Eskenzi PR ad banner Eskenzi PR ad banner
  • About Us
Wednesday, 22 March, 2023
IT Security Guru
Eskenzi PR banner
  • Home
  • Features
  • Insight
  • Events
    • Most Inspiring Women in Cyber 2022
  • Topics
    • Cloud Security
    • Cyber Crime
    • Cyber Warfare
    • Data Protection
    • DDoS
    • Hacking
    • Malware, Phishing and Ransomware
    • Mobile Security
    • Network Security
    • Regulation
    • Skills Gap
    • The Internet of Things
    • Threat Detection
    • AI and Machine Learning
    • Industrial Internet of Things
  • Multimedia
  • Product Reviews
  • About Us
No Result
View All Result
  • Home
  • Features
  • Insight
  • Events
    • Most Inspiring Women in Cyber 2022
  • Topics
    • Cloud Security
    • Cyber Crime
    • Cyber Warfare
    • Data Protection
    • DDoS
    • Hacking
    • Malware, Phishing and Ransomware
    • Mobile Security
    • Network Security
    • Regulation
    • Skills Gap
    • The Internet of Things
    • Threat Detection
    • AI and Machine Learning
    • Industrial Internet of Things
  • Multimedia
  • Product Reviews
  • About Us
No Result
View All Result
IT Security Guru
No Result
View All Result

Companies Must Unearth And Understand The Undetectable In Today’s Enhanced Cyber-Landscape, Urges Kaspersky Lab.

by The Gurus
May 30, 2019
in Security News
Companies Must Unearth And Understand The Undetectable In Today’s Enhanced Cyber-Landscape, Urges Kaspersky Lab.
Share on FacebookShare on Twitter

Last year, 41% of enterprises[1] admitted that they suffered a targeted attack, whilst more than half of British firms have reported cyber-attacks in 2019. As cyber-threats become more complex and stealth-like, businesses need to not only uncover incidents more quickly, but simplify the process of understanding just how they happened. Organisations can minimise the risk of future attacks by identifying the unique Indicators of Compromise (IoCs), which put them specifically at risk – from IP addresses to URLs. This level of insight and understanding into an attackers’ intentions will become all the more important as cybercriminals continue to up their game to remain undetected within the network.

In its mission to continue empowering businesses to detect and prevent cyberattacks, Kaspersky Lab is today announcing the launch of the latest versions of Kaspersky EDR and Kaspersky Anti Targeted Attack. These offer new features that simplify the investigation process and enhance threat hunting; enabling companies to understand the most significant threats and IoC within their specific IT environment.

They are being powered by a recently added database of Indicators of Attack (IoAs), maintained and fed by Kaspersky Lab’s own expert threat hunters, which helps to deliver additional context during the investigation of cybercriminal activities. In addition, IoAs are now mapped to the MITRE ATT&CK knowledge base for further analysis of adversaries’ tactics, techniques and procedures. These key improvements will help enterprises investigate complex incidents faster.

Cyber-incidents relating to complex threats can have a significant impact on business. The cost of response and process recovery, the need to invest in new systems or processes, the effect on availability and the damage to reputation all adds up. Today, organisations need to consider not only the growing number of widespread malicious programs, but also the increase in complex advanced threats that are targeting them. They need protection from the more sophisticated threats that would otherwise evade detection.

Using Indicators of Attack to boost the investigation process

Kaspersky EDR and Kaspersky Anti Targeted Attack include functionality to check for IoCs, such as hashes, file names, paths, IP addresses, URLs, etc., which show that an attacker has struck. In addition to a search for IoC, new capabilities with IOAs provide an opportunity to identify intruders’

tactics and techniques, regardless of the malware or legitimate software used in the attack. To simplify the investigation process when examining telemetry from multiple endpoints, events are correlated with a unique set of IoAs from Kaspersky Lab. Matched IoAs show up in the user interface with detailed descriptions and recommendations on the best way to respond to the attack.

Customers can produce their own set of IoAs based on their internal experience, knowledge of the most significant threats and their specific IT environment. All new events are automatically mapped in real time with the internal database of custom IoAs, enabling the immediate creation of informed response actions and long-term detection scenarios, according the specifics of the protected infrastructure.

Mapping to the MITRE ATT&CK knowledge base

Together, Kaspersky EDR, Kaspersky Anti Targeted Attack and MITRE ATT&CK enable companies to validate and investigate incoming incidents more efficiently. Discovered threats are automatically mapped to the knowledge base, immediately contextualising the new events with external intelligence and attack technique data. Having a deeper understanding into an attack will reduce future risks and help security teams minimise the time taken to analyse and respond to threats.

The enhanced functionality is also available for organisations that offer cybersecurity monitoring and management. The new multi-tenancy architecture allows Managed Security Services Providers (MSSPs) to protect the infrastructure of multiple clients at the same time.

“Professional cybercriminals can reside without detection on trusted objects, exploit zero-day vulnerabilities, use legitimate software, compromised accounts, unique software, or even social use engineering techniques to exploit insiders. That’s why it is essential not to rely exclusively on the evidence left by malefactors, but to search for potential traces of their activity. With more information and understanding of a malefactor’s intentions, companies will be able to react to complex threats faster,” comments David Emm, principal security researcher, Kaspersky Lab.

Find out more about the new releases of Kaspersky Endpoint Detection and Response and Kaspersky Anti Targeted Attack on the official Kaspersky Lab website.

About Kaspersky Lab
Kaspersky Lab is a global cybersecurity company, which has been operating in the market for over 21 years. Kaspersky Lab’s deep threat intelligence and security expertise is constantly transforming into next-generation security solutions and services to protect businesses, critical infrastructure, governments and consumers around the globe. The company’s comprehensive security portfolio includes leading endpoint protection and a number of specialized security solutions and services to fight sophisticated and evolving digital threats. Over 400 million users are protected by Kaspersky Lab technologies and we help 270,000 corporate clients protect what matters most to them. Learn more at www.kaspersky.com

FacebookTweetLinkedIn
ShareTweetShare
Previous Post

T Minus 7 Days Until European Data Protection Summit Kicks Off.

Next Post

Sharing Is Caring? 50% Of Brits Admit To Sharing Their Passwords.

Recent News

security

What Is Observability, And Why Is It Crucial To Your Business?

March 21, 2023
Organisational Cybersecurity.jpg

How Emerging Trends in Virtual Reality Impact Cybersecurity

March 21, 2023
Nominations are Open for 2023’s European Cybersecurity Blogger Awards

Nominations are Open for 2023’s European Cybersecurity Blogger Awards

March 20, 2023
TikTok to be banned from UK Government Phones

TikTok to be banned from UK Government Phones

March 17, 2023

The IT Security Guru offers a daily news digest of all the best breaking IT security news stories first thing in the morning! Rather than you having to trawl through all the news feeds to find out what’s cooking, you can quickly get everything you need from this site!

Our Address: 10 London Mews, London, W2 1HY

Follow Us

© 2015 - 2019 IT Security Guru - Website Managed by Calm Logic

  • About Us
No Result
View All Result
  • Home
  • Features
  • Insight
  • Events
    • Most Inspiring Women in Cyber 2022
  • Topics
    • Cloud Security
    • Cyber Crime
    • Cyber Warfare
    • Data Protection
    • DDoS
    • Hacking
    • Malware, Phishing and Ransomware
    • Mobile Security
    • Network Security
    • Regulation
    • Skills Gap
    • The Internet of Things
    • Threat Detection
    • AI and Machine Learning
    • Industrial Internet of Things
  • Multimedia
  • Product Reviews
  • About Us

© 2015 - 2019 IT Security Guru - Website Managed by Calm Logic

This site uses functional cookies and external scripts to improve your experience.

Privacy settings

Privacy Settings / PENDING

This site uses functional cookies and external scripts to improve your experience. Which cookies and scripts are used and how they impact your visit is specified on the left. You may change your settings at any time. Your choices will not impact your visit.

NOTE: These settings will only apply to the browser and device you are currently using.

GDPR Compliance

Powered by Cookie Information