NSS Labs Hits Back at FireEye 'Untruths'

A war of words has erupted between FireEye and an independent testing house that questioned the vendor's ability to catch malware.

  • Tweet  
  • LinkedIn  
  • Facebook  
  • Google plus  
  • Send to Kindle
  • Send to  
fight-pa

A war of words has erupted between FireEye Inc. and an independent testing house that questioned the vendor's ability to catch malware.

NSS Labs handed FireEye (NASDAQ:FEYE) a "caution rating" in its first ever comparative analysis of breach detection systems (BDS) after its box scored a "below average" security effectiveness rating of 94.5.

Related articles

All but one of the other vendors tested scored more than 98, with Fortinet Inc., Sourcefire Inc. and Trend Micro Inc. all scoring 99 or more.

NSS said its findings helps end users cut through the vendor marketing fluff in what is a "rapidly evolving" market.

In a forceful blog, FireEye product boss Manish Gupta moved immediately to discredit NSS Labs' findings, claiming its methodology was "severely flawed." The FireEye product the NSS used wasn't even fully functional, used an old version of its software and did not have access to its threat intelligence, Gupta said.

But this was like a red rag to a bull for NSS Labs, whose founder Bob Walder last night responded with an equally robust blog designed to address "a number of untruths and misdirections" in Gupta's missive.

Walder responded to Gupta's claims one by one, saying many were untrue, including that the product it tested was indeed a fully functional product installed and configured by FireEye engineers.

According to Gupta, FireEye insisted the only way to properly test was to run in a real environment, but that the NSS declined to change its testing methodology.

Walder, however, rejected this version of events. He claimed NSS Labs does use a live environment "with real PCs going to real, live malicious URLs." Walder confirmed FireEye did ask for it to change its methodology, but claimed this happened only after it saw the results, something the NSS "clearly cannot do."

"In the grand scheme of things, FireEye's results were not that bad," Walder said. "The real issue here is that FireEye now has credible competition in the BDS marketplace, and the data from this NSS test shows it."

Walder said it was rare for NSS to respond to criticism from vendors that have performed poorly in its tests, although a similar spat with WatchGuard Technologies Inc. erupted last year over its next-generation firewall report.

For more channel coverage from CRN UK, visit channelweb.co.uk/.

  • Tweet  
  • LinkedIn  
  • Facebook  
  • Google plus  
  • Send to Kindle
  • Send to  
More on Channel Business
marketing-plan

Fortinet partner calls for improved marketing to secure more customers

VAR says missed opportunities result when Fortinet isn't at the forefront of end user research

call-centre-india-bpo

Cloud bringing BPaaS opportunities

NetSuite and partner talk ways channel partners can capitalize in changing BPO market

women-venture-capital-arrow

Arrow CEO points to 'comprehensive' solutions as driver for Q2 results

Distributors announces financial results, increase in sales

shutterstock-180806804-china-social-media

Microsoft Chinese partner of the year Pactera talks penetrating Chinese market

China-based provider explains obstacles in succeeding in China, why market should matter to channel

Visitor comments
Add comments
blog comments powered by Disqus
In-depth
Cloud computing graphic

Is pay-as-you-go the future for cloud?

Utility model may be the way forward

jessica-m-225x300

Editor's voice: The week's channel chatter - 31 July 2015

What's been happening this week on Channelnomics?

100m-starting-line

Alibaba gunning to overtake Amazon, Microsoft in the cloud

China’s online retail giant Alibaba plans to invest $1 billion to globalize its Aliyun cloud infrastructure division, with the intent of overtaking Amazon Web Services, Microsoft and IBM

china-regulation-go-strategy-game

MSP warning against 'strategy' misuse

Hijacking the term means customer confusion