Advanced EDR Protection: Symantec and Carbon Black Earn Perfect Scores in SE Labs Test

• Ransomware remains a major cyber threat, with enterprises facing rising recovery costs despite periodic disruptions to attackers.
• SE Labs awarded perfect AAA ratings to Symantec Endpoint Security Complete (SES-C) and Carbon Black Cloud for detecting, blocking and neutralizing ransomware with zero false positives.
• Real-world tests validated their effectiveness, with both solutions stopping attacks from 15 ransomware families across 556 payload files during a month-long evaluation.
• Broadcom’s cybersecurity portfolio combines protection and detection, leveraging AI-powered analytics and real-time endpoint security to proactively block ransomware before it executes.

If there remains any question that ransomware is a serious threat, the Symantec Threat Hunter team likely settled the issue in its Ransomware 2025: A Resilient and Persistent Threat report, which calls ransomware is the “most potent cyber crime threat affecting enterprises worldwide” that has “a highly successful business model that is capable of withstanding periodic shocks and disruption.” Even as the number of critical infrastructure and commercial organizations targeted by ransomware groups continues to climb, the cost of recovery is skyrocketing.

Thankfully, it’s not all bad news. Extensive new tests conducted by SE LABS Ⓡ, the cyber security testing authority, demonstrate that it’s possible to protect your endpoints and networks from even the most pernicious and aggressive ransomware threats. That is, so long as you have the right solution.

Perfect scores for Symantec and Carbon Black

Today, SE Labs awarded its coveted AAA rating for Advanced Security EDR Protection to Symantec Endpoint Security Complete (SES-C) and Carbon Black Cloud. The two solutions, which were subjected to the same tests, earned SE Labs’ highest possible rating for exceptional performance in detecting, blocking and neutralizing ransomware attacks with zero false positives.

Evaluated in the largest known public test of its kind, both solutions scored 100% in detection and protection as well as managing legitimate applications, enabling them to install and run without generating unnecessary alerts. SES-C has won this award each year since 2022. 

Exceptional performance on an exceptionally tough test

SE Labs tested the two solutions from March 5 to April 1, 2025, using real-world attack scenarios by 15 known ransomware families. Those attacks, which implemented well-known threat actor tactics, techniques and procedures, inundated a network built by SE Labs with 556 ransomware payload files with both known and unknown variants. According to the two test reports, Advanced Security Test Symantec Endpoint Security Complete and Advanced Security Test Carbon Black Cloud, the solutions detected and blocked every attack, including living off the land attacks, from executing across the entire attack chain.

The tests show how Symantec Endpoint Security Complete and Carbon Black Cloud can proactively block the specific tools and techniques used by attackers to carry out ransomware attacks, like encrypting data on key servers and exfiltrating it. What you see in these real-world testing scenarios is a preventative approach that helps stop attacks before the ransomware can execute, rather than just detecting it after the fact. 

This is key. Because while remediation is important, the critical step is blocking what an attacker plans to do next in the attack chain. This recognition from SE Labs is so critical because it validates our unrivaled ability to protect organizations against ransomware and other threats–and in an exhaustive and extraordinarily challenging test.

Simon Edwards, Chief Executive Officer at SE Labs, today offered congratulations to Broadcom “for both of its solutions achieving a perfect score in detecting and protecting against ransomware in our rigorous test." Edwards also observed that "while the number of ransomware families continues to grow, these solutions clearly demonstrate that organisations don’t have to become a victim to this persistent threat. This award recognizes Broadcom’s excellent performance in a massively challenging test.”

A portfolio designed to help keep you safe

Broadcom’s cybersecurity portfolio is built around industry-leading point solutions–not some kitchen sink collection of mediocre products that allow you to check a box but may not protect you when it counts.

Symantec Endpoint Security Complete and Carbon Black Cloud protect against ransomware by combining Symantec’s advanced threat prevention and analytics (including our recently introduced AI-powered feature, Incident Prediction, trained on a catalog of more than 500,000 real-world attack chains built by the Symantec Threat Hunters) with Carbon Black’s legendary real-time endpoint detection and response. Symantec analyzes all network traffic and detonates suspicious files, sending alerts and verdicts to Carbon Black, which then correlates these findings to identify, isolate and remediate affected endpoints. 

By combining protection with detection and response, Symantec and Carbon Black enable automatic blocking of malicious files across an organization’s environment. They also both enable deep visibility, allowing security teams to quickly detect, investigate and stop ransomware attacks as they happen and before costly damage can be done.

Learn more about these tests—and how these products fared—by registering for this webinar: Why Cybersecurity Tools Need To Be Attacked.