Since 2013, Red Canary has delivered high-quality threat detection to organizations of all sizes. Our platform collects hundreds of terabytes of endpoint telemetry every day, surfacing evidence of threats that are analyzed by our Cyber Incident Response Team (CIRT). Confirmed threats are tied to corresponding ATT&CK techniques so that our customers clearly understand what is happening in their environments. This report is a summary of confirmed threats derived from this data.
The report excludes low-severity detection of unwanted software, such as adware. We’ve tagged each confirmed threat with corresponding ATT&CK technique(s) based on the logic used to identify the threat.