Endpoint Detection and Response Expert Award

Kaspersky_news

Share post

The Kaspersky Endpoint Detection and Response Expert solution has received Strategic Leaders status after extensive testing by AV-Comparatives. In particular, the automated blocking and correct reporting of any attacks, as well as the consistent mapping of tactics, techniques and procedures (TTPs). MITER were recognized.

The testers also praised the product for its high return on investment (ROI) and low total cost of ownership (TCO). It was also ranked in the top 3 for best results in the Prevention\Response Capability category.

Short time to detect and respond to malware incidents

The ability to reduce the time to detect and respond to malware incidents is critical as the increasing frequency of targeted attacks on enterprise networks continues to drive the global EDR market. According to a study by The Insight Partners, the endpoint detection and response market is expected to grow from US$785,5 million (2017) to US$5.871,6 million (2025) at a CAGR of 28,8 percent (2018 to 2025). ) will grow. This means that EDR will quickly become a standard cybersecurity tool for most organizations.

According to AV-Comparatives' 'Enterprise EPR CyberRisk Quadrant' - part of the 'Endpoint Prevention and Response (EPR)' test - received ,Kaspersky Endpoint Detection and Response Expert' the highest rating as 'Strategic Leader'. This represents one of the highest levels of solution effectiveness in preventing and responding to security incidents combined with reasonable product cost and operational accuracy.

EPR tests with ten EPR products

As part of the EPR test, AV-Comparatives subjected ten EPR products to 50 different targeted attack scenarios. Each attack went through three separate phases: endpoint compromise and foothold, internal propagation and asset breach. At each stage, the test lab determined whether the product took automated action to actively block the threat in question, or provided information about the attack that an administrator could use to take passive action. It also tested whether the product could take remedial action, such as isolating an endpoint from the network, restoring it from a system image, or editing the Windows registry.

"Kaspersky Endpoint Detection and Response Expert was able to block all targeted attacks during the test before the threats could penetrate and infiltrate a corporate network," comments Andreas Clementi, CEO and founder of AV-Comparatives. "Both cumulative active and passive response rates were 100 percent."

Active and passive response rates at 100 percent

"We are very pleased with the new validation of Kaspersky EDR's ability to actively protect enterprise infrastructures from targeted attacks," said Alexander Liskin, Head of Threat Research at Kaspersky that we can develop efficient technologies for security solutions and thus secure our customers' corporate networks accordingly."

The results of the 'Endpoint Prevention and Response' test of AV-Comparatives are available online as PDF.

More at Kaspersky.de

 


About Kaspersky

Kaspersky is an international cybersecurity company founded in 1997. Kaspersky's in-depth threat intelligence and security expertise serve as the basis for innovative security solutions and services to protect companies, critical infrastructures, governments and private users worldwide. The company's comprehensive security portfolio includes leading endpoint protection as well as a range of specialized security solutions and services to defend against complex and evolving cyber threats. Kaspersky technologies protect over 400 million users and 250.000 corporate customers. More information about Kaspersky can be found at www.kaspersky.com/


 

Matching articles on the topic

Companies spend 10 billion euros on cybersecurity

Germany is arming itself against cyber attacks and is investing more than ever in IT and cyber security. In the current year the ➡ Read more

Qakbot remains dangerous

Sophos X-Ops has discovered and analyzed a new variant of the Qakbot malware. These cases first appeared in mid-December and they ➡ Read more

VexTrio: most malicious DNS threat actor identified

A DNS management and security provider has exposed and blocked VexTrio, a complex criminal affiliate program. This increases cybersecurity. ➡ Read more

Ransomware-resistant WORM archives for data backup 

A data archive is a must for every company. Few people know: An active WORM archive can help to streamline data backup, ➡ Read more

A comeback from Lockbit is likely

It is fundamentally important for Lockbit to be visible again quickly. Victims are presumably less willing to pay as long as there are rumors ➡ Read more

LockBit is alive

A few days ago, international law enforcement authorities scored a decisive blow against Lockbit. According to a comment from Chester Wisniewski, Director, Global ➡ Read more

Cyber ​​danger Raspberry Robin

A leading provider of an AI-powered, cloud-delivered cybersecurity platform warns about Raspberry Robin. The malware was first released in the year ➡ Read more

New scam Deep Fake Boss

Unlike classic scams such as the email-based boss scam, the Deep Fake Boss method uses high-tech manipulation ➡ Read more