《ABI Research：硅在高级威胁检测中的关键作用（英文版）（8页）.pdf》由会员分享，可在线阅读，更多相关《ABI Research：硅在高级威胁检测中的关键作用（英文版）（8页）.pdf（8页珍藏版）》请在三个皮匠报告上搜索。

1、THE CRUCIAL ROLE OF SILICON IN ADVANCED THREAT DETECTIONTHREAT DETECTION:STATE OF PLAYWith returns increasingly lucrative and repercussions minimal,threat actors have much to gain from cyberattacks.Their level of sophistication is always improving,as they devise ever-more ingenious methods to evade

2、the latest cybersecurity solutions.Locked in a perpetual conflict with attackers,security vendors continuously seek ways to counter malicious events of an exceedingly complex nature.In the highly adversarial field of cybersecurity,nowhere is the battle more intense than in threat detection and respo

3、nse.Endpoint Detection and Response(EDR)is the technology that monitors devices through software agents in order to detect and respond to threats.Emerging from the gaps left by traditional endpoint protection solutions,EDR has proved a pivotal technology to counterattack evasion techniques.As EDR ex

4、tends into networks and the cloud(XDR)to block malicious advances,attackers are adopting innovative obfuscation techniques to evade EDR monitoring.CONTENTSThreat Detection:State of Play.1Going Deeper into the Silicon:True Defense in Depth.2Intel TDT.2Indicators of Compromise.3Indicators of Attack.4W

5、hy Should Enterprises Care about Intel TDT?.6Call to Action.7THE CRUCIAL ROLE OF SILICON IN ADVANCED THREAT DETECTIONBy Michela Menting,Research Director,ABI Research Commissioned by IntelTHE CRUCIAL ROLE OF SILICON IN ADVANCED THREAT DETECTIONAdvanced evasion techniques today are infiltrating place

6、s where EDR software agents have trouble going.Fileless malware attacks deploying into memory and Living off the Land(LOTL)attacks coopting whitelisted systems are proving difficult to detect in a timely manner.By replicating processes that tend to be used by system administrators and injecting them