However, Mariana quickly hit the well-known pain point of post-acquisition Symantec. The interface was powerful but dense . It had been built over a decade, with tabs for “Brand Protection,” “Threat Intelligence,” “Data Loss Prevention,” and “Web Isolation.” David complained: “It feels like flying a 747 when I just need a drone. To report a fake Instagram account, I have to navigate three different modules.”
Symantec’s advantage was its context . When David clicked on the dark web listing, the platform didn’t just show a screenshot. It cross-referenced the seller’s handle with historical threat actor profiles, linked it to prior attacks on banking sector, and even provided a confidence score (87% likely tied to the TA544 gang). This was not a simple scanner; it was a fusion of OSINT and Symantec’s proprietary threat research. However, Mariana quickly hit the well-known pain point
She kept Symantec DRP for and executive brand impersonation , because no other vendor in her bake-off (she tested Group-IB, ZeroFox, and Proofpoint) provided the same level of adversary intelligence. To report a fake Instagram account, I have
Symantec’s team began with a 72-hour “discovery sprint.” Mariana was impressed by the sheer data density. Unlike niche DRP startups that focused only on takedowns, Symantec brought its legacy in threat intelligence (DeepSight) and global telemetry from 175 million endpoints. This was not a simple scanner; it was
Fast for Tier-1 platforms (Google, Meta, Microsoft). Slower for emerging or hostile platforms (Telegram, Discord, X).