Try our new research platform with insights from 80,000+ expert users

BlackBerry Cylance Cybersecurity vs Cortex XDR by Palo Alto Networks comparison

BlackBerry and Palo Alto Networks are both solutions in the Endpoint Protection Platform (EPP) category. BlackBerry is ranked #31 with an average rating of 8.3, while Palo Alto Networks is ranked #5 with an average rating of 8.7. BlackBerry holds a 1.1% mindshare in EPP, compared to Palo Alto Networks’s 3.8% mindshare. Additionally, 85% of BlackBerry users are willing to recommend the solution, compared to 95% of Palo Alto Networks users who would recommend it.
BlackBerry Cylance Cybersec...
Read 44 BlackBerry Cylance Cybersecurity reviews
  • 2,953 Views
  • 2,658 Comparison Views
85% willing to recommend
Cortex XDR by Palo Alto Net...
Read 91 Cortex XDR by Palo Alto Networks reviews
  • 16,066 Views
  • 10,282 Comparison Views
95% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Jul 27, 2025

BlackBerry Cylance Cybersecurity and Cortex XDR by Palo Alto Networks compete in the advanced cybersecurity solutions category, focusing on protection against malware and endpoints. Cortex XDR seems to have the upper hand due to its extensive integration and comprehensive dashboard offerings.

Features: BlackBerry Cylance offers a lightweight client with minimal resource usage, AI-driven threat detection effective against zero-day threats, and centralized management with script blocking and application protection. Cortex XDR provides strong integration capabilities, extended visibility across endpoints and networks, and behavior-based detection with automated response features.

Room for Improvement: BlackBerry Cylance needs to enhance its alerting system and reduce false positives, improve integration with other security tools, and refine its user interface for better management and reporting. Cortex XDR should address memory consumption and false positives, increase customization options, and reduce configuration complexity while potentially adding URL filtering and sandbox capabilities.

Ease of Deployment and Customer Service: Both products offer deployment options including Public Cloud, On-premises, and Hybrid Cloud. BlackBerry Cylance is easier to set up, whereas Cortex XDR has a more complex initial setup but offers superior customer service, rated consistently high for responsiveness.

Pricing and ROI: BlackBerry Cylance is generally viewed as expensive but delivers good value due to its capabilities, with varying pricing experiences due to licensing models requiring negotiation. Cortex XDR is also on the expensive side, particularly in some regions, yet delivers substantial ROI with its comprehensive threat detection and response capabilities.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed BlackBerry Cylance Cybersecurity vs. Cortex XDR by Palo Alto Networks Report (Updated: September 2025).
Buyer's Guide
BlackBerry Cylance Cybersecurity vs. Cortex XDR by Palo Alto Networks
September 2025
Download the complete report
Helped 867,370 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

BlackBerry Cylance Cybersec...
Ranking in Endpoint Protection Platform (EPP)
31st
Average Rating
8.0
Reviews Sentiment
4.6
Number of Reviews
44
Ranking in other categories
No ranking in other categories
Cortex XDR by Palo Alto Net...
Ranking in Endpoint Protection Platform (EPP)
5th
Average Rating
8.4
Reviews Sentiment
7.4
Number of Reviews
91
Ranking in other categories
Extended Detection and Response (XDR) (7th), Ransomware Protection (2nd), AI-Powered Cybersecurity Platforms (4th)
 

Mindshare comparison

As of September 2025, in the Endpoint Protection Platform (EPP) category, the mindshare of BlackBerry Cylance Cybersecurity is 1.1%, down from 1.4% compared to the previous year. The mindshare of Cortex XDR by Palo Alto Networks is 3.8%, down from 4.6% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Endpoint Protection Platform (EPP) Market Share Distribution
ProductMarket Share (%)
Cortex XDR by Palo Alto Networks3.8%
BlackBerry Cylance Cybersecurity1.1%
Other95.1%
Endpoint Protection Platform (EPP)
 

Featured Reviews

Sooraj Makkancherrry - PeerSpot reviewer
Doesn't have daily updates, which is important for healthcare IT
I face challenges with the exclusion policy - it still scans folders we told it not to, causing issues. When we contact support, they tell us to update the latest agent, but we can't do that immediately due to medical device protocols and validation testing. I wish support would try to understand our issues better instead of giving this standard response. The machine learning feature they use often tells us to upgrade the agent or add things to the exclusion list, which isn't unacceptable. It's a very good and new technology as a tool and antivirus. But sometimes, it doesn't work properly with our medical devices and products, quarantining files it shouldn't even after we add them to exclusions. This is tricky for us.
Read full review
NiteshSharma - PeerSpot reviewer
Automated threat response and behavioral control improve security measures
I recommend adding a data loss prevention (DLP) solution to Cortex XDR by Palo Alto Networks. The inclusion of this feature would allow the application of DLP policies alongside antivirus policies via a single agent and console, making it more competitive as other OEMs often offer DLP solutions as part of their antivirus products. Additionally, multi-tenancy and multi-cloud features are not available and should be considered for inclusion.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"In most cases, the solution's ability to detect in the MITRE framework, and its ability to be able to detect attacks in any one of seven or eight different areas of the life cycle of an attack is very useful."
"​Centralized dashboard online which can be used for managing a huge product."
"You can manage all the threats and everything from a centralized dashboard."
"The most valuable features are script blocking and macros within Word documents for stopping unwanted applications from running in the background."
"The most valuable feature of CylancePROTECT is the support."
"I've found the AI engine in CylancePROTECT to be particularly effective for technology and in preventing unknown threats."
"Its setup is simple if you have a Windows device; it is executable."
"The solution is easy to deploy."
More BlackBerry Cylance Cybersecurity pros
"The product has an intuitive dashboard."
"After deploying Traps, we saw the performance of the network improve by 65 to 70 percent."
"One of the things that I enjoy the most is using policy extensions. It's like having host firewalls to control USB connections. I think it's a wonderful tool to restrict use when connecting to our computers. Another important tool is Home Insights. That is an add-on to the Cortex solution. I like that because we can see all the vulnerabilities in the environment and control what assets are connected to our network."
"The management capabilities, allow an IT organization to get quite a good picture of attempted cyber attacks."
"We have a complete overview of all our PCs and it's very easy to handle and to use the interface. It has a lot of benefits for us."
"I've found the solution to be highly scalable for enterprises."
"The solution allows us to make investigations. Other XDR solutions also provide similar capabilities but for investigation, Cortex XDR is better."
"They did what they said. This solution could apply to any scenario."
More Cortex XDR by Palo Alto Networks pros
 

Cons

"While you are working, you are finding these things that were supposed to be waived have come back to being blocked. That's frustrating."
"It could have integration with industrial base HMIS or Human Machine Interfaces Solutions. This is the industrial environment where you have a control center for all the automation that's happening, whether it is oil, gas, or chemical manufacturing. They often have to set up a computer at the back and watch the other stuff to get alerts. In these autonomous or on-premises environments, they often don't have access to email readily. Integration with other industrial solutions, such as HMIS, will allow them to communicate and get an alert that something has been found. This way, they can react to it sooner than having somebody watch the screen and keep checking the screen. Rockwell has its own suite. Similarly, Honeywell has its own suite. There's also an independent HMI/historian solution provider out there called VTSCADA. We actually get asked if we can get it to show up on a screen, which is difficult. Getting those alerts to work within an industrial environment would be a huge plus."
"It was not effective. There were a lot of false positives, even when we use Adobe, and everybody uses Adobe, which is not a threat."
"The security scripting needs improvement. It needs deeper security for scripting."
"The product does not do a lot of reporting on what it is taking care of. Enhanced reporting would be a welcome improvement."
"The OPTICS component could be made more user-friendly with respect to giving people more information."
"Making the dashboards a bit modern to make them easier to search would also be helpful."
"CylancePROTECT's dashboard could be more user-friendly."
More BlackBerry Cylance Cybersecurity cons
"Cortex does not offer an on-premises solution. However, some customers would prefer not to be on the cloud. It would be ideal if it could offer something on-prem as well."
"I would like to see improvement in the tool's user interface, particularly in the area of managing alerts and providing more reporting capabilities."
"There's an overall lack of features."
"The solution should offer more dashboards and they should be better customized."
"The server sometimes stops continuously to check things so it would be helpful to receive access updates or technical reasons."
"It would be good if they could make an exception for applications. Sometimes, it can be a bit of a challenge to make exceptions for certain applications that have been used as rogue."
"It is not easy to sell Cortex XDR, not because it isn't a good tool. Its marketing needs to be improved."
"It automatically detects security issues. It should be able to protect our network devices while operating autonomously."
More Cortex XDR by Palo Alto Networks cons
 

Pricing and Cost Advice

"My company is on a yearly CylancePROTECT subscription. Price-wise, the solution is slightly expensive, so I'd rate it as eight out of ten."
"The licensing part of the product is too expensive compared to other solutions in the market."
"Do not get hung up on price. You pay for what you get and expensive will hurt one time, where cheap will hurt forever, especially if you fall victim to a ransom attack, etc.​"
"CylancePROTECT's pricing is reasonable, at about €18 per user, per year."
"The price is reasonable for us at the moment. I rate the overall solution an eight out of ten."
"The solution's pricing is around the same as most EDRs but slightly behind some of the major ones."
"Currently, we have competitive pricing for Cylance, which is affordable enough to consider."
"The license price for this solution could be better. It's on the expensive side."
More BlackBerry Cylance Cybersecurity pricing and cost advice
"If one wishes to work with another team or large number of users at a future point, he must purchase a license for them."
"I feel it is fairly priced."
"Our customers have expressed that the price is high."
"Cortex XDR by Palo Alto Networks is an expensive solution."
"When we first bought it, it was a bit expensive, but it was worth it. The licensing was straightforward."
"The price was fine."
"In terms of the cost Cortex XDR by Palo Alto Networks is very expensive because we are a Mexican company and when you translate dollars to pesos the cost is very high. The solution is very expensive for Mexican companies. I understand that they have international prices, but I do not think it offsets the price enough for many companies in countries, such as Mexico. The amount it is reduced is not a massive percentage."
"I did PoCs on products called Cylance and CrowdStrike. Although, I consider these products and they were also good, when it come to cost and budgetary factors, Traps has been proven to be better than the other two products. It is quite cost-effective and delivers all the entire solution which we require."
More Cortex XDR by Palo Alto Networks pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Endpoint Protection Platform (EPP) solutions are best for your needs.
See recommendations
867,370 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
11%
Manufacturing Company
11%
Government
7%
Comms Service Provider
6%
Computer Software Company
13%
Financial Services Firm
10%
Manufacturing Company
8%
Government
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business33
Midsize Enterprise5
Large Enterprise13
By reviewers
Company SizeCount
Small Business41
Midsize Enterprise18
Large Enterprise35
 

Questions from the Community

What do you like most about Blackberry Protect?
It is a good endpoint solution. It is very easy to manage and detect the threat immediately. It will take the necessary actions.
See all answers
What is your experience regarding pricing and costs for Blackberry Protect?
The price is reasonable for us at the moment. I rate the overall solution an eight out of ten.
See all answers
What needs improvement with Blackberry Protect?
I face challenges with the exclusion policy - it still scans folders we told it not to, causing issues. When we contact support, they tell us to update the latest agent, but we can't do that immedi...
See all answers
Cortex XDR by Palo Alto vs. Sentinel One
Cortex XDR by Palo Alto vs. SentinelOne SentinelOne offers very detailed specifics with regard to risks or attacks. The ability to reverse damage caused by ransomware with minimal interruptions to...
See all answers
Comparing CrowdStrike Falcon to Cortex XDR (Palo Alto)
Cortex XDR by Palo Alto vs. CrowdStrike Falcon Both Cortex XDR and Crowd Strike Falcon offer cloud-based solutions that are very scalable, secure, and user-friendly. Cortex XDR by Palo Alto offers ...
See all answers
How is Cortex XDR compared with Microsoft Defender?
Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface, applies behavioral-based endpoint protection and response, and includes risk-ba...
See all answers
 

Comparisons

CrowdStrike Falcon vs BlackBerry Cylance Cybersecurity Logo
CrowdStrike Falcon vs BlackBerry Cylance Cybersecurity
Compared 15% of the time
Microsoft Defender for Endpoint vs BlackBerry Cylance Cybersecurity Logo
Microsoft Defender for Endpoint vs BlackBerry Cylance Cybersecurity
Compared 14% of the time
SentinelOne Singularity Complete vs BlackBerry Cylance Cybersecurity Logo
SentinelOne Singularity Complete vs BlackBerry Cylance Cybersecurity
Compared 8% of the time
Symantec Endpoint Security vs BlackBerry Cylance Cybersecurity Logo
Symantec Endpoint Security vs BlackBerry Cylance Cybersecurity
Compared 7% of the time
Bitdefender Hypervisor Introspection vs BlackBerry Cylance Cybersecurity Logo
Bitdefender Hypervisor Introspection vs BlackBerry Cylance Cybersecurity
Compared 5% of the time
More BlackBerry Cylance Cybersecurity Competitors
Microsoft Defender for Endpoint vs Cortex XDR by Palo Alto Networks Logo
Microsoft Defender for Endpoint vs Cortex XDR by Palo Alto Networks
Compared 10% of the time
CrowdStrike Falcon vs Cortex XDR by Palo Alto Networks Logo
CrowdStrike Falcon vs Cortex XDR by Palo Alto Networks
Compared 6% of the time
Cortex XSIAM vs Cortex XDR by Palo Alto Networks Logo
Cortex XSIAM vs Cortex XDR by Palo Alto Networks
Compared 5% of the time
SentinelOne Singularity Complete vs Cortex XDR by Palo Alto Networks Logo
SentinelOne Singularity Complete vs Cortex XDR by Palo Alto Networks
Compared 5% of the time
Wazuh vs Cortex XDR by Palo Alto Networks Logo
Wazuh vs Cortex XDR by Palo Alto Networks
Compared 4% of the time
More Cortex XDR by Palo Alto Networks Competitors
 

Product Reports

Buyer's Guide
BlackBerry Cylance Cybersecurity
September 2025
BlackBerry Cylance Cybersecurity reportDownload BlackBerry Cylance Cybersecurity product report
Buyer's Guide
Cortex XDR by Palo Alto Networks
September 2025
Cortex XDR by Palo Alto Networks reportDownload Cortex XDR by Palo Alto Networks product report
 

Also Known As

Blackberry Protect
Cyvera, Cortex XDR, Palo Alto Networks Traps
 

Overview

BlackBerry Cylance provides endpoint security, threat protection, and antivirus capabilities, using AI and machine learning for protection against malware and ransomware on desktops, servers, and virtual machines worldwide. Its AI-driven threat detection operates even with limited internet, facilitating effective threat management.

BlackBerry Cylance's centralized dashboard simplifies threat management and vulnerability protection for organizations globally. The platform combines AI and machine learning to deliver superior zero-day threat protection and minimize CPU usage, offering stable and accurate threat detection without frequent updates. It includes tools like CylanceOPTICS and CylancePERSONA for enhanced user behavior monitoring and adopts a proactive approach that effectively manages threats at various lifecycle stages. Renowned for stability and performance, it efficiently prevents unauthorized applications while maintaining system productivity.

What are the main features of BlackBerry Cylance?
  • Minimal CPU Usage: Efficiently operates without taxing computer resources.
  • AI and Machine Learning: Advanced technology for zero-day threat protection.
  • Lightweight Design: Functions without constant updates for simplified usage.
  • Centralized Management: Offers a user-friendly, intuitive dashboard.
  • CylanceOPTICS and PERSONA: Tools for in-depth user behavior analysis.
What are key benefits to look for in user reviews?
  • Effective Malware Detection: Recognized accuracy in identifying security threats.
  • Proactive Threat Mitigation: Actively detects and manages threats.
  • Stability and Performance: Consistent protection without hampering system performance.
  • Reduced Unauthorized Access: Limits unpermitted application activity.

In the professional sector, BlackBerry Cylance is leveraged to protect crucial infrastructure through a robust approach accommodating environments with limited connectivity. Its widespread deployment in industries, including healthcare and finance, is attributed to its ease of deployment and comprehensive protection capabilities. However, enhancements in reporting, pricing structures, and technical support are avenues for development, reflecting user feedback for improving detection rates and overall dashboard usability.

BlackBerry

Cortex XDR by Palo Alto Networks delivers comprehensive endpoint security, integrating well with other systems to offer robust threat detection and real-time protection through AI-driven analytics.

Cortex XDR by Palo Alto Networks offers advanced endpoint protection and threat detection through AI and behavior-based analytics. Its user-friendly design simplifies integration with firewalls, delivering multi-layered protection with low resource consumption. Valued for policy management, USB control, and incident correlation, Cortex XDR enhances threat management and real-time threat hunting capabilities. However, users note challenges with third-party integration, reporting, and dashboard automation. Agent performance across operating systems and memory consumption are areas for improvement, alongside reducing false positives and simplifying endpoint management and setup.

What features does Cortex XDR offer?
  • Behavior-Based Detection: Analyzes user behavior to identify suspicious activities.
  • AI Analytics: Utilizes AI for accurate threat detection and response.
  • Real-Time Protection: Provides immediate defense against threats.
  • Policy Management: Allows customization of security policies across endpoints.
  • USB Control: Regulates USB device access for added security.
  • Incident Correlation: Connects and analyzes various security events for better response.
  • Firewall Integration: Seamlessly works with firewalls for enhanced security.
  • Machine Learning Capabilities: Continuously improves threat detection precision.
What benefits should be considered in reviews?
  • Low Resource Consumption: Efficient security functions without taxing system resources.
  • Multi-Layered Protection: Comprehensive security across multiple attack vectors.
  • User-Friendly Interface: Intuitive design for easier management.
  • Enhanced Threat Management: Identifies and mitigates threats effectively.
  • Real-Time Threat Hunting: Proactively searches for and mitigates potential threats.

Cortex XDR is crucial in industries requiring robust endpoint protection, such as finance, healthcare, and technology. It supports malware detection, behavioral analysis, and ransomware mitigation across endpoints, including remote work environments, providing comprehensive threat visibility and security policy management. The solution's integration with firewalls and specialized industry requirements enhances security posture in diverse operational settings.

Palo Alto Networks
 

Sample Customers

Panasonic, Noble Energy, Apria Healthcare Group Inc., Charles River Laboratories, Rovi Corporation, Toyota, Kiewit
CBI Health Group, University Honda, VakifBank
Buyer's Guide
BlackBerry Cylance Cybersecurity vs. Cortex XDR by Palo Alto Networks
September 2025
Free Report: BlackBerry Cylance Cybersecurity vs. Cortex XDR by Palo Alto Networks
Find out what your peers are saying about BlackBerry Cylance Cybersecurity vs. Cortex XDR by Palo Alto Networks and other solutions. Updated: September 2025.
DOWNLOAD NOW
867,370 professionals have used our research since 2012.
See our BlackBerry Cylance Cybersecurity vs. Cortex XDR by Palo Alto Networks report.
See our list of best Endpoint Protection Platform (EPP) vendors.

We monitor all Endpoint Protection Platform (EPP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.