Overview
Kaspersky is a long-established endpoint security vendor whose current enterprise line, Kaspersky Next, combines endpoint protection (EPP) with EDR and optional XDR, MDR and threat-intelligence services. The company's technical reputation rests on a sustained record of high scores in independent laboratory testing from AV-TEST and AV-Comparatives, where its malware detection and protection results have repeatedly ranked among the strongest in the industry. For pure detection efficacy and price-to-performance, Kaspersky remains technically competitive with the better-known Western EDR vendors.
The defining issue for any 2026 buyer is geopolitical, not technical. In June 2024 the US Commerce Department, citing national-security risk tied to the company's Russian jurisdiction, prohibited the sale of Kaspersky products to US persons; the prohibition took effect on 29 September 2024, after which existing US customers could no longer receive updates. Kaspersky continues to sell and update normally across the EU, UK, Switzerland, Latin America and much of Asia and Africa, but the US action — alongside earlier government advisories in several other countries — makes Kaspersky unsuitable for US-based organisations and a reputational consideration for multinationals. This review treats that constraint as central.
Key Features
- Kaspersky Next EPP with behavioural detection and exploit prevention
- Endpoint Detection and Response (EDR Optimum and EDR Expert tiers)
- Extended Detection and Response (XDR) correlation across telemetry
- Managed Detection and Response (MDR) service option
- Cloud-based and on-premises management console choices
- Patch management and vulnerability assessment
- Encryption management and device/application control
- Anti-phishing, web and mail threat protection
- Threat intelligence portal and IoC feeds
- Mobile threat defence for Android and iOS
- Root-cause analysis and guided incident response
- Sandbox-based advanced threat detection
Pricing
| Tier | Monthly | Annual | Included |
|---|---|---|---|
| Kaspersky Next EPP (SMB) | ~$30–$45/endpoint/yr | Billed annually | Core EPP, web and mail protection |
| Kaspersky Next EDR Optimum | ~$45–$60/endpoint/yr | Billed annually | EPP plus guided EDR |
| Kaspersky Next EDR Expert | Contact for quote | Contact for quote | Full EDR, XDR-ready, threat hunting |
| MDR service | Contact for quote | Contact for quote | 24/7 managed detection and response |
| Enterprise | Contact for quote | Contact for quote | Volume licensing, on-premises options |
Pricing verified June 2026. Enterprise pricing requires a quote. SMB tiers reflect published per-endpoint list pricing bands; enterprise, XDR and MDR are quote-based. US-based organisations cannot lawfully purchase or renew under the 2024 US prohibition.
Strengths
- Consistently high independent lab detection and protection scores
- Competitive price-to-performance against Western EDR vendors
- Broad platform coverage including Linux and mobile
- Clear tiering from EPP through EDR, XDR and managed MDR
- Mature threat intelligence and research (Global Research and Analysis Team)
Limitations
- US sales and renewals are prohibited under the 2024 Commerce Department ruling
- Russian corporate jurisdiction creates trust and supply-chain risk for many buyers
- Government advisories in several countries restrict use in sensitive systems
- Reputational exposure can complicate enterprise risk and procurement reviews
- North American partner, support and integration footprint has contracted sharply
Buyer Considerations
For organisations outside the United States with no US nexus, Kaspersky remains a technically credible option, and its lab results justify shortlisting on efficacy grounds. The decisive work is risk governance rather than feature comparison: document the jurisdictional analysis, check national regulator guidance in every country of operation, and confirm the position of cyber-insurance carriers and key customers, several of which now ask suppliers to attest that they do not run Kaspersky. US-based buyers, and multinationals with significant US operations or US government contracts, should treat Kaspersky as out of scope and evaluate Bitdefender, ESET, Sophos, CrowdStrike or Microsoft Defender instead.
User Sentiment
Technically, reviewers continue to rate Kaspersky highly for detection accuracy, low false positives and console usability, echoing its strong independent lab record. Buyers frequently note that the EDR tiers are capable and competitively priced relative to better-known EDR brands. The dominant theme in recent sentiment, however, is risk and availability rather than product quality: US reviewers describe forced migrations following the 2024 prohibition, and risk-conscious enterprises elsewhere report internal pressure to avoid Russian-jurisdiction software regardless of test scores. Outside affected markets, long-standing customers tend to report stable, satisfactory operation. The net picture is a product that performs well on the technical scorecard but whose suitability is now governed primarily by jurisdiction, regulator guidance and organisational risk appetite rather than by features or price.