News - internet

by Alex Teh, Chillisoft CEO

In the past year, we have had a lot of feedback from the market about the use of Microsoft Defender as an alternative to ESET. According to Gartner, Microsoft Defender with ATP is now a product that deserves to be in the leader quadrant. Users that have Windows 10 machines are now getting Microsoft Defender for free with the O/S and they have the option of upgrading to Microsoft Defender ATP by buying enterprise licenses (EL3 or EL5). We have noted that Microsoft has been aggressively pushing their EL licensing throughout the Microsoft channel.

After many years since entry into the endpoint security market, has Microsoft Defender become such a good product? In our opinion, no. Despite the fact that Defender has a comparable detection rate with ESET, it has remarkably higher false alarms and terribly slows down the machines that run it. SMBs that don’t have malware analysts to investigate false alarms and that don’t keep the pace of buying new computers every three years should be aware Microsoft Defender is an option they can ill afford.

To prove it, let’s have a detailed look on the latest report1 by AV-Comparatives published on July 15, 2020. This first half-year report of the Business Main-Test Series of 2020 consisted of three tests: Real-World Protection Test, Malware Protection Test and Performance Test.

The AV-Comparatives’ Real-World Protection Test mimicked online malware attacks that a typical business user might encounter when surfing the Internet. The latest test comprised 767 test cases of drive-by exploits and URLs that pointed directly to malware executables. The number of missed samples ranged from zero (the two security solutions that detected all the cases both generated a high number of false alarms) to 27; the average number of misses was six. ESET Endpoint Protection Advanced Cloud with ESET Cloud Administrator detected all but three cases and generated no false alarm. The number of false alarms ranged between zero and 41.

The Malware Protection Test considered a scenario in which the malware pre-existed on the disk or entered the test system via some other way than directly from the Internet. In this test, ESET belonged to the group of four vendors with 99.9% Malware Protection Rate – the second-best score in the test – and to the group of nine vendors with the best “Very low” False Positive Rate.

Microsoft Defender reached comparably excellent detection rates with ESET (just two misses in the Real-World Protection test and 100% detection in the Protection Test) – but at the cost of a much higher number of false alarms. Compared to ESET’s zero, Microsoft had eight false alarms in the Real-World Test, which put it at 13th position among the tested vendors. In the Protection Test, Microsoft did not belong to the group of nine vendors, including ESET, with “very low” (i.e., 0-5) number of false alarms. Microsoft’s Defender fell into the group of four solutions with 6-25 false alarms.

 

Tab. 1. Results of the Real-World Protection Test (March-June 2020) by AV-Comparatives

It’s easy to create a security solution that excels in detection if false alarms are not considered a problem. Ultimately, labelling every single sample as malicious would guarantee the 100% detection rate in any test. However false alarms pose a huge problem, especially for SMBs who don’t have the right resources.

Each false alarm may require an administrator to spend around 30 minutes to investigate. One can then deduce that with eight false alarms, around four productive hours are wasted on investigations that lead the IT administrators down a rathole.

Besides detection rates and false alarms, the impact of security solutions to the performance of the machines they run on is also important for SMBs. We must consider how much of that machine’s computing, and processing power are taken up by the endpoint. The Impact Score of the endpoint is important as New Zealanders, in general, try to extend the life of each machine as long as possible; in many instances they are kept longer than the global industry standard of 3 years.

An excellent Impact Score ultimately affects the user experience and hence reduces the cost of expensive replacements of the endpoint. Besides, slower machines also mean lower worker productivity.

In their most recent Business Test, AV-Comparatives conducted two performance tests: the first being the recognized PC Mark benchmark and the second being a proprietary test consisted of a set of common operations. The test machines were what AV-Comparatives called “low-end machine configuration”: Intel Core i3 CPU system with 4GB of RAM.

In the PC Mark Test, the machine without any security software installed was assigned a baseline PC Mark Score of 100; the scores in this test ranged between 98.9 and 92.5 for the machines with a tested security software installed. ESET Endpoint Security was found the second most lightweight security solution with the score of 98.7. (The winner in this category, K7, seriously failed in both False Positive tests, so ESET Endpoint Security may be considered the fastest among leading security solutions.)

Microsoft Defender’s impact on performance was found much heavier; with the score of 96.8, it ended up in eighth place.

In the proprietary Performance Test, the tester measured to what extent the security solutions slowed down the machine performing select standardized operations: File copying; Archiving and unarchiving; Installing/uninstalling applications; Launching applications; Downloading files; and Browsing Websites. ESET, along with three other vendors, achieved the best score of 90. Microsoft, along with three other vendors scored a meagre 75; only four security solutions slowed down the testing machine more than Microsoft Defender.

Combined, ESET achieved “Impact Score” 1.3, an excellent result confirming that ESET Endpoint Security has only negligible impact on performance. Microsoft, on the other hand, again proved it’s a resource hog – see the table below.

Tab. 2. Results of the Performance Test within the Business Security Test, H1 2020, by AV-Comparatives

ESET’s dominance over Microsoft in Performance Tests doesn’t depend on whether the test machines are “low-end” or “high-end”. In their previous Business Test (August-November 2019), AV-Comparatives used test machines with Intel Core i7-8550U CPU and 8GB RAM. The results in both Performance Tests were similar, with ESET outperforming Microsoft in both tests.

In summary, although Microsoft Defender has gained market share and made some advancements in their offerings, it is not a silver bullet.  There is often much more to consider when choosing an endpoint solution. Besides performance, other factors such as having local support from highly trained and certified personnel, as well as getting the appropriate service levels required to keep businesses secure, are also crucial in ensuring customers are happy in the long run… These have been the key parts of ESET’s and Chillisoft’s proposition in the New Zealand market for 21 years.

Sources:

1 https://www.av-comparatives.org/tests/business-security-test-2020-march-jun

 

ESET vs Defender

How does MSFT Defender compare to ESET?

July 30, 2020

by Alex Teh, Chillisoft CEO In the past year, we have had a lot of feedback from the market about the use of Microsoft Defender as an alternative to ESET. According to Gartner, Microsoft Defender...

Month
Categories
No items were found matching the selected filters

ESET Cloud Security

August 3, 2020

As the Early Access of ESET Cloud Office Security (ECOS) is in full swing, we are preparing for the launch of the product for general availability. I would like to inform you that the global...

ESET ANZ Cloud for Endpoint Protection and EDR

August 3, 2020

by Alex Teh, CEO at Chillisoft In recent years we have seen several new vendors in the endpoint security market that have made some progress in terms of gaining market share. These vendors...

LogRhythm Releases True Unlimited Data Plan for SIEM

October 21, 2019

Auckland – October 2, 2019 – LogRhythm, the company powering the world’s enterprise security operations centers (SOCs), announced today that it launched the first True Unlimited Data...

Cofense anti-phishing solutions added to Chillisoft’s security portfolio

October 21, 2019

21 October 2019, New Zealand – Chillisoft, cybersecurity specialist distributor, announces today a distribution partnership with Cofense (formerly PhishMe®), the global leader in intelligent...

ESET named as the only Challenger in 2019 Gartner Magic Quadrant for Endpoint Protection Platforms for a second year running

August 26, 2019

ESET – a global leader in information security – has been named as the only Challenger in the 2019 Gartner Magic Quadrant for Endpoint Protection Platforms* two years in a row. ESET was...

Imperva complements Chillisoft’s cybersecurity portfolio

June 2, 2020

Chillisoft adds Imperva to its stable of Gartner-leading cybersecurity solutions. Imperva is an analyst-recognised cybersecurity leader championing the fight to secure data and applications...

Scholarship in cybersecurity recipient now on his PhD

July 5, 2019

Chillisoft Scholarship in Cybersecurity, the inaugural recipient, Samuel Dobson, has now graduated and has begun work on his PhD. Samuel’s PhD is in the emerging field of post-quantum...

ESET Full Disk Encryption to launch

October 17, 2019

ESET Full Disk Encryption (EFDE) is a new product designed to protect unauthorised access to a business’s valuable data. Available as an add-on to the recently updated ESET remote management...

Chillisoft Secures LogRhythm ANZ Distributor of the Year Award for 2020

July 28, 2020

LogRhythm, the company powering today’s security operations centres (SOCs), has announced that Chillsoft has been awarded the vendor’s Distributor of the Year for Australia and New Zealand for...

How does MSFT Defender compare to ESET?

July 30, 2020

by Alex Teh, Chillisoft CEO In the past year, we have had a lot of feedback from the market about the use of Microsoft Defender as an alternative to ESET. According to Gartner, Microsoft Defender...

Heightened cybersecurity risks amid COVID-19: ESET or freeware, and what does it mean for our consumer and SOHO customers?

July 30, 2020

by Alex Teh, CEO at Chillisoft Microsoft Defender (previously Windows Defender) is currently one of the most widely used antivirus software thanks to the fact that it is pre-embedded since...

Put a single window to threat interception, prediction, prevention, detection, and remediation

June 5, 2019

ESET Enterprise puts you in the driver’s seat According to Forrester, buyers want an “endpoint security suite that consolidates capabilities and minimises complexity when possible.”...

UFB available, but shame about the firewall – don’t let old firewall technology choke internet speeds.

June 5, 2019

Forcepoint’s high-speed next-generation firewall delivers all the power for a fraction of the price. Ultra Fast Broadband (UFB) is available to most businesses in major NZ cities and towns,...

Build your own SOC services with LogRhythm

June 5, 2019

New Zealand IT service providers are embracing MSP consumption-based business models. LogRhythm’s multi-tenanted MSP-ready capabilities make it possible. Local organisations in finance,...

Good enough for banks – Tripwire’s cloud-based management service

June 5, 2019

Tripwire ExpertOPS SCM offers vulnerability management and file integrity monitoring as a service. Tripwire’s enterprise-class vulnerability and risk management solution is a cost-effective...

NIST Cybersecurity resources for smaller businesses

April 30, 2019

There are a lot of challenges to being a small-business owner, including safely managing technology. Every risk can have an outsized effect on your ability to stay in business. And resources...

ESET extends the reach of its 2FA product, ESET Secure Authentication, to MSPs

March 30, 2019

ESET, a global leader in cybersecurity, announced that it has made its smartphone-based 2FA solution, ESET Secure Authentication (ESA), available via its 4000+ strong MSP Partner’s Program. ...

Criminal hacking hits Managed Service Providers: Reasons and responses

February 20, 2019

Recent news articles show that MSPs are now being targeted by criminals, and for a variety of nefarious reasons. Why is this happening, and what should MSPs do about it? Read this excellent...

LogRhythm expands NZ channel with Chillisoft 

January 23, 2019

LogRhythm, the Security Intelligence Company, expands its distribution in New Zealand and the Pacific Islands with the appointment of Chillisoft. The agreement will enable LogRhythm to rapidly...

Chillisoft launches CybersecCon 2019

December 13, 2018

Over the past year, cybersecurity has taken centre stage across the globe. As cyber attacks have become more prominent and their complexity have become more and more difficult to protect against,...

DDoS and WAF by Radware now at Chillisoft

December 10, 2018

Radware has appointed Chillisoft as a distributor covering New Zealand and Oceania.   Radware's DDoS protection, web application firewall (WAF), application delivery and load balancing...

Forcepoint appoints Chillisoft as NZ distributor

November 28, 2018

  Chillisoft broadens its portfolio with Forcepoint’s human-centric cybersecurity solutions  28 November 2018, New Zealand - Chillisoft, a specialist IT security distributor, and...

ESET v7 business products training

November 15, 2018

We had a great day yesterday training 20 ESET partners in Auckland. The next training event is in Wellington on 21 November and there are just a couple of spots left. Get in touch soon if you'd...

ESET is recognized as a ‘Leader’ in the 2018 Forrester Wave Endpoint Security Suites report

September 25, 2018

"In reviewing the overall market, the authors stated that Forrester survey data shows that “IT environment complexity”, was “the most frequently cited challenging issue” by enterprise...

Vote in the Reseller News Channel Choice Awards

September 14, 2018

Voting in the 2018 Reseller News Channel Choice Awards finishes on Monday 17 September. It's your last chance to vote for your favourite Distributor and Endpoint Security software...

BugCrowd University

September 11, 2018

The free educational platform for security researchers The Bugcrowd crowdsourcing platform launched Bugcrowd University, an educational platform for security researchers that aims to contribute...

Week in Security 8-Sept-2018

August 4, 2018

In this week’s security news with ESET’s Global Security Evangelist & Industry Ambassador Tony Anscombe the focus is on malware from newly uncovered group PowerPool that exploits a...

Apple pulls top App from Store

September 10, 2018

Apple yanks top grossing app from Mac App Store for grabbing private user data The several thousand glowing reviews that Adware Doctor had garnered prior to its removal were “likely fake”,...

Will Machine Learning reshape the threat landscape?

September 4, 2018

A new ESET white paper aims to bring some clarity to what Artificial Intelligence (AI) and Machine Learning (ML) mean in the world of cybersecurity and how they could change the future of malware...

ESET introduces all-new suite of Enterprise Security Solutions

September 4, 2018

ESET, a global leader in cybersecurity from the European Union, announced on 16 August 2018 the launch of its new suite of comprehensive cybersecurity products and services designed to provide...