Complex, multi-staged ransomware attacks are top of mind for organizations across all industries.
VMware vDefend Advanced Threat Prevention has won the AAA award from SE labs in the Advanced Security test, confirming its excellent capabilities in detecting these advanced threats.
We are very happy to announce that SE Labs has awarded VMware vDefend Advanced Threat Prevention (ATP) the AAA rating in Advanced Security testing.
According to the report, “VMware vDefend Advanced Threat Prevention was tested against a range of hacking attacks designed to compromise systems and penetrate target networks in the same way as criminals and other attackers breach systems and networks. VMware vDefend ATP posted excellent results, detecting every targeted attack.”
The solution was put through a series of real-world attack scenarios aligned with Advanced Persistent Threat (APT) groups like Wizard Spider, Sandworm and Dragonfly/Dragonfly 2.0.
The fact that SE labs awarded vDefend Advanced Threat Prevention with it’s best possible AAA rating in this real world test, illustrates the strength of the real-world detection and correlation capabilities of the solution.
Real-World Protection against fully featured attacks
Attackers often move from one system to another searching for the most valuable assets. The distributed nature of VMware vDefend, with detection and prevention controls applied at the network interface of every workload enables organizations to spot and stop attackers wherever and whenever they may act, without needing to deploy sensors or re-architecting the network. Along with the AAA rating, VMware vDefend Advanced Threat Prevention achieved an impressive 97% Total Accuracy Rating in the SE Labs test, detecting every targeted attack and tracking almost all hostile activities that occurred during the attacks.
SE Labs adopted a rigorous testing methodology by executing comprehensive attacks that closely replicated the tactics employed by real-world cybercriminals. The testing process utilized a diverse array of tools and techniques to breach target systems, simulating complete attack chains to assess the product’s effectiveness. Each phase of the attack, from initial compromise to potential data theft or system disruption, was meticulously executed and monitored to ensure thorough evaluation. SE Labs references the MITRE ATT&CK framework to showcase how the various TTPs (Tactics, Techniques and Procedures) leverage in each attack map to the vDefend controls.
VMware vDefend is uniquely capable of protecting against complex multi-staged attacks through:
- Prevention of Lateral movement: By segmenting the network into smaller zones without network changes or hair-pinning, vDefend Firewall minimizes the attack surface and prevents attackers from moving laterally within the environment.
- Elimination of Visibility gaps: VMware vDefend Security Intelligence along with the rest of the vDefend stack is fully integrated with VMware Cloud Foundation and provides complete East-to-West visibility across workloads, applications and network traffic without the need to deploy any sensors or taps.
- Detecting Threats Everywhere: VMware vDefend ATP leverages behavioral analytics as well as signature-based detection to detect known and unknown attack techniques, wherever these may occur. Controls are applied in the “Goldilocks zone”, directly at the network interface of a workload, providing network-architecture independent protection with rich context and without needing “yet another” endpoint agent.
- Powered by AI: During SE Labs’ testing, the VMware vDefend platform achieved a very high degree of accuracy with virtually no false positives, reducing alert-overhead. Furthermore, vDefend ATP leverages AI and ML to correlate individual signals from IDPS, Malware Detection and Anomaly detection into prioritized and actionable campaigns, making it far easier for security teams to focus on the incidents that matter and ignore the noise. With Intelligent Assist for VMware vDefend, we provide infrastructure and security teams with a Gen-AI powered co-pilot to further accelerate the time-to-insight and resolution.
Learn More
Please find the full report here.
If you want to learn more about how vDefend achieved the AAA-rating from SE labs, please join the founder and CEO of SE labs – Simon Edwards and us on March 20th at 10:00 AM PST for our vDefend Webinar “A Look Inside VMware vDefend’s Test Against Full-Featured Attacks by SE labs®” : https://go-vmware.broadcom.com/vDefend-Webinar-Series.
Additional VMware vDefend ATP information can be found here.
