Kaspersky KATA 7.0: The next level of targeted attack protection
According to Kaspersky's IT Security Economics 2024 report, an overwhelming majority of organizations report network attacks. Large enterprises lead with 97% reporting an attack, followed by SMEs at 88%, and SMBs at 83%. With this in mind, Kaspersky updates its solutions regularly to ensure businesses are equipped to meet evolving security requirements.
The latest enhancements in KATA 7.0 address key customer challenges by delivering full visibility across IT infrastructure, advanced defense against sophisticated threats, and a streamlined, resource-efficient security solution. The update introduces network telemetry export from Kaspersky Endpoint Security for Windows and Linux, adding one more additional source of network data collection to copy of SPAN traffic, which improves visibility and threat detection.
The introduction of new asset management, network map, and network session table modules, provides SOC analysts with enhanced tools for monitoring and managing network security through graphical representations, advanced filtering, and interactive features. These additions create a complete network inventory and management system.
The updated platform also strengthens internal traffic monitoring with new NDR IDS rules for east-west traffic analysis, improving the detection of lateral movement, data exfiltration and other malicious attempts that could previously have gone unnoticed. Additionally, new risk and anomaly detection capabilities identify hidden threats and potential security vulnerabilities before they escalate into breaches, helping organizations proactively manage cybersecurity risks.
As KATA offers comprehensive security at both the network and endpoint levels, its Endpoint Detection and Response technology, EDR Expert, has also undergone significant updates in version 7.0. The variety of collected telemetry types has been expanded, providing enhanced visibility into an event at endpoints.
Threat hunting search capabilities have also been improved, with search now available across all the events attributes. This enables more effective threat detection and creates more accurate exceptions to minimize false positives. Sigma-rules support has also added with this update meaning it is now possible to find threats according to the condition contained in the Sigma rule in historical data or new events collected from the endpoints.
'With the launch of KATA 7.0, we are reinforcing our commitment to providing enterprises with a fully integrated security solution capable of detecting and mitigating complex threats across both network and endpoint levels,' said Alexander Rumyantsev, Senior Product Manager Cloud & Network Security at Kaspersky. 'These enhanced NDR capabilities, expanded visibility, and real-time intelligence empower organizations to detect and mitigate threats more effectively than ever before.'
For more information about Kaspersky Anti Targeted Attack 7.0, please visit the link.
About Kaspersky
Kaspersky is a global cybersecurity and digital privacy company founded in 1997. With over a billion devices protected to date from emerging cyberthreats and targeted attacks, Kaspersky's deep threat intelligence and security expertise is constantly transforming into innovative solutions and services to protect businesses, critical infrastructure, governments and consumers around the globe. The company's comprehensive security portfolio includes leading endpoint protection, specialized security products and services, as well as Cyber Immune solutions to fight sophisticated and evolving digital threats. We help over 200,000 corporate clients protect what matters most to them. Learn more at www.kaspersky.com.
Hashtags
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Gulf Business
a day ago
- Gulf Business
Three cyber safety tips for executives working while travelling
Image: Getty Images In today's era of hybrid work, going on holiday no longer means disconnecting from the office entirely. Thanks to widespread connectivity—available at airports, train stations, hotels, restaurants, and most public indoor spaces—many professionals blend work and leisure, accessing free Wi-Fi or reliable 4G/5G coverage from virtually anywhere. However, this constant connectivity has also caught the attention of cybercriminals. Ahead of the Summer Olympic and Paralympic Games, Kaspersky experts analysed nearly 25,000 free Wi-Fi hotspots in Paris, finding that almost 25 per cent had weak or no encryption—putting travellers at risk of personal and financial data theft. The unfamiliarity of new surroundings and potential language barriers can create ideal conditions for cyberattacks, meaning business travellers must take extra precautions when logging on. Kaspersky outlines three essential tools and practices for staying secure while working on the move: 1. Use a VPN for secure connections A VPN encrypts internet traffic, preventing hackers from intercepting sensitive information such as login credentials or financial details. This is critical when accessing work emails or corporate files on public Wi-Fi. 2. Switch to an eSIM for secure mobile data An eSIM enables travellers to access local mobile networks without a physical SIM card, helping avoid roaming fees and reducing reliance on unsecured Wi-Fi. With an eSIM, data plans can be downloaded in advance, ensuring instant connectivity upon arrival. Services like the Kaspersky eSIM Store allow users to purchase, activate, track, and top up data plans through a single app. 3. Enable two-factor authentication (2FA) 2FA adds an extra layer of protection for critical accounts, particularly important when devices may be left unattended during travel. Kaspersky further advises travellers to combine these measures with robust, real-time cybersecurity solutions. Comprehensive tools such as Read: By combining a VPN, eSIM, 2FA, and advanced antivirus software, professionals can work securely from anywhere—whether emailing from a poolside or joining a meeting from a festival venue.
Tahawul Tech
a day ago
- Tahawul Tech
Kaspersky shares tips for safer remote working
It is holiday season in many parts of the world, these days, though, going on holiday does not always mean turning back on office life – hybrid work cuts both ways. Today's widespread connectivity—available at airports, train stations, restaurants, hotels, and most indoor public spaces—makes staying connected easier than ever, with free Wi-Fi in many locations and reliable 4G or 5G coverage elsewhere, facilitating a seamless blend of work and leisure even while on holiday. This increase in connectivity among travellers has not gone unnoticed by cyber criminals. Kaspersky experts analysed nearly 25,000 free Wi-Fi spots in Paris ahead of the Summer Olympic Games and Paralympic Games. The analysis revealed that almost 25% of these networks had weak or no encryption, making users vulnerable to personal and banking data theft. Travelers often have their guard down. The unfamiliar surroundings of a new location or a different language can throw up a useful smokescreen for a cyberattack, meaning additional care needs to be taken when logging on. Fortunately, a few smart tools and habits can help you stay protected while enjoying the flexibility of remote work. Use a VPN for secure connections A VPN is one of the most effective ways to safeguard users' online activity, especially when working from unfamiliar locations. By encrypting internet traffic, a VPN ensures that hackers can't intercept sensitive data like login credentials or financial details. This is particularly important when accessing work emails or company files on public Wi-Fi, where cybercriminals often lurk. Switch to an eSIM for reliable, secure mobile data Another useful digital tool that provides a seamless way to stay connected using local mobile networks with no physical SIM card required is the eSIM. This is a game-changer for international travellers who want to avoid sky-high roaming charges or the hassle of hunting down temporary SIM cards in foreign countries. With an eSIM, a user can download a local data plan before you even arrive at your destination, ensuring instant connectivity the moment you land. This eliminates the need to rely on unsecured Wi-Fi hotspots, significantly reducing your exposure to cyber threats. Plus, many eSIM providers allow you to manage multiple profiles on a single device, making it easy to switch between work and personal data plans without juggling multiple phones. Services like Kaspersky eSIM Store enables users to purchase and activate data plans in advance, track usage and top up as needed, all from a single app. Enable two-factor authentication (2FA) When traveling, people often leave devices unattended. To protect against unwanted people logging in, travellers should ensure two-factor authentication (2FA) is enabled on all critical accounts and that passwords are used all devices. Final tips for a secure summer workcation Even with a VPN, eSIM and 2FA in place, your devices still need strong defences against malware, phishing scams and ransomware. Cybercriminals often target remote workers who may let their guard down while traveling, making real-time protection essential. Modern antivirus software does more than just scan for viruses, it actively blocks malicious downloads, warns you about phishing attempts and even secures your passwords and financial data. For the most robust security, consider a solution like Kaspersky Premium, which combines antivirus protection, a VPN and password management into a single, easy-to-use package. By combining a VPN, eSIM and strong antivirus, you can work from anywhere with confidence, whether you're sending emails from a poolside or joining a video call from a festival tent. For more expert advice on remote work safety, explore Kaspersky's Remote Work Security Guide. Image Credit: Stock Image
Tahawul Tech
a day ago
- Tahawul Tech
Kaspersky uncovers Efimer trojan delivered via phishing emails
According to Kaspersky Security Network, between October 2024 and July 2025, over 5,000 users — both individuals and organisations — fell victim to the Efimer trojan. The malware was particularly impactful in Brazil, affecting around 1,500 victims. These attacks also targeted users in India, Spain, Russia, Italy, and Germany. Kaspersky has discovered a rapidly escalating malicious campaign targeting corporate users with Efimer — a trojan designed to steal and replace cryptocurrency wallet addresses. Initial versions of Efimer appeared in October 2024 and were distributed through compromised WordPress websites. However, in June 2025, the malware began spreading via phishing emails as well. Disguised as a legal firm, the attackers send emails threatening recipients with lawsuits over alleged domain name patent violations to trick them into downloading the malware. This approach allows Efimer to build its own malicious infrastructure and continue spreading to new devices. 'This Trojan is notable for its dual approach, to spreading — targeting both individual users and corporate environments with different tactics. For private users, attackers use torrent files pretending to be popular movies to lure victims, while in corporate settings, they rely on fraudulent emails containing legal threats. Crucially, in both cases, compromise only occurs if the user actively downloads and executes the malicious file,' explains Artyom Ushkov, threat researcher at Kaspersky. Kaspersky recommends corporate and individual users: Refrain from downloading torrent files from unknown or untrusted sources. Recipients should carefully verify the legitimacy of email senders and ensure antivirus databases are regularly updated. Avoid clicking on links or opening attachments in unsolicited or spam emails to reduce the risk of malware infection. Stick to best practice including regular software updates, enforcing strong passwords and two-factor authentication, as well as continuous monitoring for signs of compromise. Install a trusted security solution and follow its recommendations. Secure solutions will solve the majority of problems automatically and send alerts. For developers and website administrators: implementing robust security measures to protect their infrastructure from unauthorised access and malware propagation is essential. Find the full report on Image Credit: Kaspersky
