Elastic Protects Against Ransomware and Linux Threats in MITRE Engenuity Round 4 Eval

In the latest MITRE Engenuity ATT&CK Evaluation Round 4, Elastic showcased its security capabilities, focusing on ransomware and data destruction threats. This annual evaluation by MITRE Engenuity assesses security vendors using adversary emulation based on the MITRE ATT&CK framework, with this year highlighting ransomware and Linux system threats. Elastic utilized its Security 7.16 version for the evaluation, achieving 90% visibility in threat detection, an improvement from the previous year's 80%. New features such as ransomware protection, memory threat protection, and malicious behavior detection were highlighted, complementing existing capabilities like malware detection and machine learning. While Elastic did not participate in the prevention tests, it emphasized the ease of configuring its system to prevent emulated attacks. The evaluation provides an opportunity for Elastic to demonstrate its product's effectiveness in real-world scenarios, reinforcing its commitment to democratizing security for users.