AV-Comparatives Business Security Test 2021 (March – June)

Disclaimer

  1. This test shows how an antivirus behaves with certain threats, in a specific environment and under certain conditions.
    We encourage you to compare these results with others and take informed decisions on what security products to use.
    Before buying an antivirus you should consider factors such as price, ease of use, compatibility, and support. Installing a free trial version allows an antivirus to be tested in everyday use before purchase.

Gandalf_The_Grey

Gandalf_The_Grey

Level 83
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Apr 24, 2016
7,231
Introduction
his is the first half-year report of our Business Main-Test Series of 2021, containing the results of the Business Real-World Protection Test (March-June), Business Malware Protection Test (March), Business Performance Test (June), as well as the Product Reviews.

Please note that the results of the Business Main-Test Series cannot be compared with the results of the Consumer Main-Test Series, as the tests are done at different times, with different sets, different settings, etc.
Click to expand...
Test Procedure
The test series consists of three main parts:

The Real-World Protection Test mimics online malware attacks that a typical business user might encounter when surfing the Internet.

The Malware Protection Test considers a scenario in which the malware pre-exists on the disk or enters the test system via e.g. the local area network or removable device, rather than directly from the Internet.

In addition to each of the protection tests, a False-Positives Test is conducted, to check whether any products falsely identify legitimate software as harmful.

The Performance Test looks at the impact each product has on the system’s performance, i.e. how much it slows down normal use of the PC while performing certain tasks.

To complete the picture of each product’s capabilities, there is a user-interface review included in the report as well.
Click to expand...
Real-World Protection Test (March-June)
Schermafbeelding 2021-07-16 133124.png

The results below are based on a test set consisting of 759 test cases (such as malicious URLs), tested from the beginning of March 2021 till the end of June 2021.
CrowdStrike, Panda, Fortinet, Malwarebytes and Cybereason had above-average numbers of FPs (on non-business software) in the Real-World Protection Test. Cisco had one false positive on common business software.
Click to expand...
Malware Protection Test (March)
Schermafbeelding 2021-07-16 133212.png

Schermafbeelding 2021-07-16 134239.png
Click to expand...
Performance Test (May – June)
Summarized results
Users should weight the various subtests according to their needs. We applied a scoring system to sum up the various results. Please note that for the File Copying and Launching Applications subtests, we noted separately the results for the first run and for subsequent runs. For the AV-C score, we took the rounded mean values of first and subsequent runs for File Copying, whilst for Launching Applications we considered only the subsequent runs. “Very fast” gets 15 points, “fast” gets 10 points, “mediocre” gets 5 points and “slow” gets 0 points. This leads to the following results:
Schermafbeelding 2021-07-16 133324.png
Click to expand...
www.av-comparatives.org

Business Security Test 2021 (March - June)

The first half-year report of our Enterprise main-test series containing a Real-World Protection, Malware Protection and Performance Test has been released. Also product reviews are included. Read the report for details.
www.av-comparatives.org www.av-comparatives.org
 
Last edited:
  • Like
  • +Reputation
  • Thanks
Reactions: Venustus, Andy Ful, CyberTech and 6 others
Gandalf_The_Grey

Gandalf_The_Grey

Level 83
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Apr 24, 2016
7,231
SeriousHoax said:
Check the first chart as an example. They are out of place. The UserDependent section is actually the Blocked section. Like this, every chart is not in its correct place.
BlockedUserdependentCompromised
Click to expand...
Ah, I see, thanks, difficulties with copy pasting...
I will make some screenshots, that will work better (y)
 
  • Like
  • Thanks
  • +Reputation
Reactions: Venustus, plat, [correlate] and 3 others
Andy Ful

Andy Ful

From Hard_Configurator Tools
Verified
Honorary Member
Top Poster
Developer
Well-known
Dec 23, 2014
8,477
The last 6 AV-Comparatives Business tests (including the March-June 2021) for popular AVs:

Real-World (1207+732+844+767+801+759 samples)

------------------------ Missed samples-----------------
Bitdefender.......0+0+0+4+2+1.........=7
Panda................5+4+0+0+1+1.........=11
Kaspersky.........3+0+4+1+1+3.........=12
VIPRE................3+1+4+4+2+1.........=15
Microsoft.......(10)+(2)+(7)+2+2+2..=15.5
Avast.............4+4+12+1+1+(1)3........=25.5
ESET.................13+8+4+3+2+6.........=36
Sophos........?+2+4+4+14+(2)16........=*49 (first scoring averaged)


Malware Protection (1556+1311+1278+1192+1603+1008 samples)

------------------------ Missed samples -----------------
Avast................0+1+0+2+0+0........=3
Bitdefender......0+1+3+1+2+0........=7
Microsoft.........2+7+1+0+0+4........=14
Panda.............2+1+1+1+13+1.......=19
VIPRE.............0+10+4+2+6+1.......=23
Sophos............?+1+3+7+5+4........=*24 (first scoring averaged)
Kaspersky.......3+13+8+6+5+4.......=39
ESET...............2+20+9+1+2+7.......=41

Avast Business Antivirus Pro Plus 20.10 21.2
Bitdefender GravityZone Elite 6.6 6.6
ESET PROTECT Entry with ESET PROTECT Cloud 8.0 8.0
Kaspersky Endpoint Security for Business – Select, with KSC 11.5 11.5
Microsoft Defender & Microsoft Endpoint Manager 4.18 4.18 + Windows Defender Browser Protection
Panda Endpoint Protection Plus on Aether 8.0 8.0
Sophos Intercept X Advanced 10.8 10.8
Vipre Endpoint Cloud 12.0 12.0

Many AVs have used tweaked settings - here are the settings used in the March-June 2021:

Bitdefender: “Fileless Attack Protection”, “Sandbox Analyzer” (for Applications and Documents) and “Scan SSL” enabled. “Encryption” and “Patch Management” add-ons registered and enabled. “HyperDetect” and “Device Sensor” disabled. “Update ring” changed to “Fast ring”. “Web Traffic Scan” enabled for HTTP Web traffic and Incoming POP3 emails.

ESET: All “Real-Time & Machine Learning Protection” settings set to “Aggressive”.

Microsoft: Google Chrome extension “Windows Defender Browser Protection” installed and enabled; “CloudBlockLevel” set to “High”.

Sophos: “Threat Case creation” and “Web Control” disabled.

Vipre: “DNS Traffic Filtering” and “Malicious URL Blocking for HTTPS Traffic” enabled. “Firewall” and “IDS” enabled and set to “Block With Notify”.

Avast, Kaspersky, Panda: default settings.


Edit.
The Malware Protection tests are less important because most of the attacks in the wild that include these samples are already prevented by AVs before the sample could be executed (network protection + web protection + email protection, etc).
 
Last edited:
  • Like
  • +Reputation
  • Thanks
Reactions: Venustus, KonradPL, vaccineboy and 9 others

Similar threads

Gandalf_The_Grey
    • Like
    • Thanks
    • +Reputation
AV-Comparatives Consumer Malware Protection Test September 2024
Replies
2
Views
518
Security Statistics and Reports
Sorrento
Sorrento
Gandalf_The_Grey
    • Like
    • +Reputation
AV-Comparatives Business Security Test 2023 (March – June)
Replies
10
Views
1,350
Security Statistics and Reports
Kongo
Kongo
Spartan
    • Like
AV-Comparatives AV-Comparatives Real-World Protection Test: FEB-MAR 2024
Replies
7
Views
1,757
Security Statistics and Reports
Trident
Trident

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top