While conventional security technologies are good at protecting against generic threats, targeted attacks are more difficult to handle. Kaspersky Lab is looking to combat this type of attack with new offerings including the Kaspersky Anti Targeted Attack Platform, a sophisticated solution designed to detect targeted attacks, and a range of Security Intelligence Services, offering penetration testing, cybersecurity training and threat intelligence sharing.
The Kaspersky Anti Targeted Attack Platform enables businesses to detect targeted attacks and other malicious actions through the careful monitoring of network activity, including web and email. Based on the company’s security intelligence and expertise in discovering cyber threats, the platform utilizes network and endpoint sensors and a sandbox technology to detect abnormal and potentially malicious activity within a highly integrated system. The platform analyzes data collected from different points of the corporate IT infrastructure. Its sensors cover data acquisition over network traffic, web and email, as well as endpoints. This allows the solution to detect complex attacks at any stage, even when no malicious activity is taking place, like data exfiltration. Suspicious events are then processed via different engines, including an Advanced Sandbox and a Targeted Attack Analyzer for a final verdict.
“As we developed our Anti Targeted Attack Platform, we understood that a working solution cannot stand apart from well-known and highly efficient security approaches,” says Nikita Shvetsov, Kaspersky Lab’s Chief Technology Officer. “At the same time, new corporate threats demand new technology and intelligence an order of magnitude more complex than our existing solutions. The result of two years’ extensive investment of resources, expertise and talent is this premium product that helps enterprises to achieve new levels of security for their IT infrastructure”.
In addition the company is launching its Security Intelligence Services to meet the needs of larger businesses. These include a Security Assessment service to carry out penetration testing and application security assessment, plus access to threat intelligence data from Kaspersky Lab through threat data feeds and botnet tracking. Kaspersky is also offering training in security awareness and in digital forensics and malware analysis.