Broadcom launches Symantec CBX XDR security platform
Broadcom has unveiled Symantec CBX, a new cloud-based extended detection and response (XDR) platform designed to bring enterprise-level security capabilities to organizations with limited security operations resources. The platform combines technologies from the Symantec and Carbon Black portfolios into a single integrated solution.
The launch reflects a growing industry challenge: while cyberattacks continue to escalate in sophistication, many organizations lack the staffing and expertise needed to manage complex security tools. With CBX, Broadcom aims to provide advanced protection without the operational overhead typically associated with enterprise security platforms.
For engineers and technology leaders working in embedded, industrial and enterprise IT environments, the development highlights how security vendors are simplifying complex cyber defense tools as threats increasingly target organizations outside traditional large enterprise SOCs.
Combining Symantec and Carbon Black capabilities
Symantec CBX integrates Symantec’s prevention, Adaptive Protection, data security and cloud secure web gateway capabilities with Carbon Black’s endpoint detection and response (EDR) technology. The platform provides unified XDR visibility and protection across endpoints, networks and data environments.
The system correlates signals across multiple attack surfaces — including endpoint, network, cloud and identity — to generate higher-confidence incidents rather than isolated alerts. According to Broadcom, this approach helps security analysts move faster from detection to investigation and response.
The platform also includes a single interface called Threat Tracer, which allows analysts to visualize an attacker’s activity across systems and trace how an intrusion occurred.
“This announcement marks a major milestone as we unite the strengths of Symantec and Carbon Black into a single, robust solution,” said Jason Rolleston, Vice President and General Manager, Enterprise Security Group, Broadcom. “CBX empowers organizations of all sizes with the advanced, yet intuitive capabilities to tackle modern threats with confidence and efficiency through industry-first technologies and intelligent automation. The platform extends enterprise-grade protection and real-time insights to organizations that have historically been under-resourced and can no longer rely on security through obscurity.”
AI-driven investigation and response
A key element of CBX is the use of AI to improve threat analysis and incident response. The platform links multiple security signals together into consolidated incidents and can predict an attacker’s likely next moves, enabling teams to intervene earlier in an attack chain.
Broadcom says the system can forecast up to four or five potential attacker actions through its Incident Prediction capability. The platform also includes the SymantecAI Security Assistant, which helps analysts classify attackers, analyze ransomware behaviors and generate remediation guidance.
In addition, the platform integrates Symantec Adaptive Protection to detect and block “living-off-the-land” (LOTL) attacks — techniques where attackers abuse legitimate software already present in a system.
“Organizations of all sizes are facing increasingly sophisticated threats, but many security teams are still challenged by limited resources,” said Feris Rifai, President, Leap, a wholly owned subsidiary of TD SYNNEX. “Combining Leap’s scale and expertise with solutions like Symantec CBX helps us expand access to advanced security capabilities in a way that is practical and approachable for our customers. By bringing together prevention, detection and response in a more unified experience, we’re able to strengthen security outcomes across the broader IT ecosystem.”
Availability
Broadcom plans to make Symantec CBX available later this year through its Enterprise Security Group Catalyst Partner Program. Existing customers will be able to migrate to the platform.
The company is demonstrating the technology during the RSAC 2026 Conference in San Francisco, where it is also presenting sessions on multi-layer security detection strategies.
If you enjoyed this article, you will like the following ones: don't miss them by subscribing to :
