#Cybersecurity #Austria #AV-Comparatives #Innsbruck #threat detection

AV-Comparatives Unveils 2025 EDR/XDR Certification Testing

In an era marked by increasingly sophisticated cyberattacks, the need for effective threat detection has never been greater. AV-Comparatives, a recognized leader in cybersecurity testing, recently launched its 2025 EDR (Endpoint Detection and Response) and XDR (Extended Detection and Response) certification testing, aimed at assisting Chief Information Security Officers (CISOs) in assessing the efficacy of their security tools. Andreas Clementi, the CEO and founder of AV-Comparatives, highlights that "detection can't be a checkbox" and emphasizes the importance of uncovering stealthy, real-world threats.

Why This Certification Matters

The primary objective of this independent evaluation is to ensure that enterprise cybersecurity solutions can effectively detect and report real-world attacks under various advanced threat scenarios. Unlike traditional tests that focus on prevention alone, this testing framework simulates a range of complex attack scenarios, providing critical insights into the visibility, telemetry quality, and precision of threat detection capabilities of different products.

Methodology and Focus

The 2025 EDR/XDR certification is noteworthy for its rigorous methodology, which was designed to assess the detection capabilities of each solution across multiple stages of an intrusion. This includes executing complex attack chains while focusing on how well each product detects and logs the various attack vectors. By utilizing known Tactics, Techniques, and Procedures (TTPs) drawn from frameworks such as MITRE ATT&CK, the testing simulates real-world Advanced Persistent Threat (APT) attacks. Importantly, the products are evaluated in monitoring mode, meaning that their preventive features are disabled, allowing focus on detection rather than blocking.

Certified Products

In a strong demonstration of efficacy, five out of seven solutions participating in this rigorous assessment have achieved certification. The following products successfully completed the certification in the 2025 test round:

• - CrowdStrike Falcon Pro
• - ESET PROTECT Enterprise Cloud
• - G DATA 365 MXDR (MDR solution)
• - Kaspersky Next EDR Expert (pilot test)
• - Palo Alto Networks Cortex XDR Pro

Additionally, the methodology applied in this evaluation is versatile enough to assess Managed Detection and Response (MDR) offerings, as demonstrated by G DATA. This reassures buyers that even managed solutions can undergo scrutiny to validate their effectiveness under realistic attack conditions.

Insights and Future Improvements

Feedback from independent analysts has prompted AV-Comparatives to enhance its 2025 test methodology, resulting in improved transparency, scoring, and validation of telemetry. Furthermore, plans for enhancements leading into the 2026 certification testing cycle are already in motion.

The EDR Detection Validation Test is accessible to EPP (Endpoint Protection Platform), EDR, XDR, and MDR vendors seeking independent validation of their solutions. Certification in this assessment not only fosters industry recognition but also provides vendors with invaluable technical insights into their products' real-world performance.

For companies looking to participate in the next test cycle or learn more about the results of this year’s testing, AV-Comparatives encourages reaching out directly for more information.

Conclusion

As the landscape of cyber threats evolves, so too must the tools designed to detect and combat them. AV-Comparatives continues to play a crucial role in establishing benchmarks and standards within the field of cybersecurity, ensuring enterprises can stay one step ahead of attackers. Their latest 2025 EDR/XDR certification testing is a pivotal study that reflects the growing complexity of cyber threats and the essential need for advanced detection strategies.