22 June 22, 08:43
Quote:Continue Reading
26 Security Solutions Undergo an Advanced Threat Protection Test Against Ransomware
In a test involving real attack scenarios, 26 protection solutions for consumer users and corporate users demonstrate their performance. In the series of Advanced Threat Protection tests, the lab investigates how successfully the products protect against ransomware. Each step of the malware attack is logged and evaluated, right through to an encryption. Many solutions do exactly what they promise: offer protection against ransomware. But not all solutions pass the test with flying colors.
Ransomware is without a doubt the plague of the 21st century. Media reports on partially or even fully successful attacks are virtually endless, and the truth behind them is underlined by the interesting Sophos study “The State of Ransomware 2022”. One of the first core statements made in the summary of the study is that “ransom attacks are more frequent – 66% of organizations surveyed were hit with ransomware in 2021, up from 37% in 2020”.
26 products in the Advanced Threat Protection test
The Advanced Threat Protection tests provide vendors and users with substantial findings as to how securely a product can protect against ransomware in real-life scenarios. 12 products for consumer users and 14 protection solutions for business users are subjected to the current test. The manufacturers of the products for consumer users are: Avast, AVG, Bitdefender, F-Secure, G DATA, K7 Computing, Kaspersky, Microsoft, Microworld, NortonLifeLock, PC Matic and VIPRE Security.
The solutions tested for business users are products from the following vendors: Acronis, Avast, Bitdefender (two versions), Comodo, F-Secure, G DATA, Kaspersky (two versions), Microsoft, Seqrite, Symantec, Trellix and VMware.
All the products have to successfully defend against ransomware in 10 real-life scenarios under Windows 10. The test involves threats such as files containing hidden malware in archives, PowerPoint files with scripts or HTML files with malicious content. The 10 charts on the “test scenarios” list the type of attack and each step taken to fend it off. The lab even specifies the definitions in MITRE ATT&CK technique codes. Anyone interested in finding out more about the specific technical steps involved in an Advanced Threat Protection test can refer to the published article New Lines of Defense:EPPs and EDRs Put to the Test Against APT and Ransomware Attacks for more detailed information.
...