AV-Comparatives Business Security Test March-April 2023 – Factsheet

Disclaimer

  1. This test shows how an antivirus behaves with certain threats, in a specific environment and under certain conditions.
    We encourage you to compare these results with others and take informed decisions on what security products to use.
    Before buying an antivirus you should consider factors such as price, ease of use, compatibility, and support. Installing a free trial version allows an antivirus to be tested in everyday use before purchase.

Gandalf_The_Grey

Gandalf_The_Grey

Level 76
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Apr 24, 2016
6,566
This is a short fact sheet for our Business Main-Test Series, containing the results of the Business Malware Protection Test (March) and Business Real-World Protection Test (March-April). The full report, including the Performance Test and product reviews, will be released in July.

To be certified in July 2023 as an “Approved Business Product” by AV-Comparatives, the tested products must score at least 90% in the Malware Protection Test, with zero false alarms on common business software, and an FP rate on non-business files below the Remarkably High threshold. Additionally, products must score at least 90% in the overall Real-World Protection Test (i.e. over the course of four months), with less than fifty false alarms on any clean software/websites, and zero false alarms on common business software. Tested products must also avoid major performance issues (impact score must be below 40) and have fixed all reported bugs in order to gain certification.

Please note that the results of the Business Main-Test Series cannot be compared with the results of the Consumer Main-Test Series, as the tests are done at different times, with different sets, different settings, etc.
Click to expand...
Tested Products

The following products were tested under Windows 10 64-bit and are included in this factsheet:
1684175283586.png
Click to expand...
Settings

Bitdefender: “Sandbox Analyzer” (for Applications and Documents) enabled. “Analysis mode” set to “Monitoring”. “Scan SSL” enabled for HTTP and RDP. “HyperDetect” and “Device Control” disabled. “Update ring” changed to “Fast ring”. “Web Traffic Scan” and “Email Traffic Scan” enabled for Incoming emails (POP3). “Ransomware Mitigation” enabled. “Process memory Scan” for “On-Access scanning” enabled. All “AMSI Command-Line Scanner” settings enabled for “Fileless Attack Protection”.

Cisco: “On Execute File and Process Scan” set to Active; “Exploit Prevention: Script Control” set to “Block”; “TETRA Deep Scan File” disabled; “Exclusions” set to “Microsoft Windows Default”; Engines “ETHIS”, “ETHOS”, “SPERO” and “Step-Up” disabled. “MaxScanFileSize” increased to 500 MB.

CrowdStrike: everything enabled and set to maximum, i.e. “Extra Aggressive”. “On-demand Scans” and Uploading of “Unknown Detection-Related Executables” and “Unknown Executables” disabled.

Cybereason: “Anti-Malware” enabled; “Signatures mode” set to “Quarantine”; “Artificial intelligence” set to “Moderate”; “Fileless protection” enabled and set to “Prevent”; Update interval set to 1 minute.

Elastic: MalwareScore (“windows.advanced.malware.threshold”) set to “aggressive”, and Rollback-SelfHealing (“windows.advanced.alerts.rollback.self_healing.enabled”) enabled. “Credential hardening” enabled.

ESET: All “Real-Time & Machine Learning Protection” settings set to “Aggressive”.

G Data: “BEAST Behavior Monitoring” set to “Halt program and move to quarantine”. “BEST Automatic Whitelisting” deactivated. “G DATA WebProtection” add-on for Google Chrome installed and activated. “Malware Information Initiative” enabled.

Kaspersky: “Adaptive Anomaly Control” disabled; “Detect other software that can be used by criminals to damage your computer or personal data” enabled;

Microsoft: “CloudExtendedTimeOut” set to 55; “PuaMode” enabled.

Sophos: “Threat Graph creation”, “Web Control” and “Event logging” disabled.

Trellix: “Web Control” add-on for Google Chrome enabled. “Firewall” and “Exploit Prevention” disabled.

VIPRE: “IDS” enabled and set to “Block With Notify”. “Firewall” enabled.

VMware: policy set to “Advanced”.

Avast, K7, WatchGuard: default settings.
Click to expand...
Test Results

Real-World Protection Test (March-April)
1684175476865.png

Malware Protection Test (March)
1684175552114.png
Click to expand...
www.av-comparatives.org

Business Security Test March-April 2023 - Factsheet

The Business Security Test March-April 2023 - Factsheet covering results of our Enterprise main-test series has been released.
www.av-comparatives.org www.av-comparatives.org
 
  • Like
  • +Reputation
Reactions: MindaugasJ, SeriousHoax, roger_m and 9 others
Trident

Trident

Level 28
Verified
Top Poster
Well-known
Feb 7, 2023
1,711
Trellix with the phenomenal protection result is Trellix ENS which is the ex-FireEye and not McAfee. Trellix ENS still uses the Bitdefender engine. On AV-Test, it is Endpoint Security, which is McAfee. It’s a bit confusing.

www.av-test.org

Test Trellix Endpoint Security 10.7 for Windows 10 (232120)

The current test Trellix Endpoint Security 10.7 for Windows 10 (232120) from February 2023 of AV-TEST, the leading international and independent service provider for antivirus software and malware.
www.av-test.org www.av-test.org
 
  • Like
  • Wow
Reactions: MindaugasJ, SeriousHoax, roger_m and 3 others

Similar threads

Gandalf_The_Grey
    • Like
    • +Reputation
AV-Comparatives Business Security Test 2023 (March – June)
Replies
10
Views
1,059
Security Statistics and Reports
Kongo
Kongo
Gandalf_The_Grey
    • Like
AV-Comparatives Advanced Threat Protection Test 2023 – Consumer
Replies
0
Views
446
Security Statistics and Reports
Gandalf_The_Grey
Gandalf_The_Grey
Gandalf_The_Grey
    • Like
AV-Comparatives Advanced Threat Protection Test 2023 – Enterprise
Replies
0
Views
615
Security Statistics and Reports
Gandalf_The_Grey
Gandalf_The_Grey

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top