Excels in Ability to Detect Sophisticated Threats with Speed and Precision

OXFORD, U.K. — Novembro 9, 2022 —

 Sophos, a global leader in innovating and delivering cybersecurity as a service, today announced that Sophos Managed Detection and Response (MDR) successfully reported malicious activity across all 10 MITRE ATT&CK® steps in the first-ever independent MITRE Engenuity ATT&CK® Evaluation for security service providers. Sophos MDR was evaluated with 15 vendors, excelling in its ability to detect sophisticated threats with speed and precision.

“The complexity and sophistication of today’s cyberthreats make it increasingly difficult for most organizations to manage it effectively on their own, and the need for managed security service partners that can not only proactively and in real-time detect threats but also respond to them on their behalf is critical,” said Mat Gangwer, vice president of operations for Sophos MDR. “MITRE Engenuity is fulfilling a vital industry need for threat-informed evaluation methodologies and publicly available results that enable organizations’ security leaders to assess managed services providers with transparency to ensure trust and alignment. Vendor participation is essential, as the only way we can improve industry defenses is in doing so collectively."

The MITRE Engenuity ATT&CK Evaluation for security service providers evaluated Sophos MDR and other vendors’ abilities to detect and analyze attack tactics and techniques simulating those used by OilRig, an Iranian government-affiliated threat actor – also known as APT34 and Helix Kitten. OilRig relies on social engineering, stolen credentials and supply chain attacks to target organizations across critical infrastructure, government, financial services, and other industries, and was chosen as the evaluation threat actor based on its evasion and persistence techniques, complexity and relevancy to industry. Unlike MITRE Engenuity’s ATT&CK Evaluations for Enterprise, which follow an open book methodology where participating vendors know in advance the adversary being emulated, the managed services evaluation did not disclose the adversary group or the technique scope.

More than 12,600 organizations rely on Sophos MDR for 24/7 threat hunting, detection and response delivered by an expert team as a fully-managed service. The recently expanded service now provides compatibility with third-party security technologies, integrating telemetry from endpoint, firewall, cloud, identity, email, and other vendor’s security solutions as part of the Sophos Adaptive Cybersecurity Ecosystem.

Sobre a Sophos

A Sophos é líder global e inovadora de soluções avançadas de segurança para derrotar ataques cibernéticos. A empresa adquiriu a Secureworks em Fevereiro de 2025, reunindo dois pioneiros que redefiniram o setor de segurança cibernética com seus serviços, tecnologias e produtos inovadores e otimizados por IA. A Sophos é agora o maior provedor de deteção e resposta gerenciada (MDR) puro, oferecendo suporte a mais de 28 000 organizações. Além dos MDR e outros serviços, o portfólio completo da Sophos inclui endpoint líder do setor Provedores de serviços de segurança gerenciados (MSSPs) em todo o mundo, defendendo mais de 600 000 organizações em todo o mundo contra phishing, ransomware, roubo de dados, outros todos os dias e crimes cibernéticos patrocinados pelo estado. As soluções são alimentadas pela inteligência de ameaças histórica e em tempo real da Sophos X-Ops e da recém-adicionada Unidade de Ameaça Contadora (CTU). A Sophos tem sede em Oxford, Reino Unido. Mais informações estão disponíveis em www.sophos.com.