Malwarebytes is a antimalware application for home and small businesses, which blocks viruses, malware, hackers, viruses, and malicious websites.
$119.99
per year 3 devices
Microsoft Defender XDR
Score 8.8 out of 10
N/A
Microsoft 365 Defender combines SIEM and XDR capabilities for Microsoft 365 environments, encompassing threat detection, post-breach detection, automated investigation, and response for endpoints. Additionally, it protects cloud apps, emails and documents, and employee identities.
N/A
Sophos Intercept X
Score 8.8 out of 10
N/A
Sophos Endpoint Protection (Sophos EPP) with Intercept X is an endpoint security product providing an antivirus / antimalware solution that when upgraded with Intercept X or Intercept X Advanced provides advanced threat detection and EDR capabilities.
$28
per year per user
Pricing
Malwarebytes
Microsoft Defender XDR
Sophos Intercept X
Editions & Modules
Teams - Sole proprietor
$119.99
per year 3 devices
Teams - Boutique business
$399.99
per year 10 devices
Teams - Small office
$799.99
per year 20 devices
No answers on this topic
Intercept X Advanced
$28
per year per user
Intercept X Advanced with XDR
$48
per year per user
Sophos Managed Threat Response
$79
per year per user
Offerings
Pricing Offerings
Malwarebytes
Microsoft Defender XDR
Sophos Intercept X
Free Trial
No
Yes
No
Free/Freemium Version
No
No
No
Premium Consulting/Integration Services
No
No
No
Entry-level Setup Fee
No setup fee
No setup fee
No setup fee
Additional Details
All plans include a 60-day money back guarantee. 1st year discount available for the Small office plan.
—
Pricing is for a 3-year commitment. Government and Education pricing available.
I found Sophos to be more resource intensive, scans take longer and affect the end user experience more. Building policies and customizations is not as intuitive with Sophos.
We found Malwarebytes to be much easier to use than Kaspersky. I also think that Malwarebytes is better supported and has a better reputation for protecting its clients. We found the interface of Malwarebytes to be more intuitive. We also liked the central server software to …
When compared to Microsoft built-in Windows Defender, Malwarebytes edges it out because it's in the business of detecting malware and not working with the operating system. Malwarebytes is constantly updating its definition files to make sure all potential worms are caught …
Malwarebytes has an effective free version (some of the others do, some don't). Malwarebytes has a slightly different focus on the type of malware it looks for. As opposed to picking one winner, I would suggest selecting a well-reviewed paid AV, and possibly supplementing …
Microsoft Defender XDR is more seamless than Sophos Intercept X as it is better integrated into the Microsoft 365 suite. Sophos Intercept X is a little bit cheaper per year than Microsoft Defender XDR though, and definitely worth looking into if you are looking for a security …
We use Microsoft products and have a large group of users. It works easily with our system. There is a great deal of knowledge base out there, often a little overwhelming. But we feel it's the best tool for our network to use parallel to the rest of our back-end.
We selected the Microsoft 365 Defender as we using Microsoft environment and integration with Microsoft 365 Services. Also its provide single dashboard from where we can manage and monitor security across different services, Which streamlines our security operations and …
We've compared the solution to probably 5-10 others having selected just a handful of the more recent ones. Using this with one other, we feel like we've covered most areas as possible. The integration with the Microsoft stack cannot be beaten and it just feels natural to use …
We liked the deep device integration and active threat monitoring for Sophos but ultimately we went with Microsoft 365 Defender integrated into our Microsoft 365 tenant because we could negotiate favorable pricing along with our 365 licensing. The additional expense of Sophos …
I preferred the management console of Malwarebytes Endpoint Protection and the deployment capabilities of both were very similar. However, it was not my decision to make on which product to implement. I was only a tester of the product and reported back my preferences. …
Sophos Intercept X is one of the industry leaders for a reason. Apart from integration issues, Sophos Intercept X stands above the rest when it comes to protection and usability. I have used at least 30 different antiviruses, antimalware, and antiransomeware programs and none …
Sophos Intercept X is easy to manage and deploy under your business. I think it is comparable to BitDefend with the ability to send out deployment via email or directly add it to the computer. I have noticed that Bitdefender seems to eat a lot of resources during its scans …
Verified User
Engineer
Chose Sophos Intercept X
Trend Micro offered similar protection, however at the time did not offer EDR as a solution. The big benefit to Trend Micro was the capability to push out the installation of the agent to assets within the Trend Micro console, eliminating the need for a GPO or deployment …
We used to use Symantec Endpoint Protection. At the time we were using it (it may very well be different by now), it required a bit more maintenance and we were constantly having issues with definitions not being downloaded as well as issues updating the software itself. We …
Sophos's shields are more powerful than both McAfee's and Symantec's while using less system resources doing its active scans. It does use more power while performing a manual scan than either, but nothing that cripples the system or leaves it unusable while it is running. The …
I did not have an influence on the purchase of Sophos. However, from past experience with other antivirus products, Sophos doesn't seem to bog down the systems. It scans the second a file is touched, and is great at quarantining harmful files before they can become a problem. …
Now, I gave it that rating because it's a handy tool for diagnosing issues. Quarantining them, and most of the time, it does fix the problem. Though with rootkits, it's been hit or miss, and sometimes perfectly valid software gets flagged erroneously. However, once you've run it, it tends to run continuously, consuming far too many resources and being a real pain to uninstall, sometimes even causing issues.
Microsoft Defender XDR is well suited for organizations already invested in the Microsoft Ecosystem - including Microsoft 365, Azure Ad and INTune. For example, in scenarios where you need to correlament the fishing attacks with the closing point behavior and identity agreement, Microsoft Defender XDR does a big task of sewing the timeline of a full attack simultaneously and even automatically removing. This hybrid function is also ideal for the environment, where safety visibility in distance tools, cloud apps and email is important. Microsoft Defender XDR provides centralized insight and response in all these domains without the requirement of many devices. However, it is less suitable in the atmosphere with diverse or non-microsoft infrastructure, such as an organization running a mixture of Linux server, Google work area or third-party EDR tools. Cross-platform support is still developing, and integration of the microsoft ecosystem often requires additional configurations or third-party connectors. For companies of that situation, Microsoft Defender XDR cannot give its full value from the XDR box.
To be frank, this product is fairly expensive. So I would recommend this to companies that are mid-sized or larger to condone the cost of the purchase. It does save me a significant amount of time in my day - being able to glance at the dashboard and see if there are any outstanding issues that require my attention, as not much digging must be done to accomplish this. So for our company, with a short-staffed IT department, it's incredibly helpful to us. We also qualify for Educational pricing which brings the cost down - which helps tremendously
Low system resources, it does not slow down the whole computer when scanning or when real-time protection is enabled
Quick and frequent updates, usually people hate updating, but for malware/viruses, you want to be updated as possible. It takes less than 15 seconds and usually does it automatically. They usually send a few updates a day as they find more.
Protection features actually work when visiting known bad websites. The page will be blocked and nothing will be downloaded. It may not be what the user wants, but it's what the user needs (as the user can't know every bad website)
The software uses advanced AI and machine learning algorithms to monitor activities and detect any anomalies immediately, protecting our financial data.
Automated responses to known threats reduce the impact of possible incidents and improve our security posture.
Microsoft 365 Defender easily combines with other Microsoft 365 services and external security solutions, providing a complete and unified security solution.
Sophos Intercept X is great at preventing malware infections and rolling back their effects. I have seen this happen hundreds of times since we installed it
When combined with Sophos Central, you have an easy to use dashboard where you can manage all installations from a single pane of glass.
It's easy to deploy on machines and stays updated.
Good reporting features including alerts sent to the admin if there's ever something wrong with it.
One of the main things that malwarebytes is missing as a company, is phone support for its clients. All support questions has to go thru email only. This is not acceptable for issues that needs to be resolved quickly.
There is an issue when installing the client on a machine, it has a set amount of time where the software can register with the management server. The issue with this is, with machines that are over a wide area network, slow connection speeds can cause the software not to register. When that happens, it never re attempts to register in the future.
Improved algorithms to minimize false positives in threat detection, reducing the impact on security teams and preventing unnecessary investigations into non-threatening incidents.
Advanced User-Friendly Interface:
Streamlined and intuitive user interface for the centralized dashboard, making it more accessible for security professionals with varying levels of expertise.
Greater Third-Party Integration:
Increased compatibility and integration capabilities with a broader range of third-party security tools
Sophos OOTB policies are very strict and they don't offer anything less strict without you creating new custom policies. I'm sure this is deliberate because the product starts you out in the safest way possible but it means that you will have lots of calls to your tech support desk when you first deploy it unless you do somewhat extensive testing beforehand.
Sophos Intercept X is currently broken (at least the DLP component) by having secure boot turned on in the UEFI/BIOS. If any user wants to be able to write data to a USB drive or floppy from their PC (yes we still have a couple users who need to use floppies) we have to turn off secure boot on their PC, even if the DLP policy for that user/PC combination specifies that the user and PC are allowed to write to USB/floppy. This would be a very serious problem if it weren't for the fact that we have very few users who need to write files to USB. For us it's OK but I bet it would be a deal-breaker for others.
I don't see a whole lot of evidence that Intercept X is any different than any other anti-virus, so maybe their admin alerts just don't clearly identify when they have identified a zero-day threat or maybe we just haven't had any zero-day threats.
The last time we renewed Malwarebytes, we renewed for a 3 year renewal. That should describe the confidence we have in the product. Plus the cost savings impact year after year.
We are pleased with the product and have no plans to look for alternatives. We are deeply invested in Microsoft ecosystem and Defender XDR provides seamless integration to other Microsoft products. For academic institution pricing is also quite affordable. In the contrary, we hope to extend the scope of the product for our entire environment.
Usability-wise, it's pretty good, and it gets the job done. But once that's finished, the nags, the pop-ups, and the fact that it slows older systems down recklessly really cost it rating points. It becomes a clutter, and one of the first things we check when we receive reports that a PC is slow is whether it's running malware. Once we uninstall it, the PC is usually easily 40-50% faster. That's too much in the way of resources for something that wants to always run in the background.
Overall the UI is modern and OK to use. Attack story is quite nice visual of incident. Advanced hunting supports autocomplete so that helps doing KQL-queries efficiently. The product is quite comprehensive and one can get lost in the vast UI. Learning curve is quite high and navigation is complex. As product also continues to evolve the UI might change somewhat.
The usability has never been a problem. Sophos Intercept X is a program you can install and let protect your company without much intervention. Apart from a few policies, Sophos will keep you protected better than most any product on the market. Sophos Intercept X works quite well when you are looking to "tighten your grip" on user's access to websites, programs, and add-ons.
In our experience there has been very little downtime for Microsot Defender XDR. For us there hasn’t been any single incident where we needed the product and it was not available.
Most of the time the product is as responsive as you might expect from cloud product. Occasionly the product is little slugish, this has been at most a slight irritation. Reports generate quickly ennough for our needs. We also not have found that Defender XDR slows down systems that it is integrated with
The Malwarebytes customer support team is awesome! They really go above and beyond to help you with whatever issue you may experience. It is not that we need to contact their support team often, but the few times we did, we would speak to someone who knew what they were talking about and able to solve our problem. It is a comfort knowing that aside from a great product, you are getting a reliable support structure.
Their support throughout our onboarding of the product was fabulous. They not only took the time to carefully explain to teams not as well equipped with the lingo but explained to the tech team how to teach the other teams to be successful. They never once seemed impatient or annoyed with basic questions and didn’t pretend to know something when they needed to research an answer
Most of the support reps are fantastic. There have been a few though that have had to be escalated via Account Manager when they haven't followed up but this is a rare instance, and often followed up by the Support Manager for APAC.
Microsoft Provides a good training for the Microsoft 365 Defender and has a good learning paths to learn and take the exams and get your Certifications.
seemless and almost transparent. can be deployed by script if needed so every endpoint on our system get's it. if you have intune it gets dumped on the the endpoint by policy so nothing escapes it
Avast and Norton's products were part of the testing for us but the cost was very high for them and the products were not light on the machine. They took up a lot of memory and slowed the computers down. Malwarebytes although may lack some feature, is a very light software.
Our product in that area, for instance as a security platform and for us it is for the moment really bad point. We started to move in that direction that there is that disconnect from the client management. So if there is some action that needs to be executed detected by security team, there is not an easy way to make that available to the team that is responsible for managing the identities as users, as the devices
Webroot Endpoint Protection is not even in the same league as Sophos Intercept-X. I have tested and compared both sides by side, run simulations and it's not even close. Plus the Sophos central management is so much better. Easier to view user activities and apply policies and remediate threats. Sophos is the clear winner between these two products.
Azure cloud provides techical power to scale the product for whole organization. From organizational point of view scaling Defender XDR for various IT teams needs good collaboration and clear norms that all teams must agree to and follow.
Positive Impact: Have not had to remediate malware/virus infections since installed.
Positive impact: As far as browsing goes, we can boldly go where no man has gone before. No, really, I am confident when I am clicking on search engine results that if something get past my trained eye, Malwarebytes will pick of the slack.
Once our technical and commercial areas got certified, the ROI over the time spent, is great. Actual customers, and/or new ones with other tools, feel safe and advised, once they get in touch with us.
When Sophos EndPoint is being compared against Web Management Tools (competitors), we have failed to deliver, nevertheless, there is a version of Sophos Central (Cloud) which achieves this requirement at 100% and more, since is Cloud Based (on AWS).
We are grateful to be on Sophos "Radar" as a Platinum Partner, and "The Americas" valued partner, we have seen our business grow, thanks to this kind of technology, throughout the years.