Apr 18, 2017

SafeBreach Labs Contributes Attack Expertise to MITRE ATT&CK; Framework

Sunnyvale, CA – April 18, 2017. SafeBreach, the leading provider of continuous security validation, today announced that its research arm, SafeBreach Labs has become an early partner in The MITRE Corporation’s research and knowledgebase of post-compromise threat intelligence known as the Adversarial Tactics, Techniques & Common Knowledge (ATT&CK) Framework, established in 2015. Drawing from its unparalleled 4 million (and growing) breach method Hacker’s Playbook, SafeBreach Lab’s initial contribution provides specific and actionable intelligence related to three major attack and exfiltration techniques.

According to the ATT&CK Framework project lead Blake Strom, “ATT&CK is meant to provide comprehensive coverage across a range of post-compromise adversary techniques in a structured framework so defenders are aware of what else to look for, increasing the odds of detection and successful incident response.” Moving beyond indicators, ATT&CK “connects-the-dots” between vulnerabilities and attacker tools and techniques to better visualize and mitigate compromise attempts.

Regarding SafeBreach’s contributions, Strom said, “As we did with the CVE standard, MITRE’s goal is to bring together the collective expertise and experience of the industry, to empower organizations to better understand the adversary and their own risk. The adversarial behavior expertise that SafeBreach provides helps us grow and validate the ATT&CK model, which we hope will be beneficial across the security community, federal agencies and the commercial sector.”

SafeBreach and the company’s Co-founder and CTO Itzik Kotler are leading the research for the ATT&CK Framework project. SafeBreach Lab’s initial contributions span methods for exfiltration, evasion and command and control. Kotler said, “Understanding the cyber kill chain is the first step. When you realize not only the scope of an attacker’s toolset and technical options, but also the multitude of permutations in which those elements can be brought to bear, it’s incredibly daunting. We applaud MITRE for yet again working to establish a common language for defenders, and look forward to an extremely productive partnership.”

About The MITRE Corporation:

The MITRE Corporation is a not-for-profit organization that operates research and development centers sponsored by the federal government. For more information, visit www.mitre.org or follow on Twitter @MITREcorp; on facebook.com/MITREcorp

About SafeBreach

A pioneer in the Breach and Attack Simulation (BAS) market, SafeBreach is the world’s most widely used continuous security validation platform. The patented platform automatically and safely executes thousands of attack methods to validate network, endpoint, cloud, container, and email security controls against its Hacker’s Playbook™, the world’s largest collection of attack data broken down by methods, tactics and threat actors. Founded in 2014 by experienced CISOs, hackers, and security entrepreneurs, SafeBreach makes it possible for security teams to invest wisely, protect more and mitigate risk.

Media Contact:

Merritt Group for SafeBreach – [email protected]

Subscribe to
our Newsletter