Try our new research platform with insights from 80,000+ expert users

IBM Security QRadar vs Kaspersky Anti-Targeted Attack Platform comparison

IBM and Kaspersky are both solutions in the Endpoint Detection and Response (EDR) category. IBM is ranked #16 with an average rating of 8.0, while Kaspersky is ranked #52. IBM holds a 1.7% mindshare in EDR, compared to Kaspersky’s 0.7% mindshare. Additionally, 90% of IBM users are willing to recommend the solution, compared to 66% of Kaspersky users who would recommend it.
Sponsored
Cortex XDR by Palo Alto Net...
Read 108 Cortex XDR by Palo Alto Networks reviews
  • 14,649 Views
  • 8,057 Comparison Views
96% willing to recommend
IBM Security QRadar
Read 217 IBM Security QRadar reviews
  • 17,394 Views
  • 3,131 Comparison Views
90% willing to recommend
Kaspersky Anti-Targeted Att...
Read 6 Kaspersky Anti-Targeted Attack Platform reviews
  • 1,085 Views
  • 1,009 Comparison Views
66% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Jan 25, 2026

IBM Security QRadar and Kaspersky Anti-Targeted Attack Platform both operate in the cybersecurity domain. Kaspersky has a competitive advantage in threat detection with robust anti-malware technology, while IBM Security QRadar excels in scalability and integration, making it suitable for large enterprises.

Features: IBM Security QRadar provides exceptional threat intelligence, log management, and incident detection, utilizing deep network insights to monitor and secure the environment extensively. It integrates seamlessly with other security products and offers advanced correlation capabilities to streamline threat analysis. In contrast, Kaspersky Anti-Targeted Attack Platform is noted for its comprehensive threat detection, employing behavior analysis and anti-malware capabilities to effectively manage and mitigate advanced threats.

Room for Improvement: IBM Security QRadar may benefit from simplifying its deployment process and reducing configuration complexity, enhancing user experience in large-scale implementations. Improvement in AI-driven analytics could further enhance threat detection capabilities. Kaspersky could improve by increasing its scalability options to better support large enterprises and enhancing integration capabilities with third-party products.

Ease of Deployment and Customer Service: Kaspersky Anti-Targeted Attack Platform is recognized for its streamlined deployment process and responsive customer support, facilitating quick and efficient installation. IBM Security QRadar, while supported by extensive documentation, can involve more complex configurations that demand a higher level of technical expertise, making initial deployment and ongoing management more challenging.

Pricing and ROI: IBM Security QRadar often involves a higher initial investment, offering scalable solutions that can lead to significant ROI, especially in large enterprises. Its extensive capabilities might justify the cost for organizations in need of comprehensive security infrastructure. Conversely, Kaspersky Anti-Targeted Attack Platform delivers a cost-effective initial setup, providing strong protection value, particularly appealing for medium-sized enterprises looking for advanced threat detection at a lower cost.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed IBM Security QRadar vs. Kaspersky Anti-Targeted Attack Platform Report (Updated: March 2026).
Buyer's Guide
IBM Security QRadar vs. Kaspersky Anti-Targeted Attack Platform
March 2026
Download the complete report
Helped 885,286 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Cortex XDR by Palo Alto Net...
Sponsored
Ranking in Endpoint Detection and Response (EDR)
7th
Average Rating
8.4
Reviews Sentiment
6.8
Number of Reviews
108
Ranking in other categories
Endpoint Protection Platform (EPP) (5th), Extended Detection and Response (XDR) (6th), Ransomware Protection (2nd), AI-Powered Cybersecurity Platforms (2nd)
IBM Security QRadar
Ranking in Endpoint Detection and Response (EDR)
16th
Average Rating
8.0
Reviews Sentiment
6.6
Number of Reviews
217
Ranking in other categories
Log Management (7th), Security Information and Event Management (SIEM) (3rd), User Entity Behavior Analytics (UEBA) (2nd), Security Orchestration Automation and Response (SOAR) (4th), Managed Detection and Response (MDR) (6th), Extended Detection and Response (XDR) (11th)
Kaspersky Anti-Targeted Att...
Ranking in Endpoint Detection and Response (EDR)
52nd
Average Rating
6.6
Reviews Sentiment
6.1
Number of Reviews
6
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of March 2026, in the Endpoint Detection and Response (EDR) category, the mindshare of Cortex XDR by Palo Alto Networks is 3.4%, down from 4.0% compared to the previous year. The mindshare of IBM Security QRadar is 1.7%, up from 1.1% compared to the previous year. The mindshare of Kaspersky Anti-Targeted Attack Platform is 0.7%, up from 0.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Endpoint Detection and Response (EDR) Mindshare Distribution
ProductMindshare (%)
Cortex XDR by Palo Alto Networks3.4%
IBM Security QRadar1.7%
Kaspersky Anti-Targeted Attack Platform0.7%
Other94.2%
Endpoint Detection and Response (EDR)
 

Featured Reviews

ABHISHEK_SINGH - PeerSpot reviewer
ABHISHEK_SINGH
Senior Process Expert at A.P. Moller - Maersk
Gained full visibility and streamlined threat detection through behavior-based insights and AI integration
Initially, we got to have a lot of false positives when we onboarded, but nowadays it's quite smooth. We have fine-tuned our security policies and allowed different levels of policies to get rid of those false positives. Currently, we are getting a fairly good amount of incidents that are not false positives or benign, but actionable items. The process is streamlined. In the initial days, the operations used to get involved in a lot of benign and other activities, but now the process is streamlined. We are leveraging the auto-detection and remediation plans. The operations teams are now more involved in other business roles as well, not just looking into the logs and fetching out what's happening there. They have fixed a lot of things. Initially, they didn't have IAC code drift detection, cloud posture management, or security posture management, but they have those now. They purchased different vendors and did a merger with that. They have now Prisma Cloud that gets integrated and now they are working with Cortex Cloud. Everything that was negative has now been addressed, and the product altogether looks to be in a very better and mature shape now. Currently, it's more or less detecting the workloads with AI-based best practices. Since most organizations are consuming AI agents and other things, we are looking forward to seeing what other feature enhancements Palo Alto can support in that.
Read full review
HarshBhardiya - PeerSpot reviewer
HarshBhardiya
SOC Engineer at a outsourcing company with 10,001+ employees
Have managed daily asset and alert monitoring effectively but have encountered limitations with manual processes and interface usability
It's still very manual and doesn't work on its own. It's still in an early stage and not on par where we can consider it a really successful detection system. The accuracy is not there. The UI could be better when compared to Sentinels where we can use flags and tagging. It could be much more user-friendly. IBM Security QRadar has all features and is fully competitive with other SIEM tools, but when it comes to user-friendliness, a new user takes time to get used to it. More intuitive, user-friendly interfaces and more helpful documentation would be beneficial. The query searching and data fetching could be faster. In large to very large organizations with around 5,000 or 6,000 assets or beyond, even with proper configurations and RAM and hardware backing up, the query is fairly slow.
Read full review
Muhammad Ali Aziz - PeerSpot reviewer
Muhammad Ali Aziz
Senior Manager Cyber Security Services & Solutions at Trillium
A cost-effective solution for endpoint protection and EDR
The Kaspersky Anti-Targeted Attack Platform is designed to detect various attacks, such as Mitraframe, and provide alerts for each attack technique and procedure. It also offers alerts for potential threats and conducts thorough analyses through its sandbox environment, which isolates and executes malware or unknown files within virtual machines. This allows for real-time threat detection and feedback on potential threats. The platform is a SOC tool and thus requires skilled resources for effective operation, as it involves both automation and manual understanding of attack scales. Third-party intelligence integration enriches the alert system but may lead to occasional false positives, which can be fine-tuned through exclusion options and custom rule creation. The platform offers extensive customization options, allowing users to create rules specific to file detection or PowerShell activities. It provides visibility into telemetry data, enabling comprehensive monitoring of environmental activities. Integration with frameworks like Mitraframe helps tailor policies and rules to suit specific environments. The platform competes with products like FireEye, Snowflake, and Trend Micro. Integration between Kaspersky and other products is seamless, allowing unified threat detection. It is a solid choice for enterprises seeking advanced threat detection capabilities in the Middle East. Overall, I rate the solution eight out of ten.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The most valuable features are the fact that it was running in the background and it would intercept any weird stuff, and the fact that it would send things directly to the cloud for sandboxing. It's quite practical."
"The information the dashboard provides is very clear."
"After deploying Traps, we saw the performance of the network improve by 65 to 70 percent."
"The best feature of Cortex XDR by Palo Alto Networks is that it collects logs from different sections such as the endpoint, the network, and the cloud, making it easy to investigate alerts, collect some of the investigation packages related to the infected machines, and provide live response."
"We use Cortex XDR by Palo Alto Networks for its ability to detect based on behavior rather than simple virus scan to prevent malicious activities."
"The multi-layered approach to the product gives you confidence that it will stop exploits, ransomware, worms, or viruses from compromising endpoints, essentially providing peace of mind."
"I generally believe that Cortex XDR by Palo Alto Networks is probably the best in the market right now."
"Cortex XDR is a very capable solution for protecting large networks and a lot of endpoints. It's very useful because the automation is very high, and if you combine it with the features on Palo Alto firewalls, it provides very strong protection."
More Cortex XDR by Palo Alto Networks pros
"The most valuable features are all the implementations, the plug-ins, and the User Behavior Analytics (UBA)."
"I have found visibility very helpful for analytics."
"This solution has excellent security analytics."
"The most valuable features are log monitoring, easy-to-fix issues, and problem-solving."
"A valuable feature is the detection capability, and I like that the solution can use data other than log data which means that things like vulnerability data, network data and the like, are part of the correlation and detection."
"Curator is the leader of teams in the market; it's a product with plenty of features and capabilities, and it's a very powerful solution."
"The way that the app has transformed over time is quite phenomenal."
"From a sales perspective, IBM QRadar is very competitive when it comes to prices."
More IBM Security QRadar pros
"The Kaspersky Anti-Targeted Attack Platform provides visibility into telemetry data, enabling comprehensive monitoring of environmental activities."
"The email security feature is really good."
"I feel the anti-ransomware update is one of the tool's valuable features."
"The most valuable use is detailing metadata collection from the endpoint and network."
"The solution is very easy to use. Its interface is very simple, and you can build IOC's indicators. You can use your rules to detect these attacks because you can leverage threat intelligence. Y"
"Kaspersky Anti-Targeted Attack Platform is stable and runs all the time."
"The product's deployment phase is easy."
 

Cons

"In general, the price could be more competitive."
"I would like to see them include NDR (Network Detection Response)."
"I would like to see better protection, specifically to protect email applications."
"The setup is quite easy. We had appropriate support from the manager. One thing that was missing was the integration part."
"In terms of areas of improvement, we have not completed our review of the product. We're also looking at other products. So, it's a little bit hard to tell what could be different because we have not completed the review of this product, but based on our experience so far, its implementation is quite complex."
"When it comes to core analysis and security analysis, Cortex needs to provide more information."
"I don't like that they have different types of licenses. For example, if users select a license, they think they will have all the platforms they need to improve their network or security. But after some time, Palo Alto Networks changed their licensing, and some of the features that, for example, were free at the beginning now have a cost. I think the integration can be improved. For example, a lot of tools are just integrated through APIs."
"It's more focused on network communication. If a customer wants to increase the level of protection and start working with documents, it's impossible to integrate these features into the system. It's more of a communication-oriented system than a content security-oriented system."
More Cortex XDR by Palo Alto Networks cons
"IBM QRadar User Behavior Analytics is good, but I think the functionality should be much more integrated. You should have easy access to the artifacts if you are doing a particular investigation."
"You can scale IBM QRadar User Behavior Analytics, but it has room for improvement."
"Trying to get answers out of IBM is like trying to get blood out of a stone. They need to be more helpful and responsive."
"IMB should reduce the pricing, or reduce some of the features for a more economical solution for the customer."
"Communication between the silos sometimes becomes an issue, making it an area where improvements are required."
"IBM is going through some problems with its resources currently making its support response time slow."
"The interface is very old. IBM should remake it into a more modern interface."
"The tech support is not that good."
More IBM Security QRadar cons
"The blind spot or gap in the platform is network analysis functionality."
"I think the tool is still not really good enough for integration compared to other products."
"The backup and recovery features of the product are not good."
"The solution lacks cloud integrations."
"The solution lacks cloud integrations."
"Kaspersky Anti-Targeted Attack Platform is not a good product. We had problems with endpoints and the solution did not detect it. We didn't get any alerts about the attack."
"In some of the places I have come across, even though they use Kaspersky, the ransomware enters their system."
 

Pricing and Cost Advice

"Its pricing is kind of in line with its competitors and everybody else out there."
"Cortex XDR is a costly solution."
"The tool's price is moderate."
"The price of the product is not very economical."
"It is present, but when compared to other competitive products, I would say it is not less expensive; however, when all of the other added values are considered, the price is reasonable."
"The pricing seems fair, and I do like the licensing model. You use wherever they are, and it is elastic."
"Our customers have expressed that the price is high."
"This is an expensive solution."
More Cortex XDR by Palo Alto Networks pricing and cost advice
"Only enterprise businesses can afford the tool."
"Licensing can be costly depending on your architecture."
"It's too expensive."
"There is a license required for this solution."
"The price of this solution is a little bit expensive, so if it were cheaper then it would help."
"It could be cheaper, but the value itself is far more important for us than the price. Typically, our clients have yearly subscriptions."
"It is expensive. It is not a product that I can provide for SMBs. It is a program that I can only provide for really large enterprises."
"You have a one-time payment, and you also can purchase it for one year as a subscription. We have it on-premise, and we have a permanent license for it. We have to pay for the support on a yearly basis. If you compare its cost with Sentinel for one year, QRadar would seem more expensive, but if you compare its cost over five or ten years, Azure Sentinel will be more expensive than QRadar. If you compare its cost with Sentinel for one year, QRadar would seem more expensive, but if you compare its cost over five or 10 years, Azure Sentinel can be more expensive than QRadar."
More IBM Security QRadar pricing and cost advice
"Kaspersky is one of the cheaper solutions."
"The solution has competitive pricing."
"Kaspersky Anti-Targeted Attack Platform is cheap."
report
See which vendors are best for you
Use our free recommendation engine to learn which Endpoint Detection and Response (EDR) solutions are best for your needs.
See recommendations
885,286 professionals have used our research since 2012.
 

Comparison Review

VS
Vinod Shankar
Manager, Enterprise Risk Consulting at a tech company with 1,001-5,000 employees
Jun 28, 2015
Qradar vs. ArcSight
Continuing with the SIEM posts we have done at Infosecnirvana, this post is a Head to head comparison of the two Industry leading SIEM products in the market – HP ArcSight and IBM QRadar Both the products have consistently been in the Gartner Leaders Quadrant. Both HP and IBM took over niche SIEM…
Read full review
 

Top Industries

By visitors reading reviews
Construction Company
11%
Manufacturing Company
8%
Computer Software Company
8%
Financial Services Firm
8%
Computer Software Company
11%
Financial Services Firm
10%
Manufacturing Company
7%
Government
6%
Computer Software Company
13%
Educational Organization
9%
Financial Services Firm
9%
Government
9%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business44
Midsize Enterprise20
Large Enterprise47
By reviewers
Company SizeCount
Small Business91
Midsize Enterprise39
Large Enterprise105
No data available
 

Questions from the Community

Cortex XDR by Palo Alto vs. Sentinel One
Cortex XDR by Palo Alto vs. SentinelOne SentinelOne offers very detailed specifics with regard to risks or attacks. ...
See all answers
Comparing CrowdStrike Falcon to Cortex XDR (Palo Alto)
Cortex XDR by Palo Alto vs. CrowdStrike Falcon Both Cortex XDR and Crowd Strike Falcon offer cloud-based solutions th...
See all answers
How is Cortex XDR compared with Microsoft Defender?
Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface,...
See all answers
What are the biggest differences between Securonix UEBA, Exabeam, and IBM QRadar?
It mostly depends on your use-cases and environment. Exabeam and Securonix have a stronger UEBA feature set, friendli...
See all answers
What SOC product do you recommend?
For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is a...
See all answers
What is your experience regarding pricing and costs for IBM Security QRadar?
Pricing and the license of EPS were managed by the governance team. I was not responsible for managing those. I was s...
See all answers
What do you like most about Kaspersky Anti-Targeted Attack Platform?
The solution is very easy to use. Its interface is very simple, and you can build IOC's indicators. You can use your ...
See all answers
What is your experience regarding pricing and costs for Kaspersky Anti-Targeted Attack Platform?
Its price is reasonable; it's neither very high nor very low, considering its capabilities.
See all answers
What needs improvement with Kaspersky Anti-Targeted Attack Platform?
I think the tool is still not really good enough for integration compared to other products. If you need to integrate...
See all answers
 

Comparisons

Microsoft Defender for Endpoint vs Cortex XDR by Palo Alto Networks Logo
Microsoft Defender for Endpoint vs Cortex XDR by Palo Alto Networks
Compared 9% of the time
SentinelOne Singularity Complete vs Cortex XDR by Palo Alto Networks Logo
SentinelOne Singularity Complete vs Cortex XDR by Palo Alto Networks
Compared 6% of the time
CrowdStrike Falcon vs Cortex XDR by Palo Alto Networks Logo
CrowdStrike Falcon vs Cortex XDR by Palo Alto Networks
Compared 4% of the time
Cortex XSIAM vs Cortex XDR by Palo Alto Networks Logo
Cortex XSIAM vs Cortex XDR by Palo Alto Networks
Compared 4% of the time
Symantec Endpoint Security vs Cortex XDR by Palo Alto Networks Logo
Symantec Endpoint Security vs Cortex XDR by Palo Alto Networks
Compared 3% of the time
More Cortex XDR by Palo Alto Networks Competitors
Splunk Enterprise Security vs IBM Security QRadar Logo
Splunk Enterprise Security vs IBM Security QRadar
Compared 13% of the time
Sentinel vs IBM Security QRadar Logo
Sentinel vs IBM Security QRadar
Compared 4% of the time
Elastic Security vs IBM Security QRadar Logo
Elastic Security vs IBM Security QRadar
Compared 4% of the time
Microsoft Sentinel vs IBM Security QRadar Logo
Microsoft Sentinel vs IBM Security QRadar
Compared 4% of the time
LogRhythm SIEM vs IBM Security QRadar Logo
LogRhythm SIEM vs IBM Security QRadar
Compared 3% of the time
More IBM Security QRadar Competitors
HP Wolf Security vs Kaspersky Anti-Targeted Attack Platform Logo
HP Wolf Security vs Kaspersky Anti-Targeted Attack Platform
Compared 10% of the time
TrendAI Vision One vs Kaspersky Anti-Targeted Attack Platform Logo
TrendAI Vision One vs Kaspersky Anti-Targeted Attack Platform
Compared 7% of the time
ESET Inspect vs Kaspersky Anti-Targeted Attack Platform Logo
ESET Inspect vs Kaspersky Anti-Targeted Attack Platform
Compared 7% of the time
SanerNow CyberHygiene Platform vs Kaspersky Anti-Targeted Attack Platform Logo
SanerNow CyberHygiene Platform vs Kaspersky Anti-Targeted Attack Platform
Compared 6% of the time
More Kaspersky Anti-Targeted Attack Platform Competitors
 

Product Reports

Buyer's Guide
Cortex XDR by Palo Alto Networks
March 2026
Cortex XDR by Palo Alto Networks reportDownload Cortex XDR by Palo Alto Networks product report
Buyer's Guide
IBM Security QRadar
March 2026
IBM Security QRadar reportDownload IBM Security QRadar product report
Buyer's Guide
Kaspersky Anti-Targeted Attack Platform
March 2026
Kaspersky Anti-Targeted Attack Platform reportDownload Kaspersky Anti-Targeted Attack Platform product report
 

Also Known As

Cyvera, Cortex XDR, Palo Alto Networks Traps
IBM QRadar, QRadar SIEM, QRadar UBA, QRadar on Cloud, IBM QRadar Advisor with Watson
Kaspersky Anti Targeted Attack
 

Overview

Cortex XDR by Palo Alto Networks provides advanced threat detection with AI-driven endpoint protection and seamless integration, ensuring multi-layered security and automatic threat response.

Cortex XDR is designed to safeguard endpoints against malware and suspicious activities. It offers advanced threat detection and response capabilities using behavioral analysis, AI, and machine learning. It seamlessly integrates with security infrastructures, providing endpoint security, firewall integration, and enhanced visibility in both cloud-based and on-premises environments.

What are the key features of Cortex XDR?
  • Advanced Threat Detection: Uses AI and machine learning for proactive threat identification.
  • Multi-layered Security: Combines various security measures for comprehensive protection.
  • Endpoint Protection: Safeguards against malware and exploits.
  • Behavioral Analysis: Monitors suspicious activity for early detection.
  • Automatic Threat Response: Automates responses to neutralize threats.
What benefits should users expect?
  • Ease of Use: Simplifies security management with intuitive design.
  • Resource Efficiency: Minimizes impact on system resources.
  • Integration Capabilities: Works well with existing security setups.
  • Reduced Analyst Workload: Automates processes to decrease manual intervention.

Organizations in diverse sectors deploy Cortex XDR to protect against malware, leveraging its advanced threat detection capabilities. Its integration with existing security infrastructures appeals to those seeking comprehensive protection in both cloud and on-premises environments, providing enhanced visibility and threat intelligence.

Palo Alto Networks

IBM Security QRadar (recently acquired by Palo Alto Networks) is a security and analytics platform designed to defend against threats and scale security operations. This is done through integrated visibility, investigation, detection, and response. QRadar empowers security groups with actionable insights into high-priority threats by providing visibility into enterprise security data. Through centralized visibility, security teams and analysts can determine their security stance, which areas pose a potential threat, and which areas are critical. This will help streamline workflows by eliminating the need to pivot between tools.

IBM Security QRadar is built to address a wide range of security issues and can be easily scaled with minimal customization effort required. As data is ingested, QRadar administers automated, real-time security intelligence to swiftly and precisely discover and prioritize threats. The platform will issue alerts with actionable, rich context into developing threats. Security teams and analysts can then rapidly respond to minimize the attackers' strike. The solution will provide a complete view of activity in both cloud-based and on-premise environments as a large amount of data is ingested throughout the enterprise. Additionally, QRadar’s anomaly detection intelligence enables security teams to identify any user behavior changes that could be indicators of potential threats. 

IBM QRadar Log Manager

To better help organizations protect themselves against potential security threats, attacks, and breaches, IBM QRadar Log Manager gathers, analyzes, preserves, and reports on security log events using QRadar Sense Analytics. All operating systems and applications, servers, devices, and applications are converted into searchable and actionable intelligent data. QRadar Log Manager then helps organizations meet compliance reporting and monitoring requirements, which can be further upgraded to QRadar SIEM for a more superior level of threat protection.

Some of QRadar Log Manager’s key features include:

  • Data processing and capture on any security event
  • Disaster recovery options and high availability 
  • Scalability for large enterprises
  • SoftLayer cloud installation capability
  • Advanced threat protection

Reviews from Real Users

IBM Security QRadar is a solution of choice among users because it provides a complete solution for security teams by integrating network analysis, log management, user behavior analytics, threat intelligence, and AI-powered investigations into a single solution. Users particularly like having a single window into their network and its ability to be used for larger enterprises.

Simon T., a cyber security services operations manager at an aerospace/defense firm, notes, "The most valuable thing about QRadar is that you have a single window into your network, SIEM, network flows, and risk management of your assets. If you use Splunk, for instance, then you still need a full packet capture solution, whereas the full packet capture solution is integrated within QRadar. Its application ecosystem makes it very powerful in terms of doing analysis."

A management executive at a security firm says, "What we like about QRadar and the models that IBM has, is it can go from a small-to-medium enterprise to a larger organization, and it gives you the same value."

IBM

Today’s cybercriminals constantly design unique and innovative methods of penetration and compromise. To avoid perimeter prevention technologies they use social engineering, non-malware and supply chain attacks to operate under the radar of security designed to catch ‘bad’ traces. It’s not enough to just ‘know’ what’s bad or dangerous – enterprises need to understand what’s normal, and use AI-driven techniques that simplify and automate this process. Targeted Attack Analyzer is a machine learning engine that involves self-learning to establish the baseline of normal, legitimate activities of an entire network. Through continuous network telemetry collection it finds deviations, detects suspicious activities and predicts further malicious actions at the initial stages of multilayered attacks.

Kaspersky
 

Sample Customers

CBI Health Group, University Honda, VakifBank
Clients across multiple industries, such as energy, financial, retail, healthcare, government, communications, and education use QRadar.
Republic of Serbia, Goods.ru, Tael, Insolar
Buyer's Guide
IBM Security QRadar vs. Kaspersky Anti-Targeted Attack Platform
March 2026
Free Report: IBM Security QRadar vs. Kaspersky Anti-Targeted Attack Platform
Find out what your peers are saying about IBM Security QRadar vs. Kaspersky Anti-Targeted Attack Platform and other solutions. Updated: March 2026.
DOWNLOAD NOW
885,286 professionals have used our research since 2012.
See our IBM Security QRadar vs. Kaspersky Anti-Targeted Attack Platform report.
See our list of best Endpoint Detection and Response (EDR) vendors.

We monitor all Endpoint Detection and Response (EDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.