In a statement, the company said on Monday the new approach brought together its existing Kaspersky Endpoint Security for Business with a cloud management console, Kaspersky Endpoint Detection and Response Optimum (EDR Optimum) and Kaspersky Sandbox.
It said the new EDR could cater to organisations with even limited security expertise and resources, meaning IT security specialists would have instant visibility and insights on incidents, along with immediate investigation and automated response options.
"Today, both large enterprises and medium organisations need advanced tools to minimise the risk of complex and advanced attacks," the firm said. "According to the Kaspersky Global Corporate IT Security Risks Survey, about 40% of mid-size companies and enterprises lacked sufficient insight and intelligence on the threats faced by their organisations."
"The difficulty wass that their resources were usually limited when it came to dealing with complex threats. To analyse the growing number of incidents, they needed more employees, including high-class security analysts, threat hunters and incident responders," Kaspersky said.
The company said if Kaspersky Endpoint Security for Business found a suspicious file that could not definitively be categorised as malicious, it sent the file to Kaspersky Sandbox, another recently launched security tool that automatically ran the risky file in an isolated environment to find out its malicious behaviour or character. The Kaspersky Sandbox decision could then be further enriched with analytics on the file performed by Kaspersky EDR Optimum.
"A majority of business leaders rely heavily on a limited number of IT staff in their organisations to identify how and when an internal cyber security incident happens and how they should respond. However, in most instances, these organisations don’t have the resources and security functions in place to keep up with their cyber security requirements and this expands the threat surface," said Kaspersky ANZ general manager Margrith Appleby (right).
"EDR Optimum’s consolidated approach provides instant visibility of threats, immediate investigation and advance response options.”
The company said it had found that attacks on Linux endpoint user had increased by 46% in 2019 in comparison with 2018 . "To ensure these attacks don’t hit businesses, the new Kaspersky Endpoint Security hardens protection for endpoints on the Linux operating system. Network and Web threat protection components ensure inbound and outbound traffic doesn’t contain malicious activity. Data protection is enhanced with device control, allowing it to define the rules for transferring data to other devices," Kaspersky added.
Kaspersky Product Marketing vice-president Dmitry Aleshin said: “The technology and cybersecurity landscape is changing rapidly, meaning organisations have to deal with more challenges using the same resources. Therefore, they need a solution that will help them to address these evolving challenges effectively — through automated detection and response capabilities.
"Time and human resources are key for this, and Kaspersky’s new integrated solution is designed to help businesses save on both of these by providing the key features of incident investigation and remediation.”