The reality in security operations is that ransomware isn't going anywhere. It's still a primary concern, constantly evolving with new tactics and variants designed to extort payments from businesses. It’s predicted that ransomware will cost victims $275 billion annually by 2031, with a new attack every 2 seconds1. That's why independent testing matters, cutting through the noise to show what security products can really do.
SE Labs just published their July 2025 Ransomware Test Report, read the full press release here, putting Palo Alto Cortex XDR through a rigorous assessment against a wide range of realistic ransomware attacks. Cortex XDR didn't just pass; it excelled, achieving a perfect 100% Total Accuracy Rating and a AAA award for advanced security.
The report specifically highlighted Cortex XDR's strong performance, noting its ability to 'excel in detection' and, crucially, to track 'every movement that each targeted attack made throughout the test network.' This thoroughness is vital, providing security teams with the comprehensive visibility needed to stop sophisticated threats in their tracks.
The table below clearly shows why such a strong statement was made for Cortex XDR. The Detection and Protection accuracy indicates the product's effectiveness in identifying and defending against ransomware attacks, and Cortex XDR demonstrated 100% accuracy in both areas. It also scored 100% for allowing legitimate applications, meaning no false positives, which is crucial for operational efficiency.

Test Method from SE Labs Mimicks Real Adversaries
Let's break down how SE Labs put Cortex XDR through its paces. They set up a realistic enterprise environment and had testers attack machines exactly like real adversaries would. The test used 556 ransomware files, including known and never-before-seen variants, delivered via direct methods like phishing emails. SE Labs ran these tests as full, end-to-end attacks, measuring the product's effectiveness right from the initial contact through to the final payload execution, testing both detection and protection efficacy of the products.
Cortex XDR: 100% Accurate. No False Positives. No Delays
Evaluating endpoint security is a complex task, as many factors contribute to a product's true efficacy. To cut through this complexity, SE Labs distills all test results into one clear "Total Accuracy Rating". It’s crucial to understand that not all security actions are equal. Some products might completely block a malicious link, stopping the threat before it can even begin. Others might let a web exploit run, but prevent any further harmful downloads.
This is where Cortex XDR offers a significant advantage for your security posture. It achieved a perfect 100% Total Accuracy Rating. Cortex XDR demonstrated a strong capability to completely prevent malicious activity at the earliest stage and without the operational burden of false positives or ineffective, delayed responses that can hinder other legitimate solutions.
The Ransomware Solution our SecOps Team Needs
For "Ransomware Deep Attacks," which mimic targeted breaches against large organizations, the test assessed how well Cortex XDR could track sophisticated hacking attacks through a network before ransomware deployment. Cortex XDR successfully detected every movement of these targeted attacks throughout the test network, including on IoT devices and lateral movements to deeper targets on the internal network. This full visibility provides significant advantages for security professionals in real-time threat battles and incident investigation.
In the "Ransomware Direct Attacks" section, Cortex XDR blocked all these ransomware variants, including the new variants, upon delivery, preventing any execution. This means fewer compromised endpoints, less clean-up, and a significantly reduced chance of a major incident stemming from direct ransomware payloads. It's about prevention at the earliest stage. Additionally, the product allowed all legitimate software to run without issue. This means less noise for your team, so analysts can focus on real threats.
Learn more about how Cortex XDR provides customers with best-in-class endpoint security.
References:
1 Global Ransomware Damage Costs Predicted to Exceed $275 Billion by 2031, Cybersecurity Ventures
2 SE Labs July 2025 Ransomware Test Report