Bitdefender Achieves 100% Telemetry in EDR Test

Severity: Low (Score: 18.8)

Sources: Bitdefender

Summary

Bitdefender GravityZone Business Security Enterprise achieved 100% relevant telemetry in AV-Comparatives’ inaugural EDR Detection Validation Certification Test published in May 2026. This certification tested the product's visibility across a 14-step attack scenario based on tactics from various APT groups. The attack methods included spearphishing for initial access, credential access techniques like Kerberoasting and DCSync, and lateral movement among systems. Bitdefender was the only vendor to achieve complete chain-of-attack visibility, finishing first among nine certified products. The test focused on detection capabilities, with all products in detection-only mode, isolating visibility from prevention quality. Bitdefender also achieved 100% prevention in the initial attack phase during a separate EPR Test for 2025. The results highlight the effectiveness of Bitdefender's research-led prevention architecture applied to detection. The test results are significant for organizations seeking comprehensive endpoint detection and response solutions. Key Points: • Bitdefender achieved 100% telemetry in AV-Comparatives' EDR test. • The evaluation involved a 14-step attack scenario based on tactics from multiple APT groups. • Bitdefender was the only vendor to achieve complete chain-of-attack visibility.

Key Entities

• Apt10 (apt_group)
• Apt27 (apt_group)
• Apt29 (apt_group)
• APT41 (apt_group)
• Carbanak (apt_group)
• Phishing (attack_type)
• T1003 - OS Credential Dumping (mitre_attack)
• T1021.001 - Remote Desktop Protocol (mitre_attack)
• T1021 - Remote Services (mitre_attack)
• T1053 - Scheduled Task/Job (mitre_attack)
• T1059.001 - PowerShell (mitre_attack)
• Azure (company)
• Windows (platform)
• PowerShell (tool)
• WinRM (tool)