FireEye Endpoint Security Leads MITRE ATT&CK Evaluation

Scoring of MITRE ATT&CK Evaluation Determines FireEye Endpoint Security the Most Effective Endpoint Solution in a Simulation of Real-World Attacks by Chinese-Backed Adversary APT3


MILPITAS, Calif., Feb. 19, 2019 – FireEye, Inc. (NASDAQ: FEYE), the intelligence-led security company, today announced that FireEye® Endpoint Security has earned the leading position within the Adversarial Tactics, Techniques and Common Knowledge (ATT&CK) evaluation by the MITRE Corporation based on an independent third-party analyst’s public and transparent scoring methodology.

The MITRE Corporation is a federally-funded, non-profit research and development organization with a mission-driven team dedicated to solving problems for a safer world and runs the Common Vulnerabilities and Exposures (CVE) system. The ATT&CK framework is used as a foundation for the development of specific threat models, and methodologies in the private sector, government, and the broader cybersecurity community. It is widely used by both cyber security vendors and customers in building out security programs.

“The MITRE evaluation is a big step forward in security testing, by replicating real-world adversary behaviors using techniques based on APT3, a threat group supported by the Chinese government. Additionally, they are open and transparent with publicly available testing procedures and evaluation results to enable customers to compare vendor capabilities,” said Christopher Glyer, Chief Security Architect at FireEye. “Customers who drill into the results will see FireEye with the highest efficacy of all vendors across all techniques and procedures, with a strength in behavioral-based detections. The evaluation demonstrates how FireEye’s combination of intelligence, expertise and technology is the most effective way to defend against adversaries in the real world.”

FireEye Delivered the Highest Efficacy, and Most Behavior-Based Detections

Key highlights regarding FireEye Endpoint Security performance results, include:

  • The highest efficacy score: FireEye Endpoint Security had the highest efficacy score, 288, amongst all vendors tested across all techniques and procedures, based on an independent third-party analyst’s public and transparent scoring methodology
  • The most behavior-based detections: FireEye Endpoint Security had the most behavior-based detections of all tested vendors. Behavior-based detection identifies the exact nature of malicious activity and provides the context that analysts need to understand the threat.
  • FireEye Managed Defense, a detection and response service, showcased stellar advanced threat hunting, and detection capabilities. Using detailed investigative reports and rapid-response from FireEye Managed Defense, we provided the deepest context around the threat during the MITRE evaluation.

Additional third-party validation of FireEye Endpoint Security as an Approved Business Product from AV-Comparatives, and certification from Virus Bulletin, showcase FireEye Endpoint Security’s leading position in the market, and the company’s commitment to independent third-party testing.   

For a detailed technical blog around FireEye’s MITRE evaluation, please visit:

For more details on FireEye Endpoint Security, including a 30-day trial, please visit

For more details on FireEye Managed Defense, please visit

For more details from MITRE on FireEye Endpoint Security’s results, please visit

About FireEye, Inc.

FireEye is the intelligence-led security company. Working as a seamless, scalable extension of customer security operations, FireEye offers a single platform that blends innovative security technologies, nation-state grade threat intelligence, and world-renowned Mandiant® consulting. With this approach, FireEye eliminates the complexity and burden of cyber security for organizations struggling to prepare for, prevent, and respond to cyber-attacks. FireEye has over 7,700 customers across 67 countries, including more than 50 percent of the Forbes Global 2000.

© 2019 FireEye, Inc. All rights reserved. FireEye and Mandiant are registered trademarks or trademarks of FireEye, Inc. in the United States and other countries. All other brands, products, or service names are or may be trademarks or service marks of their respective owners.


Dan Wire 
FireEye, Inc. 
[email protected] 

Kate Patterson
FireEye, Inc.
[email protected]