With the help of EDR, companies even ward off extensive cyber attacks on their networks. An integrated approach equips even small businesses with automated tools that ward off complex attacks.
It makes sense that an attack on a company only makes sense if the potential gain outweighs the organizational costs. Until relatively recently, cyber criminals guarded their know-how like trade secrets. Advanced attack tools, if sold on the Internet at all, were not widely available - and if at all, only at exorbitant prices. Really sophisticated attacks were only aimed at large corporations or government agencies. Therefore, protection against mass threats was sufficient for SMBs.
However, the trends have changed. Tools for complex attacks are now popping up regularly - if not as open source, then on the free market. Malware developers are increasingly renting out their creations under the malware-as-a-service model, and cybercriminal groups have formed a kind of cartel. The result is that the cost of organizing an attack is plummeting. As a result, the profitability threshold drops and as a result, cybercriminals can afford to attack even small and medium-sized businesses with rather sophisticated tools.
Conventional endpoint protection solutions are only partially sufficient
As long as the threats to the company are limited to the carelessness of the employees and the email spam with malware attached, conventional endpoint protection solutions are sufficient. But now that it is evident that your business could be the target of a more serious attack, a new approach is needed. Today, attackers can target even smaller business supply chains, hide in the victim's infrastructure for years without being noticed, spy on it, and exploit zero-day vulnerabilities and malicious tools powered by legitimate software.
Large companies use fundamentally different defense instruments against such threats, primarily EDR solutions (Endpoint Detection and Response). But such platforms usually require, if not their own fully-fledged security center, then at least a decent team of IT security specialists. Not every company can afford this amount of IT security.
Integrated EPP and EDR platforms protect better
But that does not mean that the infrastructure can remain unprotected. Kaspersky has developed a different approach to endpoint protection that includes integrated EPP and EDR platforms with additional tools. In this way, an automated solution was created that can counteract both mass and complex threats.
The most important innovation here is the Kaspersky Endpoint Detection and Response Optimum component. In the product line, it occupies a niche between the fully automated Kaspersky Endpoint Security for Business and our high-performance enterprise-class solution for targeted and APT attacks - Kaspersky EDR. Kaspersky EDR Optimum makes it possible to implement the basic EDR scenarios that are required for a large number of companies. In addition, the solution offers infrastructure transparency as well as investigation options and response measures to incidents.
In this way, the security solution can quickly identify the root of the problem, assess the true extent and source of the attack and respond with an automatic defense on all workstations. This in turn minimizes any damage and ensures the continuity of business processes.
High level of usability
Probably the most notable feature of the new product is its ease of use. It does not require a high level of user expertise, and because of its high level of automation, it requires much less attention and routine maintenance than one might expect from an EDR-class security solution. These key elements enable small businesses to start building their defenses against complex threats without having to invest significant resources and completely reorganize their processes.
Depending on the capabilities an organization needs, the integrated solution can use additional tools to protect mail servers and Internet gateways, as well as Kaspersky Sandbox, an advanced tool for investigating suspicious objects in an isolated environment. This way, advanced, unknown, and complex threats can be automatically blocked without consuming additional resources, reducing the burden on your IT department.
Companies that already use the Kaspersky Endpoint Security for Business solution can easily upgrade them with the functions of Kaspersky EDR Optimum by activating an additional license key.
More on this at Kaspersky.de
About Kaspersky Kaspersky is an international cybersecurity company founded in 1997. Kaspersky's in-depth threat intelligence and security expertise serve as the basis for innovative security solutions and services to protect companies, critical infrastructures, governments and private users worldwide. The company's comprehensive security portfolio includes leading endpoint protection as well as a range of specialized security solutions and services to defend against complex and evolving cyber threats. Kaspersky technologies protect over 400 million users and 250.000 corporate customers. More information about Kaspersky can be found at www.kaspersky.com/