Rapid7 MDR Excels in All New MITRE Engenuity ATT&CK Evaluations of Threat-Informed Defense Capabilities
November 2022 by Marc Jacob
Rapid7, Inc. announced the final results of the 2022 MITRE Engenuity ATT&CK® Evaluations of Rapid7 managed detection and response (MDR) services. In the simulated incident, Rapid7 MDR demonstrated early detection of threats, complete coverage across the cyber attack chain, and the artifacts collected highlighted rich reporting and engagement throughout.
This round of independent ATT&CK Evaluations for security service providers emulated the OilRig threat group. According to MITRE Engenuity, OilRig “was chosen based on its evasion and persistence techniques, its complexity, and its relevancy to industry.” Rapid7 MDR excelled at identifying the earliest indicators of attack, having reported techniques across all 10 steps of the attack simulation.
“More than half of organizations use security service providers to protect their data and networks. We wanted to research how they are employing threat-informed defense practices for their clients,” said Ashwin Radhakrishnan, acting General Manager of ATT&CK Evaluations at MITRE Engenuity.
Rapid7 MDR blends the necessary people, expertise, processes, and technology to rapidly detect, analyze, investigate, validate, and respond to threats across the modern environment – endpoint, network, application, and cloud services layers. Through this service, Rapid7 serves as a true partner throughout the incident lifecycle, driving end-to-end recommendations and results.
A Rapid7 differentiator is its combined Incident Response consulting team and MDR SOC, which ensures that all MDR customers receive the same high-caliber digital forensics and incident response (DFIR) expertise as a core service capability. This single, integrated team of detection and response experts works together to execute on every type of attack scenario, from a minor breach like a phishing email with an attached maldoc, to a major targeted breach involving multiple endpoints compromised by an advanced attacker.