# ThreatDown Reviews **Vendor:** Malwarebytes **Category:** [Endpoint Protection Platforms](https://www.g2.com/categories/endpoint-protection-platforms) **Average Rating:** 4.6/5.0 **Total Reviews:** 1,083 ## About ThreatDown ThreatDown is an all-in-one cybersecurity platform that delivers enterprise-grade protection without the complexity. Built to make advanced cybersecurity accessible without adding headcount. ThreatDown MDR monitors your environment around the clock, investigates alerts on your behalf, and takes action to contain threats before they spread— delivering the protection of an in-house SOC without the cost. One lightweight agent. One cloud-based console. ThreatDown brings endpoint and identity security together with patch management, vulnerability assessment, DNS filtering, and email security—eliminating tool sprawl and reducing operational overhead. Native EDR and ITDR telemetry connects user activity with endpoint behavior, giving teams the full attack story so they can detect and respond faster. Backed by nearly two decades of Malwarebytes expertise, ThreatDown pairs award-winning detection with a patented remediation engine that removes every trace of malware to prevent reinfection. It stops ransomware, credential theft, zero-day exploits, phishing, and human-operated attacks—and goes further with built-in ransomware rollback to help organizations recover quickly. Deploy in minutes. See value fast. Recognized as an MRG Effitas Product of the Year and a G2 Leader, ThreatDown is consistently rated for ease of use, rapid deployment, and high-quality support. ThreatDown Solutions ThreatDown MDR (Managed Detection and Response) delivers 24/7/365 human-led threat monitoring, investigation, and remediation powered by Malwarebytes detection and AI-driven engines—closing the security resource gap and reducing risk from unknown threats. ThreatDown EDR (Endpoint Detection and Response) protects against ransomware, zero-day exploits, phishing, and human-operated attacks that bypass prevention layers, with the tools to detect, investigate, and contain threats. ThreatDown ITDR (Identity Threat Detection and Response) stops identity-based attacks by continuously monitoring credential, privilege, and access behavior across Active Directory, Microsoft Entra ID, and Okta. Native correlation with EDR delivers unified endpoint-to-identity visibility and response—closing the post-authentication gap that IAM and MFA leave open. For Partners Our multi-tenant ThreatDown OneView platform enables MSPs and IT admins to streamline operations with centralized management of customer endpoints, license subscriptions, reporting, and global policies. With products and services like Endpoint Detection and Response (EDR), Managed Detection and Response (MDR) and the rest of our technologies in our portfolio, partners can offer the right product or service to each customer, tailored to their specific needs. Find out more about our partner program at https://www.threatdown.com/partner-program. ## ThreatDown Pros & Cons **What users like:** - Users praise the **ease of use** of ThreatDown, finding deployment and integration straightforward and efficient. (99 reviews) - Users love the **user-friendly interface** and effective integration of ThreatDown, enhancing their security management experience. (68 reviews) - Users value the **effective threat prevention** of ThreatDown, ensuring comprehensive security across all their devices. (59 reviews) - Users value the **effective threat detection** of ThreatDown, ensuring peace of mind while navigating online. (56 reviews) - Users praise the **responsive and attentive customer support** of ThreatDown, ensuring effective solutions and quick assistance. (54 reviews) - Users highlight the **effective protection** ThreatDown provides against malware, ensuring robust security for their systems. (53 reviews) - Easy Management (40 reviews) - Easy Installation (36 reviews) - Dashboard Usability (34 reviews) - Centralized Management (33 reviews) **What users dislike:** - Users express frustration with the **poor customer support** , particularly the absence of chat assistance for troubleshooting. (23 reviews) - Users find the **lack of clarity** in security scoring and dashboard metrics hinders their ability to assess risks effectively. (22 reviews) - Users feel that **missing features** in ThreatDown, like flexible module selection and better integration, limit its usability. (20 reviews) - Users report frequent **false positives** , suggesting the need for better integration to distinguish normal files and behavior. (18 reviews) - Users express frustration with **communication issues** due to inconsistent customer service and lack of direct chat support. (16 reviews) - Users experience **poor support services** with ThreatDown, leading to frustration and unresolved technical issues. (15 reviews) - Users often face **agent issues** impacting device identification and the uninstallation process, complicating their experience. (13 reviews) - Delay Issues (13 reviews) - Learning Curve (13 reviews) - Limited Features (13 reviews) ## ThreatDown Reviews ### 1. Reliable and Streamlined Endpoint Security **Rating:** 5.0/5.0 stars **Reviewed by:** Bartosz B. | Inżynier systemu, Small-Business (50 or fewer emp.) **Reviewed Date:** September 17, 2025 **What do you like best about ThreatDown?** ThreatDown provides a very intuitive interface that makes day-to-day security monitoring fast and efficient. The deployment process is smooth, updates roll out seamlessly, and the platform consolidates multiple threat insights into one dashboard. Its lightweight agent runs quietly in the background while still offering deep visibility, which saves time and improves response accuracy. **What do you dislike about ThreatDown?** Reporting customization could be more flexible, as exporting detailed logs sometimes requires additional steps. Integration with certain third-party tools is available but not always as straightforward as expected, leading to some extra configuration work. A few advanced features take longer to master, especially for new administrators, which slightly slows down the initial learning curve. **What problems is ThreatDown solving and how is that benefiting you?** ThreatDown is helping us reduce the time and complexity of endpoint protection by centralizing detection, response, and reporting in a single platform. It solves the problem of fragmented visibility—rather than juggling multiple tools, we can quickly see threats, their severity, and recommended actions in one place. Automated remediation has cut down the manual effort our team used to spend on isolating or cleaning infected endpoints, which directly reduces downtime. The biggest benefit is efficiency: incidents are resolved faster, analysts spend less time on repetitive triage tasks, and overall risk exposure is significantly lowered. It also improves confidence during audits since logs and compliance reporting are easier to generate and verify. **Official Response from Grace B:** > Hi Bartosz, Thank you for taking the time to share your feedback—we really appreciate you being a ThreatDown customer. It’s great to hear that the intuitive interface and centralized dashboard are helping your team monitor and respond to threats more efficiently. We’re glad the lightweight agent, smooth deployment, and automated remediation are saving time and reducing complexity across your environment. We also appreciate your feedback around reporting, integrations, and the learning curve for advanced features—insights like this are valuable as we continue to enhance the platform and experience. If any new questions or feedback come up, please don’t hesitate to reach out to us. Grace ### 2. Amazing experience **Rating:** 5.0/5.0 stars **Reviewed by:** Jean M. | Network administrators, Mid-Market (51-1000 emp.) **Reviewed Date:** November 15, 2024 **What do you like best about ThreatDown?** ThreatDown has been very helpful, particularly with its patch management capabilities. The ability to deploy updates and remotely restart computers directly from the console when a software update is pending is extremely efficient and saves significant administrative time. The centralized management interface simplifies oversight and reduces manual intervention. At this time, I have not experienced any issues or complaints with the platform. **What do you dislike about ThreatDown?** One area where ThreatDown could improve is user communication functionality. Currently, there is no built in feature that allows administrators to send direct messages or notifications to end users from the console. Having the ability to push alerts, maintenance notifications, or security related messages to users would enhance administrative efficiency and improve overall incident response coordination. **What problems is ThreatDown solving and how is that benefiting you?** ThreatDown is solving key challenges related to endpoint security, patch management, and centralized visibility. It allows us to manage threat detection, remediation, and software updates from a single console, which significantly reduces administrative overhead. Automated patch deployment helps minimize vulnerabilities and lowers our overall attack surface, while remote remediation capabilities enable faster incident response without needing physical access to devices. As a result, we benefit from improved operational efficiency, stronger security posture, reduced downtime, and better overall control of our endpoint environment. **Official Response from Grace B:** > Hi Jean, Thank you for taking the time to share your feedback—we really appreciate you being a ThreatDown customer. It’s great to hear that ThreatDown is helping streamline patch management and reduce administrative overhead through centralized control and remote capabilities. We’re glad the platform is improving efficiency while strengthening your overall security posture. We also appreciate your feedback, insights like this are valuable as we continue to enhance the platform. If any new questions or feedback come up, please don’t hesitate to reach out to us. Grace ### 3. Peace of mind in a fast and easy to use package, now with even more features! **Rating:** 5.0/5.0 stars **Reviewed by:** Roberto C. | Small-Business (50 or fewer emp.) **Reviewed Date:** November 02, 2023 **What do you like best about ThreatDown?** We have recently integrated MDR (Managed Detection and Response) and it has been a godsend. While I can still use the Nebula console to manage my endpoints, with MDR I'm less worried about missing anything that might cause harm to our company. They also revamped the Nebula console so everything looks and feels more intuitive. **What do you dislike about ThreatDown?** I still don't have a GUI for schedule scans, but I have been told it is getting worked on. **What problems is ThreatDown solving and how is that benefiting you?** Keeping us safe from exterior attacks and preventing our end users from allowing attacks to happen (can't monitor everyone manually, so Malwarebytes really helps in that sense), teaching me (and from me to our end users) to be a better technology user (following safe practices posted in their reports and insights, helping others follow suit, etc.), protecting our clients data when we request a backup of their data (personal health information), peace of mind in not forgetting those safe practices mentioned. **Official Response from Angela Kelleher:** > Hi Roberto! We're happy to hear that you find our customer support easy to contact and appreciate the follow-ups. We'll certainly take your feedback about the scheduled scan GUI and Malwarebytes removal into consideration for future improvements. It's great to know that ThreatDown is helping to keep you safe from exterior attacks and teaching you and your end users to be better technology users. Thank you for sharing your experience and for choosing ThreatDown! Best regards. Angela ### 4. I tried the rest and have found the best!!! This is our 8th year! Still awesome! **Rating:** 5.0/5.0 stars **Reviewed by:** David G. | Tech Support Specialist, Mid-Market (51-1000 emp.) **Reviewed Date:** November 19, 2019 **What do you like best about ThreatDown?** As a School District, we don't have the resources to waste time on malware issues. We love Threatdown for protecting our Macs and PC's. It is such a time-saver and a comfort to know that we are protected. **What do you dislike about ThreatDown?** The product has exceeded our expectations. We have enjoyed eight years of fabulous service. **Recommendations to others considering ThreatDown:** Just do it!! You will not be disappointed!! Contact a Sales person and ask to see their product demonstration. You will be impressed and see why I think Malwarebytes is such a great product. **What problems is ThreatDown solving and how is that benefiting you?** We are getting a total solution for our Macintosh and Dell computers. We are noticing a drastic decrease in problems since we started using Malwarebytes. We had all kinds of issues with Avast and Symantec. We are seeing exploits blocked so teachers are not calling with all the pop-up problems and malware messages. Also, we are using the Malwarebytes Chrome extension to protect our browser. They also have a free malware blocker plugin for most web browsers. There is a wonderful online training that explains how to manage from the cloud. After five years we can honestly say we are still very very happy. **Official Response from Malwarebytes Anti-Malware Mobile:** > We're always looking to improve and are ecstatic to learn we've exceeded your expectations, David! ### 5. I love this platform. I check it every day. The user interface is simple to use. 1 click updates. **Rating:** 4.5/5.0 stars **Reviewed by:** Tom F. | IT Support Engineer, Mid-Market (51-1000 emp.) **Reviewed Date:** April 09, 2025 **What do you like best about ThreatDown?** Ease of use. Fast response time. 1 click updates. **What do you dislike about ThreatDown?** Nothing really I think it is a great platform and highly recommend it to anyone in this market. **What problems is ThreatDown solving and how is that benefiting you?** Software updates. Windows patches. Reports of usage. DNS filtering and MDR. ### 6. Malwarebytes is so easy to set up and provides comprehensive coverage **Rating:** 3.0/5.0 stars **Reviewed by:** Tony D. | Information Technology Specialist, Mid-Market (51-1000 emp.) **Reviewed Date:** November 20, 2019 **What do you like best about ThreatDown?** The new updates sometimes slows down the product, but all in all it still does what it's supposed **What do you dislike about ThreatDown?** Too much reliance on AI is causing the app to lose it's draw factor. **Recommendations to others considering ThreatDown:** The tools that Malwarebytes provides is good. There is a tool that lets you know how many installs have been made, and which machines have been hit the most by spyware or malware. If you keep tabs on this, you will feel a lot safer about your network. **What problems is ThreatDown solving and how is that benefiting you?** We have been using the tool to protect our users from dangerous sites. We receive quite a lot of spam through emails, especially phishing emails. Malwarebytes catches these phishing attempts and most of the time will report it to us. The benefits have been wonderful. We can go to bed at night knowing that our systems are safe. **Official Response from Angela Kelleher:** > Hi Tony Thank you for the five star review, we really appreciate it! And going to bed at night knowing your systems are safe is exactly what we aim to do, glad to have your back! Best regards Angela ### 7. Effective macOS Security with Language Barrier **Rating:** 4.0/5.0 stars **Reviewed by:** Johannes O. | Geschäftsführer, Small-Business (50 or fewer emp.) **Reviewed Date:** May 21, 2024 **What do you like best about ThreatDown?** I find that ThreatDown is a very good solution for macOS clients to enhance security. It's good that users are not constantly bothered with notifications about scans being performed. ThreatDown works in the background and only requires the user's attention when it is really necessary. This makes it a valuable tool for me. Additionally, the initial setup is simple and intuitive. **What do you dislike about ThreatDown?** The client on macOS does not yet offer all the features available on Windows. Additionally, it is only localized in English, and there are no notifications, reports, or other things in other languages. Everything is in English. This is very disadvantageous for some customers. **What problems is ThreatDown solving and how is that benefiting you?** I appreciate ThreatDown for the security on macOS clients, without bothering the users with unnecessary scan notifications. **Official Response from Angela Kelleher:** > Hi Johannes, Thank you for your positive feedback on ThreatDown's feature set and performance on Macs. We apologize for any inconvenience caused by the lack of browser support on macOS. We are actively working on enhancing our product to provide a more comprehensive solution for your security needs. Many thanks, Angela ### 8. Invisible Protection, Seamless User Experience **Rating:** 5.0/5.0 stars **Reviewed by:** Mike B. | IT Manager, Small-Business (50 or fewer emp.) **Reviewed Date:** December 22, 2020 **What do you like best about ThreatDown?** I use ThreatDown to protect end user devices from malware, ransomware, viruses, and for patch deployment and updates. I love the ease of use and the seamless user interface. ThreatDown is intuitive and easy to use with its web interface, and the end user application is simple and lightweight, not hogging a lot of computer resources. I love that it's basically invisible to the end users and how easy it is to manage and push out configuration changes, updates, and patch management. The management is easy and straightforward in the web management portal, with easy-to-follow guides, best practices, and tutorials that make setup and configuration seamless, fast, and easy. I appreciate that the lightweight application doesn't disturb end users or eat up their device resources, as it's one of the few protection suites where we see virtually no impact on the end user device resources. ThreatDown is simple and easy to set up and deploy, and I couldn't be more pleased with the ease of install and configuration. We migrated from Trend Micro Worry Free Business Security to ThreatDown several years ago and could not be more pleased, having far fewer instances of users getting compromised. **What do you dislike about ThreatDown?** I have no issues with ThreatDown at this time. I am very happy with the product suite and the offerings in it. If anything could be improved, I think adding some options for the end user application to run scans and custom scans would be beneficial but are certainly not deal breakers. **What problems is ThreatDown solving and how is that benefiting you?** I use ThreatDown to protect devices from malware and ransomware while ensuring our network is secure against threats. Its intuitive interface makes management easy, and it operates seamlessly without affecting device resources, safeguarding against user compromise. **Official Response from Grace B:** > Hi Mike, Thank you for taking the time to share your feedback—we really appreciate you being a ThreatDown customer. It’s great to hear that ThreatDown is delivering strong protection while remaining lightweight and easy to manage across your environment. We’re glad the intuitive interface, seamless deployment, and minimal impact on end user devices are helping your team stay secure without added complexity. It’s also great to hear about your successful migration and the reduction in user compromise—that kind of impact is exactly what we aim for. We appreciate your suggestion around adding more end-user scan options as well—feedback like this helps inform how we continue to improve the platform. If any new questions or feedback come up, please don’t hesitate to reach out to us. Grace ### 9. Seamless Integration, Budget-Friendly Security **Rating:** 4.5/5.0 stars **Reviewed by:** Gareth W. | Computer Support Specialist, Small-Business (50 or fewer emp.) **Reviewed Date:** March 19, 2026 **What do you like best about ThreatDown?** I use ThreatDown to protect our computers and servers from malware attacks. I like the software suite and ease of use, as well as the easy integration into our Windows-based systems with less false positives than other software. This not only gives us peace of mind but helps us stay on budget by reducing the total cost of ownership. I also appreciate the simple, quick setup process, which is well backed with instructions. Another reason I enjoy ThreatDown is its cost-effectiveness compared to our previous solution, Symantec Endpoint Protection. **What do you dislike about ThreatDown?** I think the software suits all of MY needs. To someone else there may be features missing but for me, only using a fraction of the capabilities, its everything I want. **What problems is ThreatDown solving and how is that benefiting you?** I use ThreatDown to protect our computers and servers from malware, giving peace of mind. It's easy to use, integrates well with Windows, reduces false positives, and helps us stay on budget by lowering total cost of ownership. **Official Response from Grace B:** > Hi Gareth, Thank you for taking the time to share your feedback—we really appreciate you being a ThreatDown customer. It’s great to hear that ThreatDown is providing strong protection while remaining easy to use and integrate into your Windows environment. We’re glad it’s helping reduce false positives and support your team in maintaining security while staying on budget, and that the setup process was smooth and straightforward. If any new questions or feedback come up, please don’t hesitate to reach out to us. Grace ### 10. Painless Setup, Robust Endpoint Protection **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Consumer Services | Small-Business (50 or fewer emp.) **Reviewed Date:** August 01, 2024 **What do you like best about ThreatDown?** I use ThreatDown for patching, monitoring, and securing endpoints. It makes the patching of systems easy for me and shows which systems have vulnerabilities that need to be corrected. I like that it allows me to sleep at night knowing that the system is being monitored and if any malware or ransomware attempts are made, they will be taken care of. It allows me to focus on other things in the environment while knowing that the security and updates on endpoint systems are being taken care of. ThreatDown is also great for protecting against websites that have infections and blocking things from coming into my network. The setup was super easy, and the Managed Services make everything else super easy too. **What do you dislike about ThreatDown?** IT is a bit too restrictive on MS Word, PowerPoint, and Excel. Sometimes it does not like the formulas and can be too restrictive to the point that I turned off the setting for restricting MS Office. **What problems is ThreatDown solving and how is that benefiting you?** ThreatDown makes patching easy, identifies systems with vulnerabilities, and lets me focus on other tasks by handling security and updates. It protects against infected websites and blocks threats, giving me peace of mind. **Official Response from Grace B:** > Hi! Thank you for taking the time to share your feedback—we really appreciate you being a ThreatDown customer. It’s great to hear that ThreatDown is helping simplify patching, improve visibility into vulnerabilities, and give you peace of mind knowing your environment is protected. We’re glad the platform is allowing you to stay secure while focusing on other priorities, and that setup and managed services have made things easy along the way. We also appreciate your feedback around MS Office restrictions—insights like this are valuable as we continue to refine the experience. If any new questions or feedback come up, please don’t hesitate to reach out to us. Grace ## ThreatDown Discussions - [Does Malwarebytes work on servers?](https://www.g2.com/discussions/does-malwarebytes-work-on-servers) - 1 comment, 2 upvotes - [How to allow program in App Data to be used](https://www.g2.com/discussions/how-to-allow-program-in-app-data-to-be-used) - 2 comments, 2 upvotes - [Is it possible to use run more thorough 'complete' scans manually?](https://www.g2.com/discussions/33880-is-it-possible-to-use-run-more-thorough-complete-scans-manually) - 1 comment, 1 upvote - [Using Malwarebytes EDR in a midsize company needs extra investment for web filter?](https://www.g2.com/discussions/using-malwarebytes-edr-in-a-midsize-company-needs-extra-investment-for-web-filter) - 4 comments, 1 upvote - [How are anti-virus softwares made?](https://www.g2.com/discussions/how-are-anti-virus-softwares-made) - 1 comment, 1 upvote - [View ThreatDown pricing details and edition comparison](https://www.g2.com/products/threatdown/reviews/threatdown-review-3480559?section=pricing&secure%5Bexpires_at%5D=2026-05-25+17%3A47%3A12+-0500&secure%5Bsession_id%5D=6be98f29-e11a-45d1-adf5-7e9fdf36c59b&secure%5Btoken%5D=fcf7aa2464dc1571a561d50efaee4fb9a97b474f27b1f691ea7f1fd8f5b61146&format=llm_user) ## ThreatDown Integrations - [ConnectWise Automate](https://www.g2.com/products/connectwise-automate/reviews) - [Datto RMM](https://www.g2.com/products/datto-rmm/reviews) - [HCL BigFix](https://www.g2.com/products/hcl-technologies-hcl-bigfix/reviews) - [Jira](https://www.g2.com/products/jira/reviews) - [Kaseya BMS](https://www.g2.com/products/kaseya-bms/reviews) - [Kaseya VSA](https://www.g2.com/products/kaseya-vsa/reviews) - [Microsoft Entra ID](https://www.g2.com/products/microsoft-entra-id/reviews) - [Microsoft Outlook](https://www.g2.com/products/microsoft-outlook/reviews) - [Microsoft Sentinel](https://www.g2.com/products/microsoft-sentinel/reviews) - [Microsoft Teams](https://www.g2.com/products/microsoft-teams/reviews) - [Palo Alto Networks Cortex XSOAR](https://www.g2.com/products/palo-alto-networks-cortex-xsoar/reviews) - [Splashtop Remote Access](https://www.g2.com/products/splashtop-remote-access/reviews) - [Splunk Enterprise Security](https://www.g2.com/products/splunk-enterprise-security/reviews) - [Swimlane](https://www.g2.com/products/swimlane/reviews) - [Torq AI SOC Platform](https://www.g2.com/products/torq-ai-soc-platform/reviews) - [Wazuh](https://www.g2.com/products/wazuh/reviews) - [Webroot Business Endpoint Protection](https://www.g2.com/products/webroot-business-endpoint-protection/reviews) ## ThreatDown Features **Administration** - Compliance - Web Control - Application Control - Asset Management - Device Control **Platform Features** - 24/7 support - Proactive report alerts - Application control - Proactive threat hunting - Rapid response time - Customizeable reports - Managed Services **Generative AI** - AI Text Generation - AI Text Summarization **Generative AI** - AI Text Summarization **Services - Endpoint Detection & Response (EDR) ** - Managed Services **System Control** - Device Control - Web Control - Application Control - Asset Management - System Isolation **Functionality** - System Isolation - Firewall - Endpoint Intelligence - Malware Detection **Automation Capabilities** - Automated remediation - Automated investigation - AI Agents **Vulnerability Prevention** - Endpoint Intelligence - Firewall - Malware Detection **Analysis** - Automated Remediation - Incident Reports - Behavioral Analysis **Security Management** - Incident Reports - Security Validation - Compliance ## Top ThreatDown Alternatives - [CrowdStrike Falcon Endpoint Protection Platform](https://www.g2.com/products/crowdstrike-falcon-endpoint-protection-platform/reviews) - 4.6/5.0 (385 reviews) - [ESET PROTECT](https://www.g2.com/products/eset-protect/reviews) - 4.6/5.0 (931 reviews) - [SentinelOne Singularity Endpoint](https://www.g2.com/products/sentinelone-singularity-endpoint/reviews) - 4.7/5.0 (195 reviews)