From d9557047f6f729cbcd088ad3d71545f99fd5207a Mon Sep 17 00:00:00 2001 From: Beth Levin Date: Fri, 3 Aug 2018 13:56:22 -0700 Subject: [PATCH] Updates --- ...e072018.png => PrevalentMalware072018.png} | Bin .../intelligence/transparency-report.md | 39 +++++++++++------- 2 files changed, 23 insertions(+), 16 deletions(-) rename windows/security/intelligence/images/{PreventMalware072018.png => PrevalentMalware072018.png} (100%) diff --git a/windows/security/intelligence/images/PreventMalware072018.png b/windows/security/intelligence/images/PrevalentMalware072018.png similarity index 100% rename from windows/security/intelligence/images/PreventMalware072018.png rename to windows/security/intelligence/images/PrevalentMalware072018.png diff --git a/windows/security/intelligence/transparency-report.md b/windows/security/intelligence/transparency-report.md index b5fca954c3..4f74f115df 100644 --- a/windows/security/intelligence/transparency-report.md +++ b/windows/security/intelligence/transparency-report.md @@ -13,9 +13,9 @@ ms.date: 07/25/2018 # Top scoring in industry antivirus tests -Antivirus capabilities in Windows Defender ATP **consistently receives high scores** from independent tests, making it a top choice in the antivirus market. That is because Microsoft has built the most secure version of its platform in Windows 10, making it much more difficult for exploits, malware, and other threats to infect devices. +Antivirus capabilities in Windows Defender Advanced Threat Protection (ATP) **consistently receives high scores** from independent tests, making it a top choice in the antivirus market. That is because Microsoft has built the most secure version of its platform in Windows 10, making it much more difficult for exploits, malware, and other threats to infect devices. -Windows Defender ATP [next generation](https://www.youtube.com/watch?v=Xy3MOxkX_o4) protection detects and stops malware at first sight by using a model that leverages predictive technologies, [machine learning](https://cloudblogs.microsoft.com/microsoftsecure/2018/06/07/machine-learning-vs-social-engineering/), [artificial intelligence](https://cloudblogs.microsoft.com/microsoftsecure/2018/02/14/how-artificial-intelligence-stopped-an-emotet-outbreak/), behavioral analysis, and other evolutions. That is why it [is the most deployed in the enterprise](https://docs.microsoft.com/windows/threat-protection/windows-defender-antivirus/windows-defender-antivirus-in-windows-10). +Windows Defender ATP [next generation protection](https://www.youtube.com/watch?v=Xy3MOxkX_o4) detects and stops malware at first sight by using a model that leverages predictive technologies, [machine learning](https://cloudblogs.microsoft.com/microsoftsecure/2018/06/07/machine-learning-vs-social-engineering/), [artificial intelligence](https://cloudblogs.microsoft.com/microsoftsecure/2018/02/14/how-artificial-intelligence-stopped-an-emotet-outbreak/), behavioral analysis, and other evolutions. That is why it [is the most deployed in the enterprise](https://docs.microsoft.com/windows/threat-protection/windows-defender-antivirus/windows-defender-antivirus-in-windows-10). Millions of devices are protected from malware outbreaks and cyberattacks every day, sometimes [milliseconds after a campaign starts](https://cloudblogs.microsoft.com/microsoftsecure/2018/03/07/behavior-monitoring-combined-with-machine-learning-spoils-a-massive-dofoil-coin-mining-campaign/). In many cases, customers may not even know they were protected. @@ -25,37 +25,44 @@ The excellent results on independent industry tests is just one indication of qu AV-TEST is an independent IT security institute from Germany and has been testing internationally relevant IT security products for over 15 years. -The AV-TEST Product Review and Certification Report tests on three categories: protection, performance, and usability. The scores listed below are for the protection category against malware infections which has two scores, the AV-Test reference set (known as just "prevent malware") and the real world testing. - -**Prevent malware** refers to detection of widespread and prevalent malware discovered in the last 4 weeks. +The AV-TEST Product Review and Certification Report tests on three categories: protection, performance, and usability. The scores listed below are for the protection category against malware infections which has two scores, the AV-Test reference set (known as just "prevalent malware") and the real world testing. **Real-world testing** refers to protection against 0-day malware attacks, inclusive of web and e-mail threats. -||**January-February 2018** | **March-April 2018** |**May-June 2018**| -|-----|-----|-----|-----| -|Prevent Malware detection rate:| 99.92%, 100.00%|100.00%, 100.00%|100.00%, 100.00%| -|Real World detection rate:| 100.00%, 100.00%| 98.00%, 100.00%| 100.00%, 100.00%| -||* [AV-Test results](https://www.av-test.org/en/antivirus/home-windows/windows-7/february-2018/kaspersky-lab-internet-security-18.0-180557/)|* [AV-Test results](https://www.av-test.org/en/antivirus/business-windows-client/windows-10/april-2018/microsoft-windows-defender-antivirus-4.12-181574/)|* [AV-Test results](https://www.av-test.org/en/antivirus/business-windows-client/windows-10/june-2018/microsoft-windows-defender-antivirus-4.12-182374/)| +**Prevalent malware** refers to detection of widespread and prevalent malware discovered in the last 4 weeks. + +||January-February 2018 | March-April 2018 | May-June 2018| +|-----|-----|-----|-----| +|Real World detection rate| 100.00%, 100.00%| 98.00%, 100.00%| 100.00%, 100.00%| +|Prevalent Malware detection rate| 99.92%, 100.00%|100.00%, 100.00%|100.00%, 100.00%| +||* [AV-TEST results](https://www.av-test.org/en/antivirus/home-windows/windows-7/february-2018/kaspersky-lab-internet-security-18.0-180557/)|* [AV-TEST results](https://www.av-test.org/en/antivirus/business-windows-client/windows-10/april-2018/microsoft-windows-defender-antivirus-4.12-181574/)|* [AV-TEST results](https://www.av-test.org/en/antivirus/business-windows-client/windows-10/june-2018/microsoft-windows-defender-antivirus-4.12-182374/)| ||* [Microsoft transparency report](https://query.prod.cms.rt.microsoft.com/cms/api/am/binary/RE27O5A?ocid=cx-blog-mmpc)|* [Microsoft transparency report](https://query.prod.cms.rt.microsoft.com/cms/api/am/binary/RE2ouJA)||| ### Graphs -The graphs below show Windows Defender AV’s detection rates in “Real World” and “Prevalent malware” testing over a six month period. +The graphs below show Windows Defender AV's detection rates in “Real World” and “Prevalent malware” testing over a six month period. -![Prevent Malware](./images/PreventMalware072018.png) ![Real World](./images/RealWorld072018.png) +![Prevalent Malware](./images/PrevalentMalware072018.png) ## AV Comparatives AV-Comparatives is an independent organization offering systematic testing for security software such as PC/Mac-based antivirus products and mobile security solutions. -The results show the AV Comparatives Enterprise Real-World Protection Test, which evaluates the “real-world” protection capabilities with default settings. The goal is to find out whether the security software protects the computer by either hindering the malware from changing any systems or remediating all changes if any were made. +The **Real-World Protection Test (Enterprise)** evaluates the “real-world” protection capabilities with default settings. The goal is to find out whether the security software protects the computer by either hindering the malware from changing any systems or remediating all changes if any were made. -### **March-June 2018** +The **Malware Protection Test Enterprise** assesses a security program’s ability to protect a system against infection by malicious files before, during or after execution. It is only tested every six months. -Blocked (malware was successfully blocked by AV): **98.7%** +The **blocked** category tests whether malware was successfully blocked by AV. -* [Real-World Protection Test](https://www.av-comparatives.org/comparison/) +|| Jan. | Feb. | Mar. | Apr. | May | Jun. | +|---|---|---|---|---|---|---| +|Real World (blocked) | No test| 100.00% | 94.40% | 96.40% | 100.00%| 99.50%| +|Malware protection (blocked)| No test | No test | 99.90% | No test | No test | No test | + +* [Real-World Protection Test (Enterprise) February - June 2018](https://www.av-comparatives.org/tests/real-world-protection-test-february-june-2018/) + +* [Malware Protection Test Enterprise March 2018](https://www.av-comparatives.org/tests/malware-protection-test-enterprise-march-2018-testresult/) ## Factors not represented in the tests