Searching for smart, safe news you can TRUST?

Support safe, smart, REAL journalism. Sign up for our Axios AM & PM newsletters and get smarter, faster.

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Searching for smart, safe news you can TRUST?

Support safe, smart, REAL journalism. Sign up for our Axios AM & PM newsletters and get smarter, faster.

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Denver news in your inbox

Catch up on the most important stories affecting your hometown with Axios Denver

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Des Moines news in your inbox

Catch up on the most important stories affecting your hometown with Axios Des Moines

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Minneapolis-St. Paul news in your inbox

Catch up on the most important stories affecting your hometown with Axios Minneapolis-St. Paul

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Tampa-St. Petersburg news in your inbox

Catch up on the most important stories affecting your hometown with Axios Tampa-St. Petersburg

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Terracotta soldiers guard the mausoleum of Emperor Qin Shi Huang. Photo: Pete Saloutos/Getty Images

When it comes to cybersecurity research, the not-for-profit lab MITRE has traditionally maintained neutrality toward commercial products. But last week, it released its first security product evaluations. Here's why and how MITRE made the leap into what might at first sound like Yelp territory (but really isn't).

Why it matters: MITRE is best known for its role in assisting the government in public/private partnerships. In cybersecurity, until now, a lot of its high-profile work was more as an archivist than an active defender.

  • That's not meant as a dig. One of their key projects, the ATT&CK framework, is an important database of prominent hacking groups' techniques across a broad spectrum of categories.

What MITRE released last week were the results of simulated attacks from the believed-to-be-Chinese espionage group known as Gothic Panda or APT3 using the information collected for that ATT&CK framework. MITRE plans this release of product evaluations to be the first of many, with other tests gauging products against other attackers.

Yes, but: "We're not Consumer Reports," said Frank Duff, lead engineer for the evaluations program.

  • MITRE isn't providing head-to-head comparisons of products or ranked lists. There are no best buys.
  • The primary goal, at least to MITRE, is to encourage product improvement.
  • But MITRE also expects potential buyers will use the results and vendors will view the process as, in part, a marketing exercise.
  • "It can serve all of those purposes," said Duff.

Techniques, not malware: Before the MITRE tests were announced, there were already a lot of places for antivirus companies to test whether they could detect malicious programs that hackers installed on a system. But as CrowdStrike's Scott Taschler, director of product marketing, noted, "When it comes to advanced, targeted attacks, malware is only a part of the problem." A hacker might not use any malware, and security products still need to be tested on how they respond to those attacks.

Vendors paid for their tests, with the first cohort including Carbon Black, CounterTack, CrowdStrike, Endgame, Microsoft, RSA and SentinelOne.

  • No product weeds out the simulated attacker at every technique and tactic — and that's largely by design. Products focus on specific subsections of security, and most companies being targeted by spies have more than one product running at a time.
  • But the testing does show specifically where products could adapt to discover an attacker at different points. And that's important: As hackers upgrade their tools or learn new techniques, they can evade some previously effective defenses.

The bottom line: Scott Lundgren, chief technology officer at Carbon Black, said, "If the community rises up and documents and positions their security posture with ATT&CK in mind, we are all raising the bar and making it more expensive for adversaries to operate."

Go deeper

Wall Street braces for more turbulence ahead of Election Day

Illustration: Eniola Odetunde/Axios

Wall Street is digging in for a potentially rocky period as Election Day gets closer.

Why it matters: Investors are facing a "three-headed monster," Brian Belski, chief investment strategist at BMO Capital Markets, tells Axios — a worsening pandemic, an economic stimulus package in limbo, and an imminent election.

Dave Lawler, author of World
3 hours ago - World

How Biden might tackle the Iran deal

Photo illustration: Aïda Amer/Axios. Photo: Drew Angerer/Getty Images

Four more years of President Trump would almost certainly kill the Iran nuclear deal — but the election of Joe Biden wouldn’t necessarily save it.

The big picture: Rescuing the 2015 Joint Comprehensive Plan of Action (JCPOA) is near the top of Biden's foreign policy priority list. He says he'd re-enter the deal once Iran returns to compliance, and use it as the basis on which to negotiate a broader and longer-lasting deal with Iran.

Kamala Harris, the new left's insider

Photo illustration: Eniola Odetunde/Axios. Photo: Joe Buglewicz/Getty Images     

Progressive leaders see Sen. Kamala Harris, if she's elected vice president, as their conduit to a post-Biden Democratic Party where the power will be in younger, more diverse and more liberal hands.

  • Why it matters: The party's rising left sees Harris as the best hope for penetrating Joe Biden's older, largely white inner circle.

If Biden wins, Harris will become the first woman, first Black American and first Indian American to serve as a U.S. vice president — and would instantly be seen as the first in line for the presidency should Biden decide against seeking a second term.

Get Axios AM in your inbox

Catch up on coronavirus stories and special reports, curated by Mike Allen everyday

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!