Kaspersky has expanded its OpenTIP with a new section showcasing the MITRE ATT&CK® coverage map for Kaspersky enterprise products – including SIEM, EDR, NDR and Sandbox solutions. This update enables businesses to better understand how Kaspersky’s solutions work together to protect against real-world adversarial techniques.
The coverage map is based on Kaspersky’s proprietary methodology, which assesses both the depth and width of MITRE ATT&CK® technique coverage. It evaluates each product’s technological capabilities to detect specific techniques, as well as the number and complexity of existing detection rules. By doing so, it provides a clear and transparent view of how effectively various Kaspersky solutions address different stages of an attack.
This unique visualization makes it easy to explore the coverage of a particular technique across multiple Kaspersky enterprise products. Each technique includes an eight-level depth indicator, showing the maturity of detection rules and the strength of the product’s detection capabilities. As a result, organizations can see which products are required to cover particular tactics and techniques and how these solutions complement each other to form a cohesive defense.
The new map also helps answer practical questions faced by every cybersecurity leader: Which solution is most effective against specific TTPs (tactics, techniques and procedures)? Why multiple products may be necessary for full coverage? And what should be prioritized to protect against the most critical attacks targeting their organization?
When combined with the Threat Landscape available in Kaspersky’s Threat Intelligence Portal, the coverage map delivers a dynamic, contextualized view of the most relevant threats for each company. Taking into account the organization’s industry, geography and infrastructure, the Threat Landscape highlights which techniques are being exploited by real attackers – and, in turn, which Kaspersky products can mitigate them. This integration transforms data into actionable insight, empowering defenders to make informed, strategic decisions.
Kaspersky’s calculation and visualization methodology stands out from competitors. It represents a piece of the company’s publicly available know-how, offering an open and transparent approach that customers can even use to assess other vendors’ solutions.
“We designed this release to help security teams make faster, data-driven decisions,” said Nikita Nazarov, Head of Threat Exploration at Kaspersky. “Our goal was to bring transparency and simplicity to one of the most complex topics in cybersecurity – understanding real coverage against real threats. With this new feature, enterprises can see exactly how our products protect against adversarial behavior mapped to MITRE ATT&CK®, and identify what’s missing before attackers do.”
The new MITRE ATT&CK® coverage map is available now on OpenTIP. To explore your personalized Threat Landscape, request free access via the Threat Intelligence Portal.
