SentinelOne proves exceptional in MITRE ATT&CK Evaluations with MDR

SentinelOne, an autonomous cybersecurity platform company, was recognized in the MITRE Engenuity ATT&CK Evaluation for Managed Services for its Vigilance MDR. This achievement follows three consecutive years of top performance in MITRE ATT&CK Enterprise Evaluations and MITRE ATT&CK Deception evaluation.

SentinelOne is the only XDR provider that has taken part in every MITRE evaluation, including those for EDR, Identity/Deception, and now MDR, and has consistently outperformed the competition. SentinelOne is fully committed to MITRE’s frameworks as the de facto language of cybersecurity and supports organisations in programmatic risk reduction. SentinelOne is integrated under Singularity XDR.

The MITRE Engenuity ATT&CK Evaluation for Managed Services evaluated vendors’ ability to analyze and describe adversary behaviour from OilRig, also known as APT 34.

The evaluation highlighted the importance of MDR services in providing faster threat mitigation to reduce attacker dwell time, showcasing SentinelOne Vigilance MDRs:

• Accurate, Insightful Adversary Attribution. SentinelOne Vigilance was able to not only correctly attribute the attack to OilRig, but provide additional insight including a summary of the adversary and the group’s evolution over time, commonly exploited tools by the adversary, and all of their known associated TTP.
• Superior Digital Forensics and Incident Response (DFIR) Capabilities. With a frictionless MDR and DFIR experience, SentinelOne Vigilance seamlessly provided insight into the “how” and the “why” – including malware and data exfiltration technique analysis and reverse engineering of malware samples – to significantly accelerate overall investigation and response.
• Real-Time Threat Mitigation, Going Beyond Detection. SentinelOne Vigilance accurately tracked and detected – using patented Storyline technology – the adversary from the moment they infiltrated the simulated environment. With protection policies enabled, this attack would have been autonomously stopped in its tracks.

Brian Hussey, VP Threat Services, SentinelOne said “Thousands of enterprises around the world choose Vigilance MDR to augment or replace their security operations with a team of military-grade cybersecurity experts.”

He added “The combination of autonomous cybersecurity and our award-winning Vigilance MDR service reduces dwell time, operational costs, and risk. Delivered by SentinelOne and our global ecosystem of partners, SentinelOne is proud to excel in this inaugural MDR evaluation.”

SentinelOne received the most thorough MITRE ATT&CK analytic coverage in the first MITRE Engenuity ATT&CK Deception Evaluation earlier this year. One of the first endpoint firms to adopt the MITRE ATT&CK Endpoint Protection Product Evaluation, integrate the MITRE ATT&CK framework as the new threat hunting standard within Singularity XDR’s UI, and correlate alarms in-product with the MITRE ATT&CK framework was SentinelOne.