaders to assess managed services providers with transparency to ensure trust and alignment. Vendor participation is essential, as the only way we can improve industry defenses is in doing so collectively."

The MITRE Engenuity ATT&CK Evaluation for security service providers evaluated Sophos MDR and other vendors’ abilities to detect and analyze attack tactics and techniques simulating those used by OilRig, an Iranian government-affiliated threat actor – also known as APT34 and Helix Kitten. OilRig relies on social engineering, stolen credentials and supply chain attacks to target organizations across critical infrastructure, government, financial services, and other industries, and was chosen as the evaluation threat actor based on its evasion and persistence techniques, complexity and relevancy to industry. Unlike MITRE Engenuity’s ATT&CK Evaluations for Enterprise, which follow an open book methodology where participating vendors know in advance the adversary being emulated, the managed services evaluation did not disclose the adversary group or the technique scope.

More than 12,600 organizations rely on Sophos MDR for 24/7 threat hunting, detection and response delivered by an expert team as a fully-managed service. The recently expanded service now provides compatibility with third-party security technologies, integrating telemetry from endpoint, firewall, cloud, identity, email, and other vendor’s security solutions as part of the Sophos Adaptive Cybersecurity Ecosystem.

Sobre a Sophos

A Sophos é líder mundial em segurança cibernética next-gen, protegendo mais de 500.000 organizações e milhões de consumidores distribuídos em mais de 150 países contra as mais avançadas ameaças cibernéticas da atualidade. Com o poder da inteligência de ameaças, IA e Machine Learning oferecidos pela SophosLabs e SophosAI, a Sophos oferece um amplo portfólio de produtos e serviços avançados para proteger usuários, redes e endpoints contra ransomware, malware, exploit, phishing e toda a infinidade de ataques cibernéticos. A Sophos oferece um painel único de gerenciamento integrado baseado na nuvem: o Sophos Central, a peça central do ecossistema de segurança cibernética adaptativa que fornece um Data Lake centralizado que se utiliza de um rico acervo de APIs abertas disponíveis para clientes, parceiros, desenvolvedores e outros fornecedores de cibersegurança. Os produtos e serviços Sophos são vendidos através de parceiros revendedores e provedores de serviços gerenciados (MSP) em todo o mundo. A Sophos está sediada em Oxford, no Reino Unido. Mais informações se encontram disponíveis no site www.sophos.com.