Kaspersky Endpoint Security Cloud now includes endpoint detection and response (EDR) capabilities dedicated for small and medium-sized organizations. It gives IT administrators visibility over affected endpoints and the attack kill chain, so they can analyze incident parameters and root causes, and then take proactive measures to enhance overall business protection.
Reliable protection from cyber-risks is essential for small and mid-sized businesses to keep their work, data, and finances safe. However, according to Kaspersky’s research, these companies may lack visibility over the IT environment when dealing with threats. This was ranked as one of the biggest challenges by 40% of SMBs. Details about an attack, affected users and the entry point can help businesses improve their security practices, in addition to the automated protection on all corporate endpoints.
By knowing how a threat gets into an endpoint, administrators can fine-tune security policies and take additional protection and awareness measures where necessary. For example, analysis could reveal that malware got onto an employee’s laptop disguised as a graphic file through a phishing email. The administrator could then update anti-phishing settings, make changes in security profiles for users who work with sensitive information and identify that employees may require additional training on cybersecurity.
Andrey Dankevich, Senior Product Marketing Manager, B2B Product Marketing at Kaspersky, said, “This update brings specific educational value for small and medium businesses. It helps IT managers improve their cybersecurity expertise and gain basic incident investigation skills. They can learn more about different types of threats in the wild, through a simple and demonstrative tool, and prepare themselves to work with more complex security challenges and solutions.”