New in 2021.10: Introducing MITRE ATT&CK malware behavior patterns

Emsi
October 4, 2021
2 min read

New support for MITRE ATT&CK behavior patterns

MITRE ATT&CK is a public knowledge base of adversary tactics and techniques. It allows standardized classification of malware behavior patterns. More information here.

The new Incidents panel in MyEmsisoft now provides information on which behavior patterns are used by alerted threats. While not all MITRE ATT&CK patterns apply to endpoints, many do. With this month’s release, we are adding an initial set of 7 supported malware tactics. Over the next few months, we plan to add support for more than 100 of them to cover the entire spectrum of endpoint security-related threats.

When you open an Incident in your workspace you will see which MITRE ATT&CK tactics were found in the alerted process.

Please note that this feature is only available in Emsisoft Business Security and Emsisoft Enterprise Security plans. Compare editions.

All 2021.10 improvements in a nutshell

Device protection (desktop)

As of version 2021.10, we have ended support for operating systems older than Windows 10 and also ended support for non-64-bit systems. Installations on non-supported systems will stay on version 2021.9 and no longer receive software updates but will continue to receive malware detection updates until June 2022.
New UI customization feature to disable workspace management controls on devices.
Several minor tweaks and fixes.

Management console (web app)

New UI customization feature to disable workspace management controls on devices (via protection policies).
Several minor tweaks and fixes.

How to obtain the new version

As always, so long as you have auto-updates enabled in the software, you will receive the latest version automatically during your regularly scheduled updates, which are hourly by default.

Note to Enterprise users: If you have chosen to receive “Delayed” updates in the Update settings for your clients, they will receive the new software version no earlier than 30 days after the regular “Stable” availability. This gives you time to perform internal compatibility tests before a new version gets rolled out to your clients automatically.

Have a great and well-protected day!

Emsisoft Endpoint Protection: Award-Winning Security Made Simple

Experience effortless next-gen technology. Start Free Trial

Emsi

Emsisoft founder and managing director. In 1998 when I was 16, a so called 'friend' sent me a file via ICQ that unexpectedly opened my CD-ROM drive, which gave me a big scare. It marked the start of my journey to fight trojans and other malware. My story

New support for MITRE ATT&CK behavior patterns

All 2021.10 improvements in a nutshell

Device protection (desktop)

Management console (web app)

How to obtain the new version

Emsisoft Endpoint Protection: Award-Winning Security Made Simple

Emsi

What to read next

Emsisoft Achieves A+ Grade in January 2025 VB100 Test

New in 2025.2: Usability enhancements

Emsisoft excels in AVLab Cybersecurity Foundation’s latest Advanced In-The-Wild malware test

Newsletter