Between December 2023 and January 2024, AV-TEST subjected WithSecure EDR to a deep and comprehensive analysis, measuring effectiveness in detecting and responding to threats, its useability and overall performance.
Using two different test scenarios, the assessment replicated attack patterns of common threats typical of malicious actors known for advanced persistent threats (APTs). Simulating of these different attack patterns tested EDR’s effectiveness in detection and neutralising of APTs.
Scenario 1 – WithSecure EDR response to cyber espionage
In Scenario 1, the test mimicked a co-ordinated attack from a highly malicious attack known for its advanced cyber espionage operations, deploying the groups typical methods of spear-phishing, system discovery, data collection and obfuscation. The aim was to test WithSecure EDR’s detection and response, as well as its ability to mitigate attack vectors and provide essential insights into the defence perimeter.
In response, WithSecure EDR displayed an impressive quality of detection, successfully identifying all of the methods across all successive attacks, effectively foiling any sophisticated cyber threat. With its ability to categorise the attack techniques used and offering a comprehensive overview into all tactics and methods, WithSecure EDR proved that it is a powerful response to complex cyber-espionage attempts.
Scenario 2 – WithSecure EDR response to mixed tactics
Scenario 2 used the operational tactics of known malicious actor groups, with a complex combination of phishing, data manipulation and lateral movement, with the aim of testing WithSecure EDR’s ability to defend against complex, advanced attempts to steal sensitive information and root itself within the network.
Again, WithSecure EDR was able to detective all tactics, demonstrating its ability to adapt to changing and diverse threat behaviours and techniques.
"WithSecure Elements Endpoint Detection and Response excelled in our evaluation, showing exceptional performance. In two realistic scenarios, it effectively detected all techniques used by threat actors. The system consistently provided high-quality detection and actionable insights."
Erik Heyland, Division Manager Testing Labs and Test Research, AV-TEST GmbH.Key findings
- Exceptional Threat Detection
WithSecure EDR scored highly in identifying and mitigating advanced threats, demonstrating robust capabilities in real-world scenarios.
- Rapid Response
The solution excelled in its response times, ensuring swift action to neutralise threats and minimise potential damage.
- Usability
The user interface was noted for its intuitive design, making it easy for IT teams to navigate and manage security incidents efficiently.
- Performance
WithSecure maintained high performance without significantly impacting system resources, an essential feature for small to medium sized enterprises with limited IT infrastructure.
So why choose WithSecure EDR?
If its proven performance isn’t reason enough to choose WithSecure to defend your business security perimeter, then consider its:
Affordability – cost effective, comprehensive security to suit your budget
Compliance – ensure you stay on the right side of European regulation such as NIS2 and GDPR.
Effectiveness - time and again, WithSecure proves itself against independent testing.
Not sure yet? Then contact us today to try WithSecure Elements Endpoint Protection and Endpoint Detection and Response for a free 30-day trial.
