Full Report
From detection to protection, SES Complete is the total package
Analysis Summary
# Industry News: Symantec Achieves Perfect Score in Rigorous Endpoint Security Testing
## Summary
Broadcom’s Symantec Endpoint Security Complete (SES-C) achieved a 100% protection and usability score in the latest AV-TEST evaluation. The results highlight the effectiveness of AI-driven incident prediction and adaptive protection features in stopping real-world threats with zero false positives.
## Key Details
- **Date:** July 1, 2026
- **Companies Involved:** Broadcom (Symantec), AV-TEST (Independent Laboratory)
- **Category:** Product Performance / Industry Benchmarking
## The Story
Independent security institute AV-TEST conducted a two-month rigorous evaluation of 15 leading endpoint security solutions. Using a sample set of over 12,000 malware instances and 1 million clean samples, the lab assessed products on protection, performance, and usability.
Symantec Endpoint Security Complete (SES-C) emerged as a top performer, scoring 100% in threat protection. A standout achievement was the product’s "zero false positive" record, which is a critical metric for reducing "alert fatigue" in Security Operations Centers (SOCs). The victory was largely attributed to two core technologies: **Adaptive Protection**, which uses behavioral analysis to block "Living off the Land" (LotL) attacks, and **Incident Prediction**, an AI/ML-driven engine that forecasts an attacker’s next moves based on established Tactics, Techniques, and Procedures (TTPs).
## Business Impact
### For the Companies Involved
- **Broadcom (Symantec):** Reinforces its position as a premium tier-one security vendor. This "perfect score" provides significant marketing collateral to defend its market share against "next-gen" competitors.
### For Competitors
- **Competitive Pressure:** Vendors like CrowdStrike, SentinelOne, and Microsoft will face increased pressure to match these independent benchmarks, particularly regarding the elimination of false positives.
- **Raising the Bar:** Symantec’s success with "Incident Prediction" forces competitors to accelerate their own AI-forecasting roadmaps.
### For Customers
- **Reduced Overhead:** The zero-false-positive result suggests lower operational costs for customers, as security teams spend less time chasing "ghost" threats.
- **Investment Validation:** Provides CSOs with data-backed justification for choosing or maintaining Symantec licenses in a crowded marketplace.
### For the Market
- **Standardization of AI:** The results signal that AI in cybersecurity is moving past the "hype" phase into measurable, standardized efficacy.
- **Emphasis on "LotL" Defenses:** The market is shifting focus from just detecting "bad files" to neutralizing "bad behavior" using legitimate system tools.
## Technical Implications
SES-C utilizes an **Adaptive Protection** engine that automatically hardens endpoints by blocking anomalous use of legitimate OS components. Furthermore, its **Incident Prediction** engine is trained on 500,000+ attack chains, allowing the software to anticipate the next 4–5 steps of an active intrusion. This proactive stance moves the technical needle from reactive detection to predictive prevention.
## Strategic Analysis
- **Market Positioning:** Broadcom is positioning Symantec not just as a legacy antivirus, but as an advanced AI-integrated platform capable of handling sophisticated ransomware and state-sponsored LOTL attacks.
- **Competitive Advantage:** The integration of AI-driven prediction and high usability (zero false positives) creates a "total package" value proposition that addresses both security and operational efficiency.
- **Challenges:** Despite technical excellence, Broadcom must overcome market perceptions regarding its long-term support and innovation commitments following past acquisitions.
## Industry Reactions
- **Analyst Opinions:** Independent labs continue to view Symantec's consistent year-over-year performance as a benchmark for the EPP/EDR industry.
- **Market Response:** Professional consensus highlights that while many tools can detect malware, the ability to do so without disrupting business workflows (false positives) is the current "gold standard."
## Future Outlook
- **Predictive Security:** Expect to see "Incident Prediction" become a standard feature in high-end EDR solutions.
- **Consolidation of Tools:** As SES-C demonstrates "total package" capabilities, organizations may look to consolidate disparate tools into single-platform solutions like Symantec’s to reduce complexity.
## For Security Professionals
Practitioners should take note of the **Adaptive Protection** capabilities. For those managing overstretched SOCs, the zero-false-positive metric is the most relevant takeaway, as it directly impacts daily workload. The 100% protection score against "Living off the Land" attacks targets the specific technique currently most favored by ransomware operators.