410722, 14:14 Microsoft 385 Defender demonstrates industyeading protection inthe 2022 MITRE Engenulty ATT&CK® Evaluations - Merosot Se. Hi Microsoft as whi Solutions All Microsoft. icrosoft Security » April 5, 2022 + 6 min read Microsoft 365 Defender demonstrates industry-leading protection in the 2022 MITRE Engenuity ATT&CK® Evaluations Tanmay Ganacharya Partner Director, Security Research, Microsoft 365 Defender For the fourth consecutive year, Microsoft 365 Defender demonstrated its industry- leading protection in MITRE Engenuity's independent ATT&CK® Enterprise Evaluations, showcasing the value of an integrated XDR-based defense that unifies device and identity protection with a Zero Trust approach: tps www. microsoft. com/secuntyiblog'2022104/DS/microsof-365-defender-domonstrates industry-leading protectionsn-to-2022-nitre-ongonuiy-att... 1/181022, 14.14 Microsoft 365 Defender demonstrates industry 4eading protection inthe 2022 MITRE Engenuity ATT&CK® Evaluations - Merosof Se. = Complete visibility and analytics to all stages of the attack chain = 100% protection, blocking all stages in early steps = Each attack generated a single comprehensive incident for the SOC = Differentiated XDR capabilities with integrated identity protection = Protection for Linux across all attack stages = Deep and integrated Windows device sensors = Leading with product truth and a customer-centric approach Microsoft 365 Defender XDR solution displayed top-class coverage by successfully surfacing to the security operations center (SOC) a single comprehensive incident per each of the simulated attacks, This comprehensive view provided in each incident detailed suspicious device and identity activities coupled with unparalleled coverage of adversary techniques across the entire attack chain. Microsoft 365 Defender also demonstrated 100% protection by blocking both attacks in the early stages. This is the third year in which Microsoft 365 Defender showcases the power of the combined XDR suite, demonstrating coverage across devices, identities, and cloud applications. Demonstrated complete visibility and analytics across all stages of the attack chain Microsoft 365 Defender demonstrated complete technique-level coverage across all the attack stages of Wizard Spider and Sandworm, leveraging our artificial intelligence-driven adaptive protection hitps Awww. microsoft com/secuniyiblog/2022/04/0Simierosof-365.sefender-domonstiates-industy-leading-protectionsn-te-2022-mitre-ongenuily-att... 2/191022, 14.14 Microsoft 365 Defender demonstrates industry-leading protection inthe 2022 MITRE Engenuity ATT&CK® Evaluations - Microsoft Se... Microsoft 365 Defender providing full attack chain coverage Scenario 1: Wizard Spider Dump Active Inti compromise ier: TWetbot ‘rectory fog. _Ryukinibis ot ‘nd deploy icevery database system reevery "rikbot 08 Microsoft 365 Defender i technique pone omen contol ras ‘alton Genera! . - _ Telemety Scenario 2: Sandworm None Bw Move tery to coneler 19 Deploy Notheya 18 iat compromise perience 1 Initial iacovery Upload and Socorery ‘dumping execne sane [ Figure 1. Microsoft 365 Defender providing full attack chain coverage Defending against human-operated ransomware requires a defense in-depth approach that continuously evaluates device, user, network, and organization risk and then leverages these signals to alert on potential threats across the entire attack chain. Providing detection and visibility enables defenders to evict the attackers from the network during the pre-ransom phase. It also minimizes the impact of encryption or extortion through data exfiltration activities. Technique-leve| detection coverage in real time without delays tps Awww. microsoft com/secuniyiblog/2022/04/06imierosof-365. August 3, 2022 + 4 min read rosoft Defender Experts for Hunting proactively hunts threats Microsoft Defender Experts for Hunting is now generally available. The security offering provides a proactive hunting service combining expert- trained technology with human-led services to hunt for threats across Microsoft 365 data. Read more > tps Awww. microsoft com/secuniyiblog/2022/04/06imierosof-385. Get started with Microsoft Security Microsoft is a leader in cybersecurity, and we embrace our responsibility to make the world a safer place aN ed hitps Awww. microsoft com/secuniyiblog/2022/04/0Simierosof-365.sefender-demonstiates-industy-leading-protectionsn-te-2022-nitre-ongenuilya,... 18/191822, 14.14 Microsoft 385 Defender demonstrates industye Get all the news, updates, and more at @MSFTSecurity What's new Surface Laptop Go2 Surface Pro 8 Surface Laptop. Studio Surface Pro X Surface Go3 Surface Duo 2 Surface Pro 7+ ‘Windows 11 apps Microsoft Store Account profile Download Center Microsoft Store support Returns Order tracking Virwal workshops and training Microsoft Store Promise Flexible Payments @ trotsn United states) Sitemap Contact Microsoft Privacy © Microsoft 2022 Education Business Developer & Microseftin Microsoft Cloud uy education pane Microsoft Security Devices for Developer Center education Dynamics 355 Documentation Microsoft Teams Microsoft 365, for Education Microsoft Lean Microsoft Power Microsoft 365 Platform Microsoft Tech Education Community Microsoft Teams Education Aawe consultation Microsoft Industry yarketplace appointment Small Business ‘AppSource Educator training and development Visual Studio Deals for students and parents ‘zure for students Terms of use Trademarks 1g protection in the 2022 MITRE Engenuity ATT&CK® Evaluations - Microsoft Se. Company Careers About Microsoft Company news Privacy at Microsoft Diversity and inclusion Accessitiliy Sustainability Safety & eco About our ads tps Awww. microsoft com/secuniyiblog/2022/04/0Simierosof-365.sefender-domonstiates-industy-leading-protectionsn-te-2022-nitre-ongenuily-a... 19/19