Try our new research platform with insights from 80,000+ expert users

BlackBerry Cylance Cybersecurity vs Cortex XDR by Palo Alto Networks comparison

BlackBerry and Palo Alto Networks are both solutions in the Endpoint Protection Platform (EPP) category. BlackBerry is ranked #24 with an average rating of 8.2, while Palo Alto Networks is ranked #5 with an average rating of 8.6. BlackBerry holds a 1.3% mindshare in EPP, compared to Palo Alto Networks’s 3.5% mindshare. Additionally, 85% of BlackBerry users are willing to recommend the solution, compared to 96% of Palo Alto Networks users who would recommend it.
BlackBerry Cylance Cybersec...
Read 44 BlackBerry Cylance Cybersecurity reviews
  • 3,268 Views
  • 2,974 Comparison Views
85% willing to recommend
Cortex XDR by Palo Alto Net...
Read 108 Cortex XDR by Palo Alto Networks reviews
  • 14,649 Views
  • 8,496 Comparison Views
96% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Feb 8, 2026

BlackBerry Cylance and Palo Alto Networks Cortex XDR are prominent contenders in the endpoint security market. Cortex XDR appears to have an edge due to its integration capabilities and comprehensive security features, making it a preferred choice for users needing advanced threat detection and network tool integration.

Features: BlackBerry Cylance emphasizes AI-driven endpoint protection with minimal resource consumption, effectively blocking zero-day threats and offering a lightweight design favored by users. Cortex XDR excels in extensive threat detection, investigation, and response capabilities, leveraging robust network tool integration and providing a multi-layered security approach.

Room for Improvement: BlackBerry Cylance users would like enhancements in handling false positives, user interface improvements, and reduced deployment complexity. They also call for better integration features. Cortex XDR users seek improved integration with third-party tools, enhanced reporting, and customizable dashboards. Both products face concerns regarding their pricing and the complexities involved in agent deployment and support services.

Ease of Deployment and Customer Service: BlackBerry Cylance supports deployment across public and private clouds and on-premises environments, with mixed reviews on technical support. Some users find it lacks responsiveness. Cortex XDR, supporting diverse environments, generally receives positive feedback on customer service and technical support, though some users experience high costs and challenges with technical queries.

Pricing and ROI: BlackBerry Cylance is noted for being cost-effective in AI-driven security, though some users consider it expensive compared to competitors. Cortex XDR is generally seen as more costly; however, users often perceive it as justified due to its comprehensive protection. Despite pricing concerns, both solutions offer significant ROI through reduced manual labor and enhanced security posture.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed BlackBerry Cylance Cybersecurity vs. Cortex XDR by Palo Alto Networks Report (Updated: March 2026).
Buyer's Guide
BlackBerry Cylance Cybersecurity vs. Cortex XDR by Palo Alto Networks
March 2026
Download the complete report
Helped 884,976 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

BlackBerry Cylance Cybersec...
Ranking in Endpoint Protection Platform (EPP)
24th
Average Rating
8.0
Reviews Sentiment
4.6
Number of Reviews
44
Ranking in other categories
No ranking in other categories
Cortex XDR by Palo Alto Net...
Ranking in Endpoint Protection Platform (EPP)
5th
Average Rating
8.4
Reviews Sentiment
6.8
Number of Reviews
108
Ranking in other categories
Endpoint Detection and Response (EDR) (7th), Extended Detection and Response (XDR) (6th), Ransomware Protection (2nd), AI-Powered Cybersecurity Platforms (2nd)
 

Mindshare comparison

As of March 2026, in the Endpoint Protection Platform (EPP) category, the mindshare of BlackBerry Cylance Cybersecurity is 1.3%, up from 1.2% compared to the previous year. The mindshare of Cortex XDR by Palo Alto Networks is 3.5%, down from 4.0% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Endpoint Protection Platform (EPP) Mindshare Distribution
ProductMindshare (%)
Cortex XDR by Palo Alto Networks3.5%
BlackBerry Cylance Cybersecurity1.3%
Other95.2%
Endpoint Protection Platform (EPP)
 

Featured Reviews

Sooraj Makkancherrry - PeerSpot reviewer
Sooraj Makkancherrry
Security Operations Manager at Philips
Doesn't have daily updates, which is important for healthcare IT
I face challenges with the exclusion policy - it still scans folders we told it not to, causing issues. When we contact support, they tell us to update the latest agent, but we can't do that immediately due to medical device protocols and validation testing. I wish support would try to understand our issues better instead of giving this standard response. The machine learning feature they use often tells us to upgrade the agent or add things to the exclusion list, which isn't unacceptable. It's a very good and new technology as a tool and antivirus. But sometimes, it doesn't work properly with our medical devices and products, quarantining files it shouldn't even after we add them to exclusions. This is tricky for us.
Read full review
ABHISHEK_SINGH - PeerSpot reviewer
ABHISHEK_SINGH
Senior Process Expert at A.P. Moller - Maersk
Gained full visibility and streamlined threat detection through behavior-based insights and AI integration
Initially, we got to have a lot of false positives when we onboarded, but nowadays it's quite smooth. We have fine-tuned our security policies and allowed different levels of policies to get rid of those false positives. Currently, we are getting a fairly good amount of incidents that are not false positives or benign, but actionable items. The process is streamlined. In the initial days, the operations used to get involved in a lot of benign and other activities, but now the process is streamlined. We are leveraging the auto-detection and remediation plans. The operations teams are now more involved in other business roles as well, not just looking into the logs and fetching out what's happening there. They have fixed a lot of things. Initially, they didn't have IAC code drift detection, cloud posture management, or security posture management, but they have those now. They purchased different vendors and did a merger with that. They have now Prisma Cloud that gets integrated and now they are working with Cortex Cloud. Everything that was negative has now been addressed, and the product altogether looks to be in a very better and mature shape now. Currently, it's more or less detecting the workloads with AI-based best practices. Since most organizations are consuming AI agents and other things, we are looking forward to seeing what other feature enhancements Palo Alto can support in that.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"A user can continue to add endpoints and the solution will continue to perform well."
"I rate the tool a ten out of ten when it comes to the ease of use or management part."
"The non-daily requirement to update signatures is the most valuable feature. From a functional point of view, it is pretty spot on. For instance, we compared an algorithm from five years ago to today's algorithm, and it was 98% accurate. It has the ability to detect and mitigate. In the industrial environment that we work in, there's what we call OT versus IT. You are IT Central, but this is OT. Generally, we don't have the same level of skillset as IT individuals or IT professionals have. This particular product doesn't require you to be a computer scientist to be able to understand its proprietary algorithm and to be able to deploy, use, and work within it. It integrates well with a robust SIEM or SOAR solution, and it plays nice with others. We use other detection solutions like CyberX or site provision with Cisco, and it plays nice. That's one of the things we really liked about it."
"It secures different entry points into the network."
"It is extremely simple to manage and deploy."
"One of the best features of the solution is that it's easy to deploy."
"The solution is very quick at easily changing the levels of protection for each computer and the server."
"What I like best about CylancePROTECT is its accuracy, as it doesn't give many false positives."
More BlackBerry Cylance Cybersecurity pros
"The most valuable for us is the correlation feature."
"The solution's most valuable feature is its ability to rapidly detect certain hardware files."
"It has a higher cost than other solutions, like CrowdStrike or Microsoft’s EDR tools, but it reduces the cost of our operations because it’s a new generation antivirus tool."
"Their XDR agent and their behavioral indicators of compromise (BIOC) are pretty nice. Their managed threat hunting is also pretty nice. They also have WildFire, which is a service for actively looking for malware. It's quite useful."
"When the pandemic started, Palo Alto came up with many solutions, which helped with the quick shift from on-premises to the cloud."
"WildFire AI is the best option for this product."
"The multi-layered approach to the product gives you confidence that it will stop exploits, ransomware, worms, or viruses from compromising endpoints, essentially providing peace of mind."
"This software helps us understand any issues that may arise when someone is not at work."
More Cortex XDR by Palo Alto Networks pros
 

Cons

"If they can improve the technical support SLA, that aspect of the product will be much appreciated."
"The solution needs better dashboards that are easier to use."
"The AI of CylancePROTECT has room for improvement. I'm on a trial license of SentinelOne, and its AI is much better than what's on CylancePROTECT."
"rom my experience interacting with the primary or the central administrative console, it's quite complex. You would need a fair bit of technical experience to set it up, implement and maintain it. That would be one area for improvement."
"The process of whitelisting a script that you want to be able to run can be a little bit difficult, or awkward."
"The price for this EPP platform is expensive and could be improved."
"Reporting is an area with shortcomings in CylancePROTECT that needs to be improved."
"The solution should implement AI in the product."
More BlackBerry Cylance Cybersecurity cons
"The price could be a little lower."
"There are some limitations on the Traps agents."
"The GUI could be improved. It's a little bit cumbersome. It could be more user-friendly."
"The technical support is not very good. I find the process difficult."
"It's not an ideal choice for smaller businesses, as you need a minimum of 200 endpoints to even use the solution at all."
"In the next release, I would like to see more UI improvements. Their UI is a bit basic. When we are speaking about Palo Alto Networks they are the big company, so they can improve the UI a little bit. The UI, the reports, the log system can all be improved."
"There is also no recovery feature; if some endpoint is under attack there must be the possibility of recovering it or restoring it to a normal state."
"Cortex XDR should have a lightweight agent, and the agent size should not be heavy."
More Cortex XDR by Palo Alto Networks cons
 

Pricing and Cost Advice

"We went through a third party initially to do the renewal, but we won't be renewing, we will move on to something else."
"The licensing part of the product is too expensive compared to other solutions in the market."
"The tool is not that expensive."
"CylancePROTECT is worth the money, but I'm not sure of its exact price. I can't remember off the top of my head."
"Review closely how many endpoints you actually need before buying into a pricing level. Deal and deal with the VAR of your choice."
"This cost of the license is approximately $5 USD monthly per user."
"I think that the price we are paying is good for what it is."
"Do not get hung up on price. You pay for what you get and expensive will hurt one time, where cheap will hurt forever, especially if you fall victim to a ransom attack, etc.​"
More BlackBerry Cylance Cybersecurity pricing and cost advice
"Licensing for Palo Alto Networks Cortex XDR can be costly, especially when it comes to a hundred users. A license is required for each user, and the subscription must be renewed on a yearly basis."
"It's the most expensive solution, but features-wise, it's quite strong. It's very good for protection, so the results are very good in the case of protection. I would rate it a two out of ten in terms of pricing."
"Every customer has to pay for a license because it doesn't work with what you get from a managed services provider."
"It is "expensive" and flexible."
"Cortex XDR by Palo Alto Networks is an expensive solution."
"I am using the Community edition."
"It has a higher cost than other solutions, like CrowdStrike or Microsoft’s EDR tools, but it reduces the cost of our operations because it’s a new generation antivirus tool."
"The pricing is okay, although direct support can be expensive."
More Cortex XDR by Palo Alto Networks pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Endpoint Protection Platform (EPP) solutions are best for your needs.
See recommendations
884,976 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
8%
Manufacturing Company
8%
Construction Company
6%
University
6%
Manufacturing Company
8%
Computer Software Company
8%
Financial Services Firm
8%
Comms Service Provider
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business33
Midsize Enterprise5
Large Enterprise13
By reviewers
Company SizeCount
Small Business44
Midsize Enterprise20
Large Enterprise47
 

Questions from the Community

What do you like most about Blackberry Protect?
It is a good endpoint solution. It is very easy to manage and detect the threat immediately. It will take the necessary actions.
See all answers
What is your experience regarding pricing and costs for Blackberry Protect?
The price is reasonable for us at the moment. I rate the overall solution an eight out of ten.
See all answers
What needs improvement with Blackberry Protect?
I face challenges with the exclusion policy - it still scans folders we told it not to, causing issues. When we contact support, they tell us to update the latest agent, but we can't do that immedi...
See all answers
Cortex XDR by Palo Alto vs. Sentinel One
Cortex XDR by Palo Alto vs. SentinelOne SentinelOne offers very detailed specifics with regard to risks or attacks. The ability to reverse damage caused by ransomware with minimal interruptions to...
See all answers
Comparing CrowdStrike Falcon to Cortex XDR (Palo Alto)
Cortex XDR by Palo Alto vs. CrowdStrike Falcon Both Cortex XDR and Crowd Strike Falcon offer cloud-based solutions that are very scalable, secure, and user-friendly. Cortex XDR by Palo Alto offers ...
See all answers
How is Cortex XDR compared with Microsoft Defender?
Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface, applies behavioral-based endpoint protection and response, and includes risk-ba...
See all answers
 

Comparisons

CrowdStrike Falcon vs BlackBerry Cylance Cybersecurity Logo
CrowdStrike Falcon vs BlackBerry Cylance Cybersecurity
Compared 8% of the time
VMware Carbon Black Endpoint vs BlackBerry Cylance Cybersecurity Logo
VMware Carbon Black Endpoint vs BlackBerry Cylance Cybersecurity
Compared 7% of the time
SentinelOne Singularity Complete vs BlackBerry Cylance Cybersecurity Logo
SentinelOne Singularity Complete vs BlackBerry Cylance Cybersecurity
Compared 6% of the time
Microsoft Defender for Endpoint vs BlackBerry Cylance Cybersecurity Logo
Microsoft Defender for Endpoint vs BlackBerry Cylance Cybersecurity
Compared 6% of the time
Intercept X Endpoint vs BlackBerry Cylance Cybersecurity Logo
Intercept X Endpoint vs BlackBerry Cylance Cybersecurity
Compared 4% of the time
More BlackBerry Cylance Cybersecurity Competitors
Microsoft Defender for Endpoint vs Cortex XDR by Palo Alto Networks Logo
Microsoft Defender for Endpoint vs Cortex XDR by Palo Alto Networks
Compared 9% of the time
SentinelOne Singularity Complete vs Cortex XDR by Palo Alto Networks Logo
SentinelOne Singularity Complete vs Cortex XDR by Palo Alto Networks
Compared 6% of the time
CrowdStrike Falcon vs Cortex XDR by Palo Alto Networks Logo
CrowdStrike Falcon vs Cortex XDR by Palo Alto Networks
Compared 4% of the time
Cortex XSIAM vs Cortex XDR by Palo Alto Networks Logo
Cortex XSIAM vs Cortex XDR by Palo Alto Networks
Compared 4% of the time
Symantec Endpoint Security vs Cortex XDR by Palo Alto Networks Logo
Symantec Endpoint Security vs Cortex XDR by Palo Alto Networks
Compared 3% of the time
More Cortex XDR by Palo Alto Networks Competitors
 

Product Reports

Buyer's Guide
BlackBerry Cylance Cybersecurity
March 2026
BlackBerry Cylance Cybersecurity reportDownload BlackBerry Cylance Cybersecurity product report
Buyer's Guide
Cortex XDR by Palo Alto Networks
March 2026
Cortex XDR by Palo Alto Networks reportDownload Cortex XDR by Palo Alto Networks product report
 

Also Known As

Blackberry Protect
Cyvera, Cortex XDR, Palo Alto Networks Traps
 

Overview

BlackBerry Cylance Cybersecurity leverages AI and machine learning for efficient malware detection and zero-day threat protection, offering robust endpoint security with high detection accuracy and low false positive rates.

BlackBerry Cylance Cybersecurity delivers advanced threat protection with AI-driven algorithms and machine learning. Its lightweight design ensures low system resource usage, making it both efficient and effective. It's recognized for centralized management, easy deployment, and a clean interface, providing comprehensive endpoint protection against diverse threats. The integration of features like CylanceOPTICS and behavioral monitoring enhances security insights. While the system excels in malware detection, enhancements are needed in areas like user interface design, reporting, deeper threat analysis, and integration with third-party systems. Support and pricing improvements could also increase competitiveness.

What are the key features of BlackBerry Cylance Cybersecurity?
  • AI and Machine Learning: Utilizes cutting-edge technology for malware and threat detection.
  • Zero-Day Protection: Safeguards against emerging threats without the need for constant updates.
  • Centralized Management: Simplifies deployment and management across devices.
  • CylanceOPTICS: Provides advanced security insights and behavioral monitoring.
  • Low Resource Usage: Ensures efficient operation with minimal system impact.
What benefits should users expect from BlackBerry Cylance Cybersecurity?
  • High Detection Accuracy: Reduces risk with minimal false positives.
  • Efficient Resource Management: Enhances performance with its lightweight design.
  • Proactive Threat Defense: Protects against a wide range of threats with centralized management.
  • Advanced Insights: Offers unique features for detailed security analysis.

Organizations deploy BlackBerry Cylance Cybersecurity for threat analytics, log management, and endpoint protection. As an antivirus replacement, it protects against zero-day malware, ransomware, and various threats. Its AI algorithms detect anomalies, minimizing risks in both internet-connected and isolated environments. Many businesses incorporate it into wider security strategies, appreciating its centralized management and proactive defense capabilities.

BlackBerry

Cortex XDR by Palo Alto Networks provides advanced threat detection with AI-driven endpoint protection and seamless integration, ensuring multi-layered security and automatic threat response.

Cortex XDR is designed to safeguard endpoints against malware and suspicious activities. It offers advanced threat detection and response capabilities using behavioral analysis, AI, and machine learning. It seamlessly integrates with security infrastructures, providing endpoint security, firewall integration, and enhanced visibility in both cloud-based and on-premises environments.

What are the key features of Cortex XDR?
  • Advanced Threat Detection: Uses AI and machine learning for proactive threat identification.
  • Multi-layered Security: Combines various security measures for comprehensive protection.
  • Endpoint Protection: Safeguards against malware and exploits.
  • Behavioral Analysis: Monitors suspicious activity for early detection.
  • Automatic Threat Response: Automates responses to neutralize threats.
What benefits should users expect?
  • Ease of Use: Simplifies security management with intuitive design.
  • Resource Efficiency: Minimizes impact on system resources.
  • Integration Capabilities: Works well with existing security setups.
  • Reduced Analyst Workload: Automates processes to decrease manual intervention.

Organizations in diverse sectors deploy Cortex XDR to protect against malware, leveraging its advanced threat detection capabilities. Its integration with existing security infrastructures appeals to those seeking comprehensive protection in both cloud and on-premises environments, providing enhanced visibility and threat intelligence.

Palo Alto Networks
 

Sample Customers

Panasonic, Noble Energy, Apria Healthcare Group Inc., Charles River Laboratories, Rovi Corporation, Toyota, Kiewit
CBI Health Group, University Honda, VakifBank
Buyer's Guide
BlackBerry Cylance Cybersecurity vs. Cortex XDR by Palo Alto Networks
March 2026
Free Report: BlackBerry Cylance Cybersecurity vs. Cortex XDR by Palo Alto Networks
Find out what your peers are saying about BlackBerry Cylance Cybersecurity vs. Cortex XDR by Palo Alto Networks and other solutions. Updated: March 2026.
DOWNLOAD NOW
884,976 professionals have used our research since 2012.
See our BlackBerry Cylance Cybersecurity vs. Cortex XDR by Palo Alto Networks report.
See our list of best Endpoint Protection Platform (EPP) vendors.

We monitor all Endpoint Protection Platform (EPP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.