With the latest update to its flagship solution for mid-size
and enterprise businesses, Kaspersky
unveils a new approach that integrates Kaspersky
Endpoint Security for Business with Cloud Management Console, Kaspersky
Endpoint Detection and Response Optimum (EDR Optimum) and Kaspersky
Sandbox. This new EDR offering is tailored for organizations with limited
security expertise and resources, allowing IT security specialists to gain
instant visibility and insights on incidents in addition to immediate
investigation and automated response options.
It is important that large
enterprises and medium organizations have advanced cybersecurity tools to
minimize the risk of complex and advanced attacks, however these companies often lack sufficient insight and
intelligence on the threats faced by their organization. The reason for this is
that resources are usually limited when dealing with complex threats, as
analyzing such activity means they need more employees including high-class
security analysts, threat hunters and incident responders.
Automated EDR and sandbox
capabilities
Endpoint protection from
Kaspersky is now reinforced with Kaspersky EDR Optimum. It is a solution
specifically designed for businesses who want to benefit from having
company-wide insights on incidents and the ability to respond, but without the
added strain on their teams and resources.
Kaspersky EDR Optimum adds
instant visibility across threats detected by Kaspersky Endpoint Security for
Business. It provides the background for all malicious activity including
enriched alert data and visualization of the attack spread path.
If Kaspersky Endpoint Security
for Business finds a suspicious file that cannot definitively be categorized as malicious, it is then sent to
Kaspersky Sandbox, another recently launched security tool that automatically
runs the risky file in an isolated environment to make it reveal its malicious
behavior or character. The verdict from Kaspersky Sandbox can then be further
enriched with analytics on the file performed by Kaspersky EDR Optimum.
To remedy the threat, Kaspersky
EDR Optimum introduces a wide set of response actions such as isolating an
endpoint with potential malware or quarantining a suspicious file. To ensure
the threat does not spread to other machines, security specialists can create
indicators of compromise (IoCs) with several clicks instead of writing it down
manually and then schedule an automatic scan of endpoints for the malicious
object. Moreover, the solution allows for the uploading of third-party IoCs and
running a scan to identify affected endpoints.
All these functions enable
centralized management of security incidents, quickly reacting to critical
threats and preventing them to minimize the potential negative impact on
business.
More edges of endpoint
protection with management from the cloud
Kaspersky researchers have found
that attacks on Linux endpoint users have grown 46% in 2019 when compared to
last year. To make sure these attacks don't hit businesses, the enhanced
Kaspersky Endpoint Security hardens protection for endpoints on the Linux
operating system. Network and web threat protection components ensure that
inbound and outbound traffic does not contain malicious activity. Data
protection is enhanced with device control, allowing it to define the rules for
transferring data to other devices.
Integrated Endpoint Security
also meets broader customer needs in terms of manageability. The management
console Kaspersky Security Center is now available from the cloud in addition
to existing on-premise capabilities. Customers choosing Kaspersky Security
Center Cloud Console can now deploy the solution faster with a lower cost of
ownership while ensuring upgrades and other maintenance is managed by
Kaspersky.
"The technology and
cybersecurity landscape is changing rapidly, meaning organizations have to deal
with more challenges using the same resources," said Dmitry Aleshin, vice president of product marketing
at Kaspersky. "Therefore, they need a solution that will help them to
address these evolving challenges effectively through automated detection and
response capabilities. Time and human resources are key for this, and
Kaspersky's new integrated solution is designed to help businesses save on both
of these by providing the key features of incident investigation and
remediation."
For more information about
Kaspersky's Integrated Endpoint Security, please visit the webpage.