Jane Edwards
Mitre will assess cybersecurity platforms based on techniques used by a threat group called APT29 through the ATT&CK Evaluations program.
The program uses ATT&CK, a knowledge base of threat actors’ tactics and techniques based on published vulnerability reports and observations, Mitre said Wednesday.
“ATT&CK Evaluations can help users understand a cybersecurity product’s true product capabilities and how to use them,” said Frank Duff, lead engineer for Mitre’s evaluations program. “They’re also driving vendors to improve the capabilities of those products.”
Cyber analysts said the adversary group, also known as The Dukes and Cozy Bear, functions on behalf of the Russian government and was previously linked to a breach within the Democratic National Committee.
Mitre set up a website for vendors seeking to have their cybersecurity products evaluated through the program.
