6.29.21

ExtraHop Experts Contribute Network Detection and Response Expertise to MITRE ATT&CK Framework

Cybersecurity knowledge base expands to support evolving security landscape

SEATTLE – JUNE 29, 2021 – ExtraHop, the leader in cloud-native network detection and response (NDR), today announced that ExtraHop researchers consulted with MITRE in the development of the new network detection and response methodologies included in the latest version of the ATT&CK framework. This key contribution from ExtraHop provides new guidance for organizations as they integrate NDR into their security operations. It also builds on the company's leadership around the MITRE ATT&CK framework, which is natively integrated into the ExtraHop Reveal(x) 360 interface.

MITRE ATT&CK is a globally accessible knowledge base of adversary tactics and techniques based on real-world observations. The ATT&CK knowledge base is used as a foundation for the development of specific threat models and methodologies in the private sector, government, and the cybersecurity product and service community. The growing body of network attack behaviors in the MITRE ATT&CK framework serves as both a useful resource and a strong signal for organizations that NDR is a vital tool for detecting and responding to advanced threats.

"ExtraHop was one of the companies that contributed to our development of ATT&CK for Containers," said Justin Roberts, cloud/containers lead for the MITRE ATT&CK team. "As we all work to help companies stay protected against attacks using knowledge bases like ATT&CK as a common language, contributors like ExtraHop, with expertise and experience with real-world attacks, help us support the security community in reaching that goal."

"ExtraHop has admired the work the MITRE team has been doing for years, and we're honored to have been able to contribute to the latest version of the ATT&CK framework," said Jeff Costlow, CISO, ExtraHop. "But the work isn't over. Cyber attacks are only growing more sophisticated, and we must remain proactive and vigilant. That's why we're committed to continuing to work alongside MITRE, as well as our customers and partners, to continue identifying new attack techniques and developing ways to detect, investigate, and respond to them quickly."

To learn more about how ExtraHop and MITRE work together, check out the blog here. To try ExtraHop Reveal(x) for yourself, check out the live interactive online demo.

About ExtraHop

Cyberattackers have the advantage. ExtraHop is on a mission to help you take it back with security that can't be undermined, outsmarted, or compromised. Our dynamic cyber defense platform, Reveal(x) 360, helps organizations detect and respond to advanced threats—before they compromise your business. We apply cloud-scale AI to petabytes of traffic per day, performing line-rate decryption and behavioral analysis across all infrastructure, workloads, and data-in-flight. With complete visibility from ExtraHop, enterprises can detect malicious behavior, hunt advanced threats, and forensically investigate any incident with confidence. ExtraHop has been recognized as a market leader in network detection and response by IDC, Gartner, Forbes, SC Media, and numerous others.

When you don't have to choose between protecting your business and moving it forward, that's security uncompromised. Learn more at www.extrahop.com.

© 2021 ExtraHop Networks, Inc., Reveal(x), Reveal(x) 360, Reveal(x) Enterprise, and ExtraHop are registered trademarks or marks of ExtraHop Networks, Inc.

Press Contact

Mentha Benek

ExtraHop Networks

206-787-8417

pr@extrahop.com