Tel Aviv Stock Exchange has deployed the CardinalOps platform to identify and remediate missing, broken, and noisy detections, enabling a proactive, threat-informed defense tied to the risks most relevant to them.

The CardinalOps security research team collaborates with MITRE to strengthen ATT&CK, describing new ways in which adversary groups like LAPSUS$ hijack corporate email systems such as Office 365, Microsoft Exchange, and Google Workspace.

CardinalOps contributes to the latest version of MITRE ATT&CK, providing recommended detections in the native query languages for Splunk, Microsoft Sentinel, IBM QRadar and Sumo Logic, to combat cyber adversaries abusing email rules during attacks.

Ransomware threat actors target energy companies due to significant profits and a high number of remote access connections that can be exploited via weak or stolen credentials or VPN vulnerabilities.

CardinalOps CEO on How Detection Posture Management Finds, Remediates Security Gaps SOCs are facing increased challenges due to the ever-growing complexity of infrastructure and technology, which expands the attack surface. CardinalOps CEO Michael Mumcuoglu said

Enables detection-in-depth by enumerating how many layers in your attack surface (endpoint, network, cloud, email, IAM, etc.) are covered for a given technique.

Enables enterprises to operationalize ATT&CK and build a multi-layered, threat-informed defense to eliminate gaps based on organizational risk and priorities.

New coverage metrics help justify security budgets to leadership and drive continuous improvement in security operations

Other winners include Palo Alto Networks, Imperva, Dragos, AttackIQ, and Cymulate.

Recognized for innovative Detection Posture Management platform leveraging automation and MITRE ATT&CK to eliminate coverage gaps in the SOC.

Multipurpose malware is more effective because it can execute multiple stages of the MITRE ATT&CK kill chain.