Kaspersky EDR Gains Incident Response Cybersecurity Capabilities
Kaspersky, the endpoint cybersecurity software provider, has incorporated incident response capabilities into its Integrated Endpoint Security offering, according to the company.
Integrated Endpoint Security enables organizations to use Kaspersky Endpoint Security for Business with Cloud Management Console, Kaspersky Endpoint Detection and Response Optimum (EDR Optimum) and Kaspersky Sandbox to instantly retrieve incident insights, the company said. It also helps organizations accelerate their incident investigations and automatically respond to incidents.
Organizations can leverage Kaspersky EDR Optimum for visibility across threats detected by Kaspersky Endpoint Security for Business, the company noted. Kaspersky EDR Optimum provides insights into malicious activity, including alert data and visualizations of a cyberattack’s spread path.
If Kaspersky Endpoint Security for Business identifies a suspicious file that cannot be categorized as malicious, the file is sent to Kaspersky Sandbox, the company indicated. Kaspersky Sandbox automatically runs the risky file in an isolated environment to determine if it is malicious.
Furthermore, Kaspersky EDR Optimum performs incident response actions such as isolating an endpoint with potential malware or quarantining a suspicious file, according to the company. In doing so, Kaspersky EDR Optimum ensures that a cyber threat does not spread to other machines.
Kaspersky Updates Its Office 365 Solution
In addition to its Integrated Endpoint Security updates, Kaspersky in March integrated Microsoft SharePoint Online and Teams capabilities into its Kaspersky Security for Microsoft Office 365 solution.
Organizations can use Kaspersky Security to secure all collaboration and messaging channels within Office 365, the company said. MSPs also can offer the service to provide safe, reliable file access to SharePoint Online to their customers.