No more typing reviews! Try our Samantha, our new voice AI agent.

BlackBerry Cylance Cybersecurity vs Kaspersky Next XDR Optimum comparison

Sponsored
 

Comparison Buyer's Guide

Executive SummaryUpdated on Apr 9, 2026

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Cortex XDR by Palo Alto Net...
Sponsored
Ranking in Endpoint Protection Platform (EPP)
4th
Average Rating
8.4
Reviews Sentiment
6.8
Number of Reviews
114
Ranking in other categories
Endpoint Detection and Response (EDR) (6th), Extended Detection and Response (XDR) (4th), Ransomware Protection (2nd), AI-Powered Cybersecurity Platforms (1st)
BlackBerry Cylance Cybersec...
Ranking in Endpoint Protection Platform (EPP)
32nd
Average Rating
8.0
Reviews Sentiment
4.6
Number of Reviews
44
Ranking in other categories
No ranking in other categories
Kaspersky Next XDR Optimum
Ranking in Endpoint Protection Platform (EPP)
11th
Average Rating
8.0
Reviews Sentiment
7.2
Number of Reviews
124
Ranking in other categories
Endpoint Compliance (5th), Endpoint Detection and Response (EDR) (21st), Extended Detection and Response (XDR) (14th)
 

Mindshare comparison

As of July 2026, in the Endpoint Protection Platform (EPP) category, the mindshare of Cortex XDR by Palo Alto Networks is 3.8%, up from 3.7% compared to the previous year. The mindshare of BlackBerry Cylance Cybersecurity is 1.5%, up from 1.1% compared to the previous year. The mindshare of Kaspersky Next XDR Optimum is 2.2%, down from 3.5% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Endpoint Protection Platform (EPP) Mindshare Distribution
ProductMindshare (%)
Cortex XDR by Palo Alto Networks3.8%
Kaspersky Next XDR Optimum2.2%
BlackBerry Cylance Cybersecurity1.5%
Other92.5%
Endpoint Protection Platform (EPP)
 

Featured Reviews

ABHISHEK_SINGH - PeerSpot reviewer
Senior Process Expert at A.P. Moller - Maersk
Gained full visibility and streamlined threat detection through behavior-based insights and AI integration
Initially, we got to have a lot of false positives when we onboarded, but nowadays it's quite smooth. We have fine-tuned our security policies and allowed different levels of policies to get rid of those false positives. Currently, we are getting a fairly good amount of incidents that are not false positives or benign, but actionable items. The process is streamlined. In the initial days, the operations used to get involved in a lot of benign and other activities, but now the process is streamlined. We are leveraging the auto-detection and remediation plans. The operations teams are now more involved in other business roles as well, not just looking into the logs and fetching out what's happening there. They have fixed a lot of things. Initially, they didn't have IAC code drift detection, cloud posture management, or security posture management, but they have those now. They purchased different vendors and did a merger with that. They have now Prisma Cloud that gets integrated and now they are working with Cortex Cloud. Everything that was negative has now been addressed, and the product altogether looks to be in a very better and mature shape now. Currently, it's more or less detecting the workloads with AI-based best practices. Since most organizations are consuming AI agents and other things, we are looking forward to seeing what other feature enhancements Palo Alto can support in that.
Sooraj Makkancherrry - PeerSpot reviewer
Security Operations Manager at Philips
Doesn't have daily updates, which is important for healthcare IT
I face challenges with the exclusion policy - it still scans folders we told it not to, causing issues. When we contact support, they tell us to update the latest agent, but we can't do that immediately due to medical device protocols and validation testing. I wish support would try to understand our issues better instead of giving this standard response. The machine learning feature they use often tells us to upgrade the agent or add things to the exclusion list, which isn't unacceptable. It's a very good and new technology as a tool and antivirus. But sometimes, it doesn't work properly with our medical devices and products, quarantining files it shouldn't even after we add them to exclusions. This is tricky for us.
SR
Group CIO at Thal Industries Corporation Ltd
Have maintained strong endpoint protection through behavioral analysis and daily monitoring
I previously mentioned that Kaspersky Endpoint Security for Business doesn't have built-in DLP, which was a concern. I think they could add it in the future; however, antivirus cannot provide a proper DLP solution, but they can offer a mix of DLP, similar to Trend Micro Apex One, which provides some sort of DLP file management. Nonetheless, we need a proper DLP solution such as Forcepoint or Symantec, whichever suits us. We'll be conducting performance evaluation in the next quarter while working on other projects. More value means a better GUI, user interface, and comprehensive reporting capabilities. In Sophos, we receive a daily system-generated report about what is happening, plus an alert system. The reporting system in Trend Micro is also excellent; I receive an email every day at 10:00 AM with a report for the last 24 hours.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The scalability of Cortex XDR by Palo Alto Networks is very good."
"Implementing Cortex XDR by Palo Alto Networks has had a significant impact on my security analyst workload because it becomes much easier."
"The stability is pretty good except for one or two cases, and based on the performance, it's been okay with pretty high performance, no bugs or glitches, and it doesn't crash or freeze."
"The solution's most valuable feature is the user interface."
"Stability is a primary factor, and then there's the ease of distribution and policy management; Cortex XDR by Palo Alto Networks is very easy to work with, and we're quite happy with them."
"The product is mostly automated, and we do not have to make decisions, because all the decisions are made by the product itself and we are not required to create any custom policies since the policies that are created are well defined in the product itself."
"The most valuable features are the fact that it was running in the background and it would intercept any weird stuff, and the fact that it would send things directly to the cloud for sandboxing. It's quite practical."
"Cortex XDR is stable, offering high quality and reliable performance."
"A user can continue to add endpoints and the solution will continue to perform well."
"CylancePROTECT works on AI technology, is always up to date, and uses very few resources on your devices."
"The initial endpoint cost may seem a little high (~$55/device/year), but when you look at the total peace of mind that the solution of Cylance endpoint protection provides, with no reboots for updates, and negligible performance impact, it is well worth it."
"The solution is easy to deploy."
"The non-daily requirement to update signatures is the most valuable feature. From a functional point of view, it is pretty spot on. For instance, we compared an algorithm from five years ago to today's algorithm, and it was 98% accurate. It has the ability to detect and mitigate. In the industrial environment that we work in, there's what we call OT versus IT. You are IT Central, but this is OT. Generally, we don't have the same level of skillset as IT individuals or IT professionals have. This particular product doesn't require you to be a computer scientist to be able to understand its proprietary algorithm and to be able to deploy, use, and work within it. It integrates well with a robust SIEM or SOAR solution, and it plays nice with others. We use other detection solutions like CyberX or site provision with Cisco, and it plays nice. That's one of the things we really liked about it."
"I rate the tool a ten out of ten when it comes to the ease of use or management part."
"The solution is extremely scalable. It's got the hybrid functionality, it's got the system functionality and cloud functionality as well."
"We chose the solution because it doesn't have daily updates, which is important for us in healthcare IT, where network usage and connectivity to hospitals matter."
"For the SMB segment, it's an optimal solution that is pocket-friendly, and easy to manage."
"The product is quite scalable."
"We have no issues with the stability of Kaspersky Endpoint Security for Business."
"The solution is very easy to use. It's an extremely user-friendly product."
"The online privacy they provide users when they're doing online transactions has been great."
"The initial setup is very simple."
"The solution is user-friendly and the dashboard is good."
"One of the most valuable features of this product is that it's good for endpoint protection."
 

Cons

"For Cortex XDR by Palo Alto Networks, if I had to point out improvements, I would say the UI is still somewhat difficult for beginners."
"The negative aspect I see is the economic model used by Palo Alto."
"Cortex XDR by Palo Alto Networks could improve by adding a sandbox feature to better compete with their competitors which have it."
"The downsides of Cortex XDR by Palo Alto Networks are that in many incidents, when I enter the causality chain, there are numerous logs."
"The solution should add unwanted malicious hash values to a block list so that whenever the action is triggered, it will automatically prevent the malicious content."
"Cortex XDR by Palo Alto Networks can improve mobile integration to allow access to the console."
"We have found that there are times Cortex XDR by Palo Alto Networks does not detect some of the viruses, we have to use another protection solution called Kaspersky."
"It would be good if they could make an exception for applications. Sometimes, it can be a bit of a challenge to make exceptions for certain applications that have been used as rogue."
"CylancePROTECT's dashboard could be more user-friendly."
"The solution’s user interface could be improved."
"An area for improvement in CylancePROTECT is its pricing, as it's a bit costly."
"It should have better support for Windows and Mac."
"The solution should implement AI in the product."
"Additionally, their channel management has been lacking, with a notable disregard for small and medium-sized businesses, focusing primarily on large enterprises and very large MSPs."
"The product needs to continue to offer better alerts, in particular around false positives, and it needs to reduce them from happening."
"Enhancing the product's detection rates and streamlining the user interface for easier management in daily operations would be beneficial improvements."
"There are times when we see an agent has been disabled on a machine, and we are not able to determine the reason."
"Web Control and vulnerability need work."
"As far as improvements, maybe the licensing could be cheaper, but I think this solution is pretty okay."
"Kaspersky and most other security products have a lot of modules. They recently added several new ones. You find yourself buying and deploying so many things. There are some modules that everyone uses, like, for example, the orchestration module. Instead of selling them separately, it would be better to have bundles or an all-in-one license."
"I would like to see better reporting."
"A big improvement would be allowing us to reconfigure the agents and change what to whitelist for a specific user. If the user is not happy with the configuration and is being blocked from certain sites, we should be able to reconfigure the monitoring mechanics to make it more flexible."
"I rate the pricing five out of ten."
"The admin console must be a little bit easier."
 

Pricing and Cost Advice

"Cortex XDR’s pricing is very reasonable."
"The pricing is okay, although direct support can be expensive."
"In terms of the cost Cortex XDR by Palo Alto Networks is very expensive because we are a Mexican company and when you translate dollars to pesos the cost is very high. The solution is very expensive for Mexican companies. I understand that they have international prices, but I do not think it offsets the price enough for many companies in countries, such as Mexico. The amount it is reduced is not a massive percentage."
"Traps pays for itself within the first 16 months of a three-year subscription. This is attributed to OPEX savings, as security teams spent less time trying to identify and isolate malware for analysis as a result of a reduction in malware incidents, false positives, and breach avoidance."
"We pay about $50,000 USD per year for a bundle that includes Cortex XDR."
"The pricing seems fair, and I do like the licensing model. You use wherever they are, and it is elastic."
"Licensing for Palo Alto Networks Cortex XDR can be costly, especially when it comes to a hundred users. A license is required for each user, and the subscription must be renewed on a yearly basis."
"It has a yearly renewal."
"​Shop around for sure and be assured the price you pay will be close to other solutions available, but even at a slight mark-up from the other solutions, you are getting real endpoint protection versus nothing more than a cheap security blanket that might keep you warm at night."
"We would just add more if there are new users, but right now you just need one license for per user."
"The licensing part of the product is too expensive compared to other solutions in the market."
"The product cost is about $5, per user, per month."
"Our licensing cost for the solution is around $4,000 for six months. There are no costs in addition to the standard licensing fees."
"It's not so heavily priced; rather, it's average and decent."
"CylancePROTECT is an affordable solution."
"I think that the price we are paying is good for what it is."
"Kaspersky Endpoint Security for Business is not an expensive solution."
"I prefer paying for a yearly license because it has some discounts. One of the companies I work for pays for the Business Select license, for 100 users."
"Licensing fees are paid on a yearly basis."
"We have been using a yearly subscription and feel that pricing could be better. Perhaps, discounts could be given, during the renewal process, to those who have been customers for some time."
"The licensing is affordable. We bought a three-year license. There are no additional costs in addition to the standard license fees."
"We have approximately 700 licenses for this solution and we pay annually."
"It would be beneficial if the price could be reduced, and improved management of the license allocation for adding additional Endpoint users would be advantageous."
"Licensing fees are paid on a yearly basis."
report
Use our free recommendation engine to learn which Endpoint Protection Platform (EPP) solutions are best for your needs.
904,680 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Construction Company
12%
Financial Services Firm
11%
Manufacturing Company
10%
Comms Service Provider
9%
Construction Company
11%
Manufacturing Company
7%
Financial Services Firm
7%
Comms Service Provider
7%
Construction Company
9%
Manufacturing Company
9%
Financial Services Firm
8%
Comms Service Provider
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business46
Midsize Enterprise21
Large Enterprise53
By reviewers
Company SizeCount
Small Business33
Midsize Enterprise5
Large Enterprise14
By reviewers
Company SizeCount
Small Business63
Midsize Enterprise27
Large Enterprise33
 

Questions from the Community

Cortex XDR by Palo Alto vs. Sentinel One
Cortex XDR by Palo Alto vs. SentinelOne SentinelOne offers very detailed specifics with regard to risks or attacks. ...
Comparing CrowdStrike Falcon to Cortex XDR (Palo Alto)
Cortex XDR by Palo Alto vs. CrowdStrike Falcon Both Cortex XDR and Crowd Strike Falcon offer cloud-based solutions th...
How is Cortex XDR compared with Microsoft Defender?
Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface,...
What is your experience regarding pricing and costs for Blackberry Protect?
The price is reasonable for us at the moment. I rate the overall solution an eight out of ten.
What needs improvement with Blackberry Protect?
I face challenges with the exclusion policy - it still scans folders we told it not to, causing issues. When we conta...
What is your primary use case for Blackberry Protect?
I am using CylancePROTECT as an active learning algorithm. We installed it on almost 20,000 servers and virtual machi...
What needs improvement with Kaspersky Endpoint Security?
Kaspersky Endpoint Security for Business does not have encryption tools. It uses the Windows BitLocker tool, which is...
What is your experience regarding pricing and costs for Kaspersky Endpoint Security for Business?
The pricing and licensing cost of Kaspersky Endpoint Security is cheaper compared to Trend Micro.
What is your primary use case for Kaspersky Endpoint Security for Business?
I have good experience in the sales part of Kaspersky Endpoint Security for Business, not the technical side. I am no...
 

Also Known As

Cyvera, Cortex XDR, Palo Alto Networks Traps
Blackberry Protect
Kaspersky Work Space Security, Kaspersky Endpoint Security
 

Overview

 

Sample Customers

CBI Health Group, University Honda, VakifBank
Panasonic, Noble Energy, Apria Healthcare Group Inc., Charles River Laboratories, Rovi Corporation, Toyota, Kiewit
ACMS, Arqiva, Pakistan International Airlines, RAO UES
Find out what your peers are saying about BlackBerry Cylance Cybersecurity vs. Kaspersky Next XDR Optimum and other solutions. Updated: June 2026.
904,680 professionals have used our research since 2012.