vCIO At Grove Networks Inc. at a computer software company with 11-50 employees
MSP
Top 5
2024-11-11T16:28:36Z
Nov 11, 2024
Webroot Business Endpoint Protection needs to improve its ability to detect threats. It does not do what it's advertised to do. Real-time threat detection also doesn't work as it should.
I now have a test account with Webroot and the management console, which is a different experience from when I used Webroot Business Endpoint Protection privately. I haven't finished the testing phase with the tool yet, so I can't really say what needs improvement in the product. Though the UI and documentation offered by Webroot are better than those of Trend Micro, I believe that Webroot Business Endpoint Protection should offer a more modern UI.
Webroot Business Endpoint Protection is an antivirus, making it hard to compare to other products in the market. Improvement-wise, the solution has improved on quite a few things now. Webroot Business Endpoint Protection needs to focus on how they can widen their area of scope by not just being an antivirus tool anymore. The shortcoming in the customization area of the tool needs improvement.
Webroot should provide more information on the type of cyber attacks similar to SentinelOne. It would be helpful for administrators to have advanced control over threats.
The only complaint I have with Webroot is its inability to prevent UoD phishing and its inability to check against bots or block anti-attacks. Plus the URL server is in zero-definition.
Learn what your peers think about Webroot Business Endpoint Protection. Get advice and tips from experienced pros sharing their opinions. Updated: November 2024.
Level III Technician at a tech services company with 201-500 employees
MSP
2022-07-12T22:42:55Z
Jul 12, 2022
Usually, when it comes to reliability, McAfee and Norton are at 99 percent. Webroot's percentage is lower. It is 94% reliable in terms of what it catches, but you're trading that percentage for customer satisfaction because your computer isn't being constantly told that it just blocked something, or it just did something.
We've had a couple of events both this year and last year where it just didn't seem to catch ransomware, which is impossible to do if someone has hands-on with the system. There were some things that they had or used to have or don't have that I still haven't figured out called journaling. And it was supposed to be a way to roll back changes that were made. However, they're telling me they don't have that. That's not in the system. It’s my understanding that it doesn’t actually scan any files at all. They just look at their database of files they've scanned previously, and either it matches or doesn't. That might be where the shortcoming is, is that it just can't stay up-to-date fast enough to stop new things that are coming in. It's an after-the-fact anti-virus. It doesn't do anything proactive. The virus has to hit the machine before it detects it. There is one thing that is deplorable with the product that I would change as soon as I found a better one. However, the reports are worthless. You go and look at a scan report and cannot get a log of machines. I can log into a console and see the files were scanned every day at 2:00 AM, and they all passed green or something was detected and removed. However, you have to go to the console. I don't have anything that I can send to my client on reports. What they give you is a bunch of bar graphs with no details. You can't drill down. It'll say two infections. However, it doesn't tell you what machines. You've just really got several different reports, and they're all just a bunch of graphs and wasted paper. There's nothing really substantial. The reports that I can use for client-facing, once a month, to say, "Here, we scanned all these workstations. Here are our results," don’t exist. They've got fake reports. I've screamed about that for years, and they just won't do anything. Therefore, I created my own little up-to-date or not ask fail-type report. I send that to them in place of a report directly from a product.
I'm not happy with Webroot Business Endpoint Protection, for only one reason. It seems that it slows down my interface when I'm doing programming in Microsoft Access, tremendously. When I'm just using Access, it seems to work fine. But when I'm doing the Access programming, it slows down substantially. Sometimes I wait maybe five, or six seconds for different screens to come up. It probably costs me 15 to 20 minutes every day. It's aggravating. I am currently looking for a replacement. However, I will say I've never gotten malware with Webroot Business Endpoint Protection.
Snr. Cyber Security Analyst at a tech services company with 51-200 employees
Real User
2022-04-01T19:22:02Z
Apr 1, 2022
Looking for the Next Gen Webroot to leverage Multi Core Architecture supported by a robust Operating System Executive that is fully aware of it's underlying Hardware Architecture and Foundation; with live integration and feed into most reliable OTXs in real time. Additional video on really demonstrating the runtime features of the product would be helpful. For example, how do you do continual data monitoring? How do you verify their connections? A lot of people know about antivirus protection, however, the product does a whole lot more. They can do a whole lot more. Since they're dealing with multi-core environments now, the best option would be for them to enhance the product so that the product can automatically do an assessment on the machine.
Administrator at a financial services firm with 10,001+ employees
Real User
2021-12-13T19:46:45Z
Dec 13, 2021
Areas for improvement would be the reporting system in the admin console. In the next release, I would like them to add features to run comments or take remote control to the admin control and also features to be installed on mobile devices.
Network Manager, Enterprise at a tech services company with 11-50 employees
MSP
2021-09-08T15:00:16Z
Sep 8, 2021
One of the biggest pain points is that it's not really ransomware-oriented. They will be able to catch some, but that's where Sentinel One is a better player compared to Webroot.
Manager-IT at a financial services firm with 11-50 employees
Real User
2021-07-13T15:11:01Z
Jul 13, 2021
The solution could improve by providing better ransomware protection. If Webroot could match up to something similar to what a CrowdStrike or SentinelOne is providing, I would consider Webroot again. For example, there are more advanced features such as EDR and sandboxing. In SentinelOne, when there is a threat it automatically does the analysis and provides you with detailed reports, but Webroot is lacking in the details.
Its detection capability for certain attacks should be improved. It should have better and wider detection for certain malware attacks. It could also have some sort of RMN.
Resp. Sistemi Informativi/ IT Manager at a consumer goods company with 51-200 employees
Real User
2020-11-24T13:12:47Z
Nov 24, 2020
We've had some issues with the solution. We were attacked by CryptoLock. It's not the best in security. As we were breached, we'll be looking for a new solution next year. We need to have a stronger defense against CryptoLock and other attackers.
We find that their quality has fallen off over the years. Unfortunately, it just doesn't provide a level of protection that's needed at this point. They need better prevention and detection. Too many threats are getting through their protection, and causing an infection of the machines, actually. Webroot is very reactionary. It waits until the threat is active within memory to try and detect it. They need better pre-execution detection and prevention.
Sys Admin at a tech services company with 11-50 employees
Real User
Top 20
2020-06-28T08:51:00Z
Jun 28, 2020
Tech support needs to be improved. If we have an issue, and we don't have an issue very often, trying to get support's attention is a really difficult endeavor. Their DNS support is underwhelming. There are side portions of their environment that we don't use because it creates more problems than it's worth. The feature that we would most like to see incorporated is DNS support. At the moment their DNS solution is problematic.
I think the one bad point about this product is that we did not find a way for Webroot to generate reports or schedule automatic reports to be sent to clients. These would be reports on the status of their device, the status of their security, and information about backups. The option for providing this information is not there and we cannot run the scan from our end. It must be run from the client's end. My only other hope would be that they would still continue providing this product. But they have scheduled it for end-of-life on March 1st or April 1st. I do not know why they are removing it from the market. But it is obviously their decision to make.
Chief Technology Officer at a tech services company with 51-200 employees
Real User
2019-12-02T09:27:00Z
Dec 2, 2019
There's no static analysis inside their solution. The solution should add the capability to use cloud access so that we can provide clients with an endpoint code. There needs to be more advanced analytics. It would make it a more powerful antivirus solution within the marketplace.
This product has room for improvement to display a more detailed representation of the problem when a virus is or isn't stopped. We need to know more details about how the virus interacted with the computer. That is where some of the other products are starting to look better. It needs to work without disconnecting everyone. This is very important. In SentinelOne, you can disable all ports. You can look up the machine, play with the machine, etc. Webroot can do all sorts of things on the network. It's very good. There are some cool possibilities for more control within the environment. We have a broad list of plugins to use with a high degree of confidence. Backups are another aspect that can be improved. Having a backup solution that's associated with this in the case everything fails and the machine was destroyed would help us get the files back in emergencies.
Webroot Business Endpoint Protection provides comprehensive endpoint protection, antivirus, and security features across devices like mobiles, computers, and servers to prevent malware and other threats.
Webroot Business Endpoint Protection helps businesses manage endpoint security through its robust cloud application and integrates with RMM tools for improved management and pricing. It offers EMS service, automatic updates, and a lightweight agent, ensuring ease of use and minimal...
Webroot Business Endpoint Protection needs to improve its ability to detect threats. It does not do what it's advertised to do. Real-time threat detection also doesn't work as it should.
I now have a test account with Webroot and the management console, which is a different experience from when I used Webroot Business Endpoint Protection privately. I haven't finished the testing phase with the tool yet, so I can't really say what needs improvement in the product. Though the UI and documentation offered by Webroot are better than those of Trend Micro, I believe that Webroot Business Endpoint Protection should offer a more modern UI.
Webroot Business Endpoint Protection is an antivirus, making it hard to compare to other products in the market. Improvement-wise, the solution has improved on quite a few things now. Webroot Business Endpoint Protection needs to focus on how they can widen their area of scope by not just being an antivirus tool anymore. The shortcoming in the customization area of the tool needs improvement.
Webroot should provide more information on the type of cyber attacks similar to SentinelOne. It would be helpful for administrators to have advanced control over threats.
The only complaint I have with Webroot is its inability to prevent UoD phishing and its inability to check against bots or block anti-attacks. Plus the URL server is in zero-definition.
Their customer support should be better. We started having some issues with it, and we didn't get the required support.
Usually, when it comes to reliability, McAfee and Norton are at 99 percent. Webroot's percentage is lower. It is 94% reliable in terms of what it catches, but you're trading that percentage for customer satisfaction because your computer isn't being constantly told that it just blocked something, or it just did something.
We've had a couple of events both this year and last year where it just didn't seem to catch ransomware, which is impossible to do if someone has hands-on with the system. There were some things that they had or used to have or don't have that I still haven't figured out called journaling. And it was supposed to be a way to roll back changes that were made. However, they're telling me they don't have that. That's not in the system. It’s my understanding that it doesn’t actually scan any files at all. They just look at their database of files they've scanned previously, and either it matches or doesn't. That might be where the shortcoming is, is that it just can't stay up-to-date fast enough to stop new things that are coming in. It's an after-the-fact anti-virus. It doesn't do anything proactive. The virus has to hit the machine before it detects it. There is one thing that is deplorable with the product that I would change as soon as I found a better one. However, the reports are worthless. You go and look at a scan report and cannot get a log of machines. I can log into a console and see the files were scanned every day at 2:00 AM, and they all passed green or something was detected and removed. However, you have to go to the console. I don't have anything that I can send to my client on reports. What they give you is a bunch of bar graphs with no details. You can't drill down. It'll say two infections. However, it doesn't tell you what machines. You've just really got several different reports, and they're all just a bunch of graphs and wasted paper. There's nothing really substantial. The reports that I can use for client-facing, once a month, to say, "Here, we scanned all these workstations. Here are our results," don’t exist. They've got fake reports. I've screamed about that for years, and they just won't do anything. Therefore, I created my own little up-to-date or not ask fail-type report. I send that to them in place of a report directly from a product.
I'm not happy with Webroot Business Endpoint Protection, for only one reason. It seems that it slows down my interface when I'm doing programming in Microsoft Access, tremendously. When I'm just using Access, it seems to work fine. But when I'm doing the Access programming, it slows down substantially. Sometimes I wait maybe five, or six seconds for different screens to come up. It probably costs me 15 to 20 minutes every day. It's aggravating. I am currently looking for a replacement. However, I will say I've never gotten malware with Webroot Business Endpoint Protection.
Looking for the Next Gen Webroot to leverage Multi Core Architecture supported by a robust Operating System Executive that is fully aware of it's underlying Hardware Architecture and Foundation; with live integration and feed into most reliable OTXs in real time. Additional video on really demonstrating the runtime features of the product would be helpful. For example, how do you do continual data monitoring? How do you verify their connections? A lot of people know about antivirus protection, however, the product does a whole lot more. They can do a whole lot more. Since they're dealing with multi-core environments now, the best option would be for them to enhance the product so that the product can automatically do an assessment on the machine.
Areas for improvement would be the reporting system in the admin console. In the next release, I would like them to add features to run comments or take remote control to the admin control and also features to be installed on mobile devices.
One of the biggest pain points is that it's not really ransomware-oriented. They will be able to catch some, but that's where Sentinel One is a better player compared to Webroot.
The solution could improve by providing better ransomware protection. If Webroot could match up to something similar to what a CrowdStrike or SentinelOne is providing, I would consider Webroot again. For example, there are more advanced features such as EDR and sandboxing. In SentinelOne, when there is a threat it automatically does the analysis and provides you with detailed reports, but Webroot is lacking in the details.
Its detection capability for certain attacks should be improved. It should have better and wider detection for certain malware attacks. It could also have some sort of RMN.
We've had some issues with the solution. We were attacked by CryptoLock. It's not the best in security. As we were breached, we'll be looking for a new solution next year. We need to have a stronger defense against CryptoLock and other attackers.
We find that their quality has fallen off over the years. Unfortunately, it just doesn't provide a level of protection that's needed at this point. They need better prevention and detection. Too many threats are getting through their protection, and causing an infection of the machines, actually. Webroot is very reactionary. It waits until the threat is active within memory to try and detect it. They need better pre-execution detection and prevention.
Tech support needs to be improved. If we have an issue, and we don't have an issue very often, trying to get support's attention is a really difficult endeavor. Their DNS support is underwhelming. There are side portions of their environment that we don't use because it creates more problems than it's worth. The feature that we would most like to see incorporated is DNS support. At the moment their DNS solution is problematic.
I think the one bad point about this product is that we did not find a way for Webroot to generate reports or schedule automatic reports to be sent to clients. These would be reports on the status of their device, the status of their security, and information about backups. The option for providing this information is not there and we cannot run the scan from our end. It must be run from the client's end. My only other hope would be that they would still continue providing this product. But they have scheduled it for end-of-life on March 1st or April 1st. I do not know why they are removing it from the market. But it is obviously their decision to make.
There's no static analysis inside their solution. The solution should add the capability to use cloud access so that we can provide clients with an endpoint code. There needs to be more advanced analytics. It would make it a more powerful antivirus solution within the marketplace.
This product has room for improvement to display a more detailed representation of the problem when a virus is or isn't stopped. We need to know more details about how the virus interacted with the computer. That is where some of the other products are starting to look better. It needs to work without disconnecting everyone. This is very important. In SentinelOne, you can disable all ports. You can look up the machine, play with the machine, etc. Webroot can do all sorts of things on the network. It's very good. There are some cool possibilities for more control within the environment. We have a broad list of plugins to use with a high degree of confidence. Backups are another aspect that can be improved. Having a backup solution that's associated with this in the case everything fails and the machine was destroyed would help us get the files back in emergencies.