Friday, March 15, 2019
Cyberthreats are constantly evolving, with adversaries coming up with new tools and techniques for successful attacks all the time. To combat this, the cybersecurity tools used by organizations also need to evolve and provide access to the most advanced technologies.
Effective endpoint protection from advanced threats requires a comprehensive approach of prediction, prevention, detection and response. To do so requires a combination of EPP and EDR solutions. It is, therefore, critical that organizations have simultaneous access to the most recent versions of both to ensure they are fully protected.
To account for this and provide businesses with the most up-to-date protection, Kaspersky Lab is giving customers that use Kaspersky Endpoint Security for Business with Kaspersky Endpoint Detection and Response (EDR) early access to the new version of EDR with expanded functionality.
The major update to the EDR module within Kaspersky Endpoint Security for Business focuses on the simplification of Threat Analysis and Response. Customers will benefit from the automated mapping of events to the MITRE ATT&CT framework – a knowledge base for indicators of an attack stage. As part of an overall simplification and reduction in decision-making time, the solution provides a clear description and recommendation of further response actions. These are based upon Indicators of Attack (IOA/hunts) produced by Kaspersky Lab experts involved in Threat Analysis and Incident Response, as part of the Kaspersky Managed Protection Threat Hunting service.
More information about the new Kaspersky EDR features can be found on the official Kaspersky Lab website.