Posted inSecurity

SentinelOne tops MITRE Engenuity ATT&CK Deception Evaluation

SentinelOne was recognised for its ability to defend against sophisticated identity-based attacks and insider threats

by ITP Staff
SecurityHQ: Vulnerability Management Service
by ITP Staff

SentinelOne has announced its results from the inaugural MITRE Engenuity ATT&CK Deception Evaluation.

The evaluation revealed that SentinelOne has a comprehensive MITRE ATT&CK analytic coverage, helping enterprises reduce risk across device, cloud, and identity attack surfaces.

SentinelOne was recognised for its ability to defend against sophisticated identity-based attacks and insider threats.

The inaugural MITRE ATT&CK Deception Evaluation tested vendors’ ability to protect against the APT29 threat group. SentinelOne’s Singularity XDR platform – and specifically its Hologram deception solution – was recognised for its ability to provide real-time protection against active directory compromise. This means that every time adversaries tried to gain access to Active Directory (AD), SentinelOne protected against theft with evasion techniques and decoy credentials.

The cybersecurity firm’s platform was also commended for being able to secure critical assets. SentinelOne uses data cloaking to mislead adversaries, keeping file and account information across identity, data, endpoint, cloud and IoT secure to prevent data theft and destruction. Furtheremore, it can stop lateral movement and privilege escalation as it blocked the use of Golden Ticket and Silver Ticket attack techniques, stopping adversaries from gaining access to endpoints on the network.

Finally, it can optimise insights into adversary behaviour, by providing detailed insights across adversary behavior, including ingestible, actionable TTP information and high-confidence, substantiated attack forensics.

“As attackers continue to evade security controls, enterprises need modern XDR solutions that protect against threats at every stage of the attack lifecycle,” said Raj Rajamani, Chief Product Officer, SentinelOne. “SentinelOne is the first XDR provider to natively include identity and deception. Our results in the inaugural MITRE ATT&CK Deception Evaluation confirm SentinelOne’s commitment to push the boundaries of autonomous technology as we help enterprises protect against identity-based attacks.”