BlackBerry Cylance Cybersecurity Reviews

I am using CylancePROTECT as an active learning algorithm. We installed it on almost 20,000 servers and virtual machines.

We chose the solution because it doesn't have daily updates, which is important for us in healthcare IT, where network usage and connectivity to hospitals matter.

We had a major incident where CylancePROTECT found malware in one customer's file that other antivirus programs missed.

I face challenges with the exclusion policy - it still scans folders we told it not to, causing issues. When we contact support, they tell us to update the latest agent, but we can't do that immediately due to medical device protocols and validation testing. I wish support would try to understand our issues better instead of giving this standard response. The machine learning feature they use often tells us to upgrade the agent or add things to the exclusion list, which isn't unacceptable.

It's a very good and new technology as a tool and antivirus. But sometimes, it doesn't work properly with our medical devices and products, quarantining files it shouldn't even after we add them to exclusions. This is tricky for us.

I have been working with the product for four years. 

I rate the tool's stability a six out of ten. 

I rate the solution's scalability a seven out of ten. My company has 256183 users. 

The setup is easy—I'd rate it eight out of ten. We use it both in the cloud and on-premises. If everything is configured correctly, deployment takes about two minutes per server.

The tool has probably improved incident response times. Cost-wise, they charge us decently compared to other antiviruses.

The price is reasonable for us at the moment. I rate the overall solution an eight out of ten. 

I don't think it's a bad product, but I hope they can understand how healthcare IT works differently from banking or normal IT companies. If their algorithm or machine learning technique could understand our specific needs with medical devices and products, it would help us a lot.

The biggest benefit is avoiding network performance issues from daily updates. I advise healthcare companies considering CylancePROTECT to work closely with them to help them understand your products and do thorough testing. For other IT companies, it should be more straightforward. Overall, including cost, support, and scalability, I'd rate CylancePROTECT seven out of ten.

CylancePROTECT is our antivirus replacement that was deployed on every workstation and server. We intend to block anything malicious, except we had to maintain a list of white lists. We had white lists from members to protect certain areas of Cylance.

We had to whitelist and maintain it. There were around over 200 exemptions within our environment that I didn't like. With CrowdStrike, we have two exemptions so far.

CylancePROTECT is a fairly decent antivirus. As far as I know, we haven't had any incidents of known malicious code executed on a device that had CylancePROTECT. It was able to block everything that was thrown at it. The solution's dashboards were pretty clean and very clear to understand.

It would be good to have a unified agent with EDR and CylancePROTECT. Making the dashboards a bit modern to make them easier to search would also be helpful.

CylancePROTECT is a scalable solution, but its downside was that we had to maintain a list of exemptions.

We generally had issues with the solution's technical support. We had a dedicated engineer to whom we could reach out without support. We had an alternative path, but you might not have that luxury if you're a smaller customer.

Neutral

The solution was implemented to provide protection, and we saw 100% value. I don't think we had any incidents of ransomware or anything major on a device that had CylancePROTECT on it.

The solution's pricing is around the same as most EDRs but slightly behind some of the major ones.

On a scale from one to ten, where one is cheap and ten is expensive, I rate the solution's pricing a six or seven out of ten.

I don't know if AI is generally a buzzword, but CylancePROTECT is the next-gen antivirus. It is generally smarter than a traditional signature-based antivirus. There are rules in place that would generally enhance it compared to a traditional antivirus. I don't know if that's an AI feature per se.

I have tested the solution against some new malware. Generally, CylancePROTECT picks them up at some stage of execution based on their behavior, even if they don't pick them up initially. The solution is fairly good at handling emerging threats.

I don't think there are many differences between CylancePROTECT and other antivirus solutions. Some controls are fine-tuned or need to be fine-tuned within CylancePROTECT. Things like member protect and script controls need a little extra lift from our side to enable them. However, out-of-the-box features of traditional antivirus protection are all pretty much the same.

Overall, I rate the solution a seven out of ten.

The solution is used to protect our endpoints. It can be used for computers and mobile devices.

The solution automatically protects the endpoints from any antivirus and cyber attacks.

The solution runs in the background, and I do not need to care about it. I'm quite satisfied with it. The UI is fine. The performance is pretty good.

The stability could be improved.

I have been using the solution for a few years.

I rate the tool’s stability an eight or nine out of ten.

The tool is quite scalable. We have nearly 300 users. The number of users will increase with the increase in staff.

The setup is pretty straightforward. The solution is cloud-based. Our internal IT team does it automatically.

The product gives us peace of mind, knowing our endpoints are protected.

We pay a license fee. The tool is not that expensive.

I used Sophos and other products before. CylancePROTECT is much better than the others. It does not use up many resources, and it performs well. Sometimes, the other tools use a lot of resources, and the performance drops eventually.

People who want to use the product must set it up for automatic updates. Once the product starts running, we do not need to worry about anything. Overall, I rate the solution an eight out of ten.

We use it for protecting our endpoints. We have a specific use case involving a closed and secure environment devoid of internet connectivity, where Cylance is utilized due to its ability to operate without requiring updates for at least twelve months.

We integrate it into our comprehensive cybersecurity strategy, specifically for antivirus and antiviral purposes. CylancePROTECT provides comprehensive endpoint security, including EDR capabilities. Additionally, BlackBerry now offers XDR, similar to other companies like CrowdStrike and SentinelOne. 

The AI-driven threat detection of CylancePROTECT has significantly enhanced our organization's security posture. This company has pioneered an AI-based engine that doesn't rely on signatures, thus offering protection for every computer, server, and endpoint without requiring specific signatures for malware or other attacks.

Cylance stands out for pioneering the delivery of a complete AI-driven antivirus engine that relies primarily, if not solely, on AI and machine learning for threat identification. Remarkably, it identifies over 99.7% of global threats.

I've found the AI engine in CylancePROTECT to be particularly effective for technology and in preventing unknown threats.

Following the acquisition by BlackBerry, there has been a noticeable slowdown in development and the introduction of new features. Additionally, their channel management has been lacking, with a notable disregard for small and medium-sized businesses, focusing primarily on large enterprises and very large MSPs.

I have been working with it for three years.

It provides good stability capabilities.

With the cloud-based version of CylancePROTECT, it is easy to download agents and deploy them within seconds, aligning with our organization's policies.

I would rate its customer service and support seven out of ten. It would be preferable to have immediate support from a highly skilled technical team that resolves issues swiftly without the burden of lengthy ticket queues.

Neutral

Deploying CylancePROTECT is relatively straightforward, but there are areas for improvement to make it even easier. One main issue is the continued existence of two agents for the same solution. Despite discussions over the past few years, merging CylancePROTECT and CylancePROTECT into a single EDR solution with a single agent has yet to be achieved.

Deployment time varies depending on the network, but the implementation of CylancePROTECT is generally rapid, while adding EDR functionality may take longer. There's room for improvement in policy management, as the granularity of policy settings can be complex, especially when monitoring diverse operating systems, environments, and services. Simplifying this aspect would benefit not only large enterprises but also small and medium-sized companies.

The ease of management and deployment of CylancePROTECT does not significantly impact our team's productivity.

Currently, we have competitive pricing for Cylance, which is affordable enough to consider. However, similar pricing can also be obtained from vendors like CrowdStrike and SentinelOne due to the competitive nature of the market. Moreover, with many traditional antivirus solutions now branding themselves as EDR, pricing alone may not be the deciding factor. It often boils down to negotiating discounts aggressively. So, pricing is just one aspect of a complex decision-making process.

My primary recommendations for clients are Cylance (now part of BlackBerry), SentinelOne, and CrowdStrike. These solutions represent the core of what I offer to clients. Cylance, acquired by BlackBerry, has a solid historical track record and offers a reliable solution. However, I find SentinelOne and CrowdStrike to be more innovative in the market. Both companies prioritize endpoint security as their core focus and allocate all their resources to enhance endpoint protection. This dedication is evident in their technology, market strategies, channel management, OEM agreements, brand penetration, growth, and investments. Overall, I would rate it seven out of ten.

I used the solution in my company after we tested it against a ransomware attack. In my company, we presented CylancePROTECT with the challenge of dealing with real-time ransomware attacks, during which we saw that it works very well. In my company, we use the tool to control our devices since its device control feature is excellent. Compared to the other vendors in the market, CylancePROTECT has a much shorter turnaround time for policy applications. Otherwise, we can have granular controls over what can be run on the endpoint machines when it comes to areas involving scripting or running PowerShell scripts. Scripting or running PowerShell scripts can be controlled very well through CylancePROTECT.

The high price of the product is an area of concern where improvements are required. The product's price should be more competitive.

I have been using CylancePROTECT for more than four years.

It is a stable solution.

Based on what we have seen so far in our company, I see that we keep on adding licenses without facing any issues, a reason why I would consider it to be referred to as an enterprise solution. The product is scalable.

There are around 250 to 300 users of the solution in my company.

The product is used on a daily basis in my company because it is attached to our endpoint devices that need to be protected.

In the last four years, my company has not had a reason to contact the technical support team of the product. I have seen that whenever our company had doubts, the tool's SIs used to support us, but I can say that it was not very often.

My company used to use McAfee, specifically when we had McAfee ePolicy Orchestrator. I have experience with multiple solutions, like Symantec, McAfee, and ESET.

My company started to use CylancePROTECT after considering its AI-based capabilities, and due to the fact that it is light on the endpoints. My company also liked the fact that CylancePROTECT is from BlackBerry.

The installation phase is easy.

In terms of deployment, you can just have a centralized deployment involving PDQ Deploy, or you can have Cylance downloaded and then run it on individual endpoints.

For a size of more than 200 deployments, a company may need two to three staff members to take care of the centralized deployment phase.

As long as you are not out of business because of security breaches, you can experience an ROI from the use of the solution. The ROI of the tool stems from the fact that it runs for 24 hours and 365 days, offering protection.

The licensing part of the product is too expensive compared to other solutions in the market. There are other competitors of CylancePROTECT in the market who have been keeping the prices of their products low. If you plan to go with CylancePROTECT, CylanceOptics, and EDR, then it can be expensive.

There were no additional costs attached to the solution apart from the standard licensing charges apart from charges that my company had to pay to the integrators from AMC, which is a very small amount. In general, it is a license subscription model that requires users to make annual payments.

When it comes to zero trust network access, we use CylancePROTECT with CylanceOptics in my company which functions more like an EDR solution.

The most effective feature of the product for threat detection stems from one of its features, which helps users with the script-blocking process. The tool has the device control, which is very effective. The solution also has something like a self-protection feature to ensure that a user is not allowed to remove it easily. The tool does not have a single uninstallation process, and I know that an administrator must tweak the registry before uninstalling it.

All in all, I rate the tool a ten out of ten when it comes to performance.

I rate the tool a ten out of ten when it comes to the ease of use or management part.

The AI-driven protection model benefits our company because CylancePROTECT is not a signature-based solution,but operates as an AI-based tool which is excellent. Even if the device is not connected to your internet, it is still protected with CylancePROTECT, which offers AI-based endpoints, ensuring that continuously, around the clock, the tool tries to look at some behavioral-based impact on the systems.

False positives do happen because of the behavioral-based nature of the tool. The tool quarantines some of your false positives even when you think they are required in the tool. Though CylancePROTECT quarantines certain false positives, you can always whitelist them if you are absolutely sure about it.

Removing the antivirus from an environment is a difficult task. It can be helpful since it won't allow anyone to remove it from a particular environment where it is installed.

Others can either choose CylancePROTECT or any other endpoint solution. Depending on the budget, I find CylancePROTECT to be a stable product since it offers what it promises to deliver, while also being an AI-based tool, with something that people need right now. There is no point in going for signature-based antivirus or endpoint solutions. I can recommend CylancePROTECT to others.

It is very hard when you want to uninstall the solution from any device because you will have to apply a different policy to it and know what you are doing with the product. It takes time to remove the product from the system. In general, it is an excellent product.

Removing the solution from a system is a difficult task, making it in areas where improvements are required. It is also an accessory to keep in mind that a certain level of difficulty is required during the uninstallation phase.

As long as you are aware of IT and part of an IT team, the deployment, and management of the tool across the company's endpoints will be easy.

I rate the tool a ten out of ten.

The product is perfect for the business that I am working in. It works as needed.

The solution provides us with the protection that the company needs against ransomware, malware, and viruses.

The solution’s AI is its most valuable feature. The tool is great once you get to know it.

The product must make the interface a little more user-friendly. It has a little bit of a learning curve. The solution must subsidize the learning curve a little bit.

I have been using the solution for six to seven years.

I rate the tool’s stability a ten out of ten.

I rate the tool’s scalability a ten out of ten.

The initial setup was straightforward.

I have seen an ROI on the product.

I pay for an initial amount of licenses. I tell the solution providers if I need more or fewer licenses next year, and they charge me accordingly. If I pay for fifty licenses and end up having a hundred, I have to just pay for it through my next renewal. It's very easy. The solution provides me with competitive pricing. I was a long-term customer and was grandfathered in.

The solution is cloud-based. People wanting to use the solution must have patience. Overall, I rate the solution a nine out of ten.

The product is easy to implement and deploy.

I cannot control the agent. If the agent is installed on a machine, then it'll report back. If I have 15 machines on an agent, I cannot see that 15 machines unless I install the agent on each.

The solution is not stable right now. The performance isn't so good.

It's a hard product to maintain. 

I have found support to be quite bad. 

We want them to offer better pricing. 

I have not found the solution to be stable at this time. 

While it can scale, it's not scalable right now. 

The whole company is working with the solution. We have 30,000 machines with it.

Technical support is bad. I am not happy with the level of support they offer. We have no proper resolutions.

I previously used McAfee. At first, CylancePROTECT was better, however, now we are unhappy with its capabilities. In the end, they couldn't support our product

The solution is easy to deploy. However, it is hard to manage. 

I don't have to worry about maintenance. I don't handle any maintenance tasks. 

The pricing is not reasonable. I'm not sure of the exact number. However, we'd prefer if we paid less. 

I'm a customer and end-user.

I'd advise potential users that, if they think that the features will represent your organization or the company, then it is fine. Otherwise, don't do it.

I would rate the solution five out of ten.

We are mainly using this solution on our desktop PCs. It provides endpoint protection.

What I like most about Blackberry Protect is that it's easy to deploy. As an end user, you won't need to do anything.

I find the price for Blackberry Protect expensive, so that's an area for improvement.

I've been using Blackberry Protect for over two years.

I find this solution stable.

Blackberry Protect is a scalable solution.

We previously used Symantec End-User Endpoint Security, but we switched to Blackberry Protect because of company policy.

We implemented this in-house through our IT team.

The license price for this solution could be better. It's on the expensive side.

We're on a yearly license for this solution. I'm not sure, but I believe there isn't any extra cost, apart from the license fee.

We evaluated Symantec End-User Endpoint Security.

I'm using the latest version of Blackberry Protect.

I'm not responsible for the actual setup and installation of this solution. It was our IT team who was responsible, but I believe that the setup and installation was straightforward.

For the deployment and maintenance of Blackberry Protect, we used three technical guys. They were all from IT and they provided support internally, which included support for Blackberry Protect, its license, etc.

We have 100 users of Blackberry Protect.

I didn't have the chance to contact the technical support team for this solution.

I'm recommending Blackberry Protect to other people who want to start using it.

Blackberry Protect is a good solution, so I'm rating it an eight out of ten.

We use the solution for endpoint protection.

It is a good endpoint solution. It is very easy to manage and detect a threat immediately. It will take the necessary actions.

The solution should implement AI in the product. The main purpose of CylancePROTECT is to prevent infections on our endpoints and increase security. The more intelligence the product gains, the better it is for us. Currently, it is already intelligent. It will require updates to continue improving and detecting the latest threats. Threat intelligence must always be preferred in AI machines; it will always radiate with new threats and learning.

I have been using CylancePROTECT for four years. We are using the latest version of the solution.

I rate the solution’s stability an eight out of ten.

Three to four people are using this solution. I rate the solution’s scalability a nine to ten out of ten.

The initial setup is straightforward and takes one to two days to complete.  It requires configuration and implementation from the backend.

I rate the initial setup a nine out of ten, where one is difficult and ten is easy.

We saved our employees and endpoints.

The product has a yearly subscription.

I rate the product’s pricing a five out of ten, where one is cheap, and ten is expensive.

We have evaluated Trend Micro. We switched to CylancePROTECT because it is cloud-based and very easy to manage. It's an advanced feature like AI implementation and integration.

Maintenance is automated. It automatically updates itself, so manual patching operations are unnecessary. Updates occur automatically in the background on client system endpoints regardless of the subject matter.

CylancePROTECT handles zero-day threats and unknown malware in your environment. They have implemented something called AI detection. It will detect all the things. If it is a host, it will alert; if it is anything in PeerSpot, it will also alert.

Overall, I rate the solution a nine out of ten.

Our clients use CylancePROTECT for endpoint detection and antivirus.

The most valuable feature of CylancePROTECT is the support.

The solution’s user interface could be improved.

I have been using CylancePROTECT for two years.

I rate the solution’s stability a seven out of ten.

Our clients for CylancePROTECT are usually small and enterprise businesses.

I rate the solution an eight out of ten for scalability.

The solution’s technical support is good.

Positive

The solution’s initial setup was easy.

On a scale from one to ten, where one is difficult and ten is easy, I rate the solution's initial setup a seven out of ten.

Our clients have seen a good return on investment with CylancePROTECT.

On a scale from one to ten, where one is cheap and ten is expensive, I rate the solution's pricing a seven out of ten.

Overall, I rate the solution a seven out of ten.