Advanced EDR test 2024: Seqrite XDR
AV-TEST conducted a comprehensive assessment of Seqrite XDR, focusing on its Endpoint Detection and Response (EDR) capabilities, from December 2023 to March 2024. The objective was to evaluate the product's effectiveness in detecting and mitigating threats typically associated with advanced persistent threats (APTs). The test scenarios simulated two distinct attack patterns, each highlighting a variety of tactics and techniques employed by sophisticated adversaries.
Scenario 1 - APT18-Style Cyber Espionage:
The first attack scenario evaluated Seqrite XDR against a detailed and methodically orchestrated cyber-attack, focusing on techniques frequently utilized in high-level cyber espionage. This scenario included spear-phishing, system reconnaissance, data exfiltration, and sophisticated evasion techniques, aiming to determine the product’s ability to detect, respond, and mitigate complex attack vectors.
During Scenario 1, Seqrite XDR demonstrated robust detection capabilities, successfully identifying a comprehensive range of techniques deployed in the attack. The solution's detailed detections provided actionable insights at various stages, ensuring clear categorization of techniques and comprehensive visibility into the attack methods. This performance underscored Seqrite XDR's ability to handle complex cyber-espionage scenarios effectively.
Scenario 2 - Mixed Tactics Resembling TA577, Turla, and FIN6:
The second attack scenario involved mixed tactics resembling those utilized by multiple recognized threat groups, presenting a combination of phishing, data manipulation, and lateral movement techniques. The goal was to challenge Seqrite XDR’s defence mechanisms against a variety of sophisticated threats attempting to extract sensitive data and establish a persistent network presence.
In Scenario 2, Seqrite XDR effectively identified all the tactics and techniques used during the attack. The product showed adaptability to various threat behaviours and overall demonstrated efficacy in countering a broad spectrum of advanced cyber threats.
Overall, Seqrite XDR displayed impressive performance across both simulated attack scenarios. Its consistent, high-quality detections affirm its potential to defend organizations against evolving and intricate cyber threats.
Based on these results, Seqrite XDR has been awarded the AV-TEST Approved Advanced Endpoint Detection and Response Certification, marking it as a reliable and effective solution in the cybersecurity domain.