MRG Effitas 360 Assessment & Certification Q2 2016

[Terry Ganzi]

https://www.mrg-effitas.com/wp-content/uploads/2016/08/MRG-Effitas-360-Assessment-Q2-2016.pdf

• 16 applications tested
• 401 In-the-Wild malware samples used
• Operating System: Windows 10 x64
• Browser: Edge
• Real World scenario with no user initiated threat neutralization

 

[amz]

Windows Defender improved a lot.

 

[Terry Ganzi]

That surprise me it did better than most of the top products. Have to keep an eye on Windows Defender in windows 10.
Kaspersky is having a dam good season.

 

[CMLew]

The results highlight one important thing to me: all AV/AM products are not without flaws.

The solutions: GO NON-AV/AM

 

[Der.Reisende]

Emsisoft is missing out, that's a pity, would love to see their results.

Thank you for sharing @Terry Ganzi, interesting to see confirmed what @CMLew already said - everything is breakable.

 

[Lord Ami]

Thanks for sharing. I'm always amazed on how Kaspersky performs on our Malware test forum. It has been best product as far as I am aware.

 

[Solarquest]

Thanks for sharing.
I think it's very interesting the BB detection of AVs...only few apparently increased the overall detection with their behavior blocker.

 

[hjlbx]

The thing that I notice is that Windows Defender actually performs rather well; it is now offering solid baseline protection.

 

[DJ Panda]

Just out of curiosity why are people saying Windows Defender did great? The test results said it failed. Really disappointed in the quality of Malwarebytes.

 

[CMLew]

Just out of curiosity why are people saying Windows Defender did great? The test results said it failed. Really disappointed in the quality of Malwarebytes.

Many people in this forum still trust ESET, Bitdefender or Zemana when they all failed. Those are very reputable company producing great security software. Which is why I for one starts to not believing these kind of test. The real test is the one that is in your system. If it protects, it passed. If it doesn't, then failed.

 

[kiric96]

Many people in this forum still trust ESET, Bitdefender or Zemana when they all failed. Those are very reputable company producing great security software. Which is why I for one starts to not believing these kind of test. The real test is the one that is in your system. If it protects, it passed. If it doesn't, then failed.

yes, that is true, besides the chances that you get infected from a ransom via an ad campaign decreases if you are using an adblocker, with this i am trying to say that people normally doesnt rely on normal AV, they implement other sort of security to protect themself. The other fact is that we have no idea how they tested each product, i mean the quality of the samples, url or etc, like for example a simple .JS will be used for a ransom campaign but its functionality will vanish as the download server may be healed (it normal life is just hours) so..

 

[tonibalas]

Many people in this forum still trust ESET, Bitdefender or Zemana when they all failed

From my point of view a detection/protection of near 95% isn't a fail.
Windows Defender score about that and i think it did good.
Of course always we want the perfect score but is hard to find

 

[Evjl's Rain]

Can anyone explain what "block in 24 hours" mean? Is that The AV first doesn't detect the malware but 24 hrs later, it would be blocked? What if we get infected by ransomwares in case, we're screwed because AV cannot recover the encrypted files?

 

[Lord Ami]

Can anyone explain what "block in 24 hours" mean? Is that The AV first doesn't detect the malware but 24 hrs later, it would be blocked? What if we get infected by ransomwares in case, we're screwed because AV cannot recover the encrypted files?

It means that the file was detected by AV in 24 hour period. It's actually pretty much how Webroot works - it will let some 0-days execute, but it monitors them for rollback purposes. Once file is considered malicious, computer is restored to previous state (before malware).

It can also restore crypto malware files:
https://malwaretips.com/threads/ransomware-3.63231/#post-541535

However, it's far from perfect/does not work with all malware.