App Review Malwarebytes Anti-Malware Premium Re-Test

It is advised to take all reviews with a grain of salt. In extreme cases some reviews use dramatization for entertainment purposes.
Content created by
Shadowra
Not critisizing your tests, but MBAM always gets a negative review,

When I look MBAM up in Gartner reports (the consultancy agency where everyone looks at in IT, to get the holy grail being rated into the magic quadrant which tells potential customers that a company has an excellent vision and matching capabilities to implement their vision), MBAM does well, it is just behind the champions of the SME market (Sophos, Crowdstrike, Eset and Bitdefender) in user reviews (real world experience of clients).

View attachment 297890


When MBAM is so bad as shown in your tests, at least some companies would have awarded them a 1 star? Their consumer products also do well in tests of independent testing organizations. Experts claim (not my words or evaluation of your tests, because I always like to watch them) that the often used gangbang video test method, does not reflect real world infection scenario's.
Thanks for bringing the distinction between Enterprise Telemetry vs Sandbox Theatre.

Professional tests have a proper methodology and they test different products concurrently in a special setup to precisely monitor and rate the security products performance.

I assure you that 99% of testers on YouTube and elsewhere have no idea what the malware pack includes nor what each sample does to the system.

Edit:

Test on YouTube and here on MT offer zero code auditing. Instead they blindly run 10s of samples.

Edit 2:

Personally I trust the AMTSO-certified AVLab and how it conducts tests. In their tests, MB is a top-performer.
 
Last edited:
  • Like
Reactions: Nightwalker
And again here, if MB scored 10/10 in web protection. How did FatalRat end up on the desktop? Did it teleport? What was the initial access vector?

Your test admits that MB web protection works perfectly and thus it admits that in a real-world scenario those 126 would have never made their way to the desktop.

But did you see the video?
FatalRat comes from an execution...
Please be serious...
 
But did you see the video?
FatalRat comes from an execution...
Please be serious...
1- For a binary like FatalRAT to execute, it must first exist on the disk. For it to exist on the disk, it must pass through a vector (typically a web download, browser exploit, or phishing link).

2-If Malwarebytes achieves a perfect 10/10 on Web Protection, it means the infection pipeline is completely severed at the perimeter. The user never reaches the stage where they have a file to double-click (execute), but on your test, and other tests in YouTube, the samples magically appear on the desktop, breaking the chain of initial access.

3- By manually placing a folder of raw, extracted samples onto the desktop and saying "look, it executed," You are NOT testing an attack chain. You are testing a fictional scenario where a user somehow bypasses a perfect web barrier, suppresses every security warning, extracts an unauthorized ZIP file, and executes it.
 
  • HaHa
Reactions: Khushal