Kaspersky named leader in 2025 SPARK Matrix for cyber threat intelligence
The SPARK Matrix report highlights Kaspersky's ability to deliver comprehensive services that support organisations globally in detecting, attributing, and responding to complex cyber threats. According to QKS Group, Kaspersky's threat intelligence offering is backed by extensive cybersecurity experience and a research team acknowledged internationally for its work.
Kaspersky's Threat Intelligence services provide real-time access to an extensive collection of threat data, advanced persistent threat (APT) insights, malware analysis, and digital risk intelligence. The company reports that it tracks more than 1,100 cyber threat actors and campaigns worldwide and produces upwards of 200 threat intelligence reports each year.
The continual research effort by Kaspersky supports a large-scale APT collection containing over 100,000 files, augmented by the use of advanced automated tools. This combination helps the company deliver a high degree of attribution accuracy for threat actor identification and campaign analysis, which is crucial for managed security service providers (MSSPs) and large enterprises seeking robust cyber defence capabilities.
Kaspersky was acknowledged for its position in both technological leadership and customer impact among vendors assessed globally by QKS Group. This recognition highlights the company's contribution to the evolving field of cyber threat intelligence and its practical value to a range of organisations facing security challenges.
Alexander Liskin, Head of Threat Research at Kaspersky, said, "We are honored to be recognised as a Leader in the 2025 SPARK MatrixTM for Digital Threat Intelligence Management by QKS Group. This acknowledgment reflects our long-standing commitment to providing deep, actionable threat intelligence that helps organisations stay ahead of ever-evolving cyber threats. We will continue to innovate and empower our customers and partners with the tools they need to protect their digital environments with confidence."
The SPARK Matrix report also points to recent enhancements in Kaspersky's offerings. QKS Group Analyst Arpita Dash commented, "Kaspersky continues to differentiate itself in the threat intelligence space with its rich and meaningful context, deep expertise in malware detection and APT research, and a vast collection of malware and clean files for precise attribution. Its latest advancements, including the Digital Footprint Intelligence Dashboard and enhanced multitenancy capabilities, significantly improve usability for MSSPs and enterprises."
"The introduction of a Tenant Center dashboard further streamlines threat monitoring and asset management. With AI localisation for Threat Intelligence Reporting and an interactive mode for the Research Sandbox on the roadmap, Kaspersky reinforces its commitment to driving innovation in cyber threat intelligence."
Organisations utilising Kaspersky's intelligence solutions gain access to resources that aim to improve their ability to respond to cyber incidents and manage digital risk. Features such as the Digital Footprint Intelligence Dashboard are designed to help enterprises monitor and understand their exposure, while multitenancy capabilities cater to the requirements of organisations managing security for multiple clients or subsidiaries.
The roadmap for Kaspersky's threat intelligence services includes further enhancements such as artificial intelligence-based localisation for threat intelligence reports and interactive improvements to its research sandbox tools. These developments are intended to broaden the accessibility and effectiveness of Kaspersky's offerings for a diverse global user base.
Kaspersky's recognition in the 2025 SPARK Matrix assessment by QKS Group reflects industry acknowledgment of its commitment to providing customers with contextual and actionable threat intelligence, supporting a broad spectrum of defence strategies against modern cyber risks.
Hashtags
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Techday NZ
2 days ago
- Techday NZ
SonicWall debuts Gen 8 platform with firewalls & USD $200,000 warranty
SonicWall has introduced its Generation 8 cybersecurity platform, unveiling nine new firewall models alongside key updates aimed at managed service providers (MSPs) and managed security service providers (MSSPs). The Generation 8 portfolio incorporates built-in Zero Trust features, an embedded cyber warranty, and expanded unified cloud management to support partners in delivering scalable cybersecurity services. As demand for robust and simplified security solutions continues, SonicWall states that the enhancements are specifically designed to address current cybersecurity challenges faced by MSPs, MSSPs, and their customers. New product lineup The new portfolio consists of eight firewall models ranging from the compact TZ280 to the enterprise-focused NSa 5800. These devices are engineered to provide security and performance for environments that include small offices, distributed networks, and mid-sized enterprises. Each model is managed through the SonicWall Unified Management cloud platform and includes integrated Zero Trust capabilities alongside the latest SonicOS enhancements. SonicWall is also launching the industry's first embedded cyber warranty, which provides up to USD $200,000 coverage for each managed firewall as part of the Managed Protection Security Suite (MPSS). Additional options such as 24/7 co-managed security services - backed by SonicSentry's team of security professionals - are available to partners. Unified platform approach The Generation 8 update moves SonicWall's offering beyond hardware, promoting an integrated approach that combines appliances, software, managed services, and flexible billing. The unified platform is underpinned by deep third-party integrations to facilitate partners' scaling and provide security across different network and cloud environments. Notably, SonicWall Unified Management provides a single cloud console to oversee firewalls, network policies, access controls, and accounts, helping to lower the operational complexity associated with multi-tenant networks. Embedded with each firewall, SonicWall's Zero Trust Network Access (ZTNA) provides built-in licenses to enable secure remote access without requiring additional investments. The platform is rounded out with co-managed security services such as real-time monitoring, patching, and monthly reporting. Partner and executive perspective Bob VanKirk, President and Chief Executive Officer of SonicWall, described the announcement as a fundamental development for customers and partners. "We're not just delivering a new set of high-performance firewalls, we're preparing our partners and their customers for the latest threats and market requirements," said VanKirk. "Our new firewall lineup is just one part of a broader, unified platform strategy. With SonicWall Unified Management, embedded ZTNA, the SonicSentry managed services team, and the industry's first built-in cyber warranty, we're helping partners shift from resellers to high-value security providers. This launch arms our partners with the tools they need to win more business and strengthen customer trust by providing market-leading cybersecurity protection." Jason Carter, Chief Revenue Officer at SonicWall, noted the importance of business support alongside technology enhancements. "Today's MSPs and MSSPs need more than just great technology, they need support scaling their business," said Carter. "From flexible licensing to co-managed security services, we're giving partners every advantage to grow margins, differentiate offerings, and meet their customers' evolving needs." Debasish Mukherjee, Vice President of Sales, APJ at SonicWall, highlighted regional market requirements. "MSPs and MSSPs especially in the APJ region are under increasing pressure to deliver stronger security outcomes while scaling efficiently across diverse markets. SonicWall's new Generation 8 platform directly addresses this challenge, combining intelligent firewalls, cloud-native management, and built-in Zero Trust into one, unified solution. It's built for today's real-world needs, enabling partners to lead with confidence while helping customers stay secure and ahead of evolving threats." Real-world use cases and recurring revenue The Generation 8 launch addresses a spectrum of use cases, from securing small and mid-sized businesses to multi-tenant, compliance-driven environments. The platform also provides co-management reporting for easier compliance, and its bundled warranty and optional cyber insurance extend up to USD $1 million for eligible offerings. All service options - including self-managed Advanced Protection Security Suite (APSS) and the co-managed MPSS - are available with monthly billing and no minimum or long-term commitment. This approach is designed to help partners align their offerings with client requirements while building consistent recurring revenue streams. SonicWall's Generation 8 cybersecurity platform is positioned to help service providers bridge the gap between increasing security demands and operational efficiencies, offering a unified solution for network and cloud threat protection.
Techday NZ
01-07-2025
- Techday NZ
Exclusive: Qualys' Sam Salehi explains why ANZ firms are turning to risk platforms
Cybersecurity is changing fast - and Australian and New Zealand businesses are struggling to keep up. According to Sam Salehi, Managing Director of Qualys for Australia and New Zealand, the region is facing a combination of a skills crisis, evolving threat landscape and rising customer expectations. Salehi has led the ANZ arm of the cybersecurity company for just over a year. His number one focus is supporting customers while growing his team and expanding services through partners. "In the next 12 months, we will continue to develop our managed risk operation centre (mROC) services in partnership with MSSPs," he said. "I'll also focus on hiring more people and expanding the team in the ANZ region." However, talent is hard to come by. "My take on it is cybersecurity moves really fast," he said. "We haven't paid enough attention to educating the younger generation to enter this field. Also, many people are coming from other industries, which means it takes longer to upskill." He referenced a global estimate predicting over three million cybersecurity jobs will be vacant in 2025. While that figure is staggering, Salehi said it highlights the importance of building an ecosystem of partners and investing in automation. That thinking has led Qualys to embrace a "channel-first" strategy in ANZ. "My team is around seven people, so shifting to channel-first helps us expand market reach and accelerate growth," he said. "We now have more than 80 active partners in this region." The company also created a new role - channel account manager - to support those partners and ensure they're equipped to help customers. It's part of a wider effort to raise awareness of what Qualys actually offers. "Though we are a household brand when it comes to vulnerability management, we do 20 different things that people don't know about," Salehi said. "That really shocked me." He added that many customers still assume Qualys is only a VMDR vendor. "When I tell them we play in API security, AI, patching - they're surprised," he said. "Some of them ask, 'Since when are you doing this?' And I say, 'It's been five years.'" Salehi believes part of the issue lies in how the company traditionally went to market, and hopes the channel-first model will broaden its reach and change perceptions. That ties into another growing trend he sees: platformisation. "Companies are now looking for best of platforms, not best of breed," he said. "Instead of having ten vendors, they want to narrow it down to three and get better outcomes." Cloud security and remediation are also top requests from customers, alongside automation tools that help lean teams do more with less. To support that, Qualys recently launched TruRisk Eliminate - a platform offering patching, mitigation and isolation from a single console. It's aimed at overwhelmed security teams who need more efficient ways to reduce exposure. "There are ready-made playbooks so your team doesn't have to spend hours researching how to fix something," Salehi explained. "The isolation feature is also granular - you can lock a server to run just a few specific applications." Another recent addition is Policy Audit, an enhancement to the company's existing compliance tools. "This drastically cuts manual audit preparation time," he said. "It helps organisations stay audit-ready, especially with increasing regulations like the SOCI Act and mandatory data breach notifications." Qualys has also leaned into education and community building. Over the past year, Salehi and his team delivered 20 risk quantification workshops across ANZ, led by US-based expert Richard Seiersen. "When you give back to your community and enhance knowledge around a critical topic like risk management, it builds trust," he said. The workshops were free and well attended, each drawing 8 to 12 senior stakeholders from across industries. Salehi described Seiersen as "a celebrity in cybersecurity risk". "People want help communicating cyber risk in a business context," he said. "That's still missing in the market." Salehi says one of the most impactful developments for Qualys in this space is the company's Enterprise TruRisk Platform, which underpins its Risk Operations Centre (mROC) offering. It unifies cybersecurity, operational and financial risk insights into a single pane of glass. "It enables business context," he said. "Not all vulnerabilities matter equally - it depends on their impact. This helps customers focus on what matters first." That solution is also available via a managed version (mROC), delivered in partnership with MSSPs. "These partners become strategic advisors to customers," he said. "They help with risk advisory, onboarding, integration and continuous monitoring." "Reflecting on the past 13 months, Salehi said his focus was on bringing everyone together - being a small team, fostering a culture of support and collaboration was key". "It took time to bring everyone together and build a culture of support," he said. "We're a small team, and some functions like HR and legal are offshore, so collaboration is key." Despite being part of a publicly listed company, Salehi said Qualys has a family-like culture. Much of that comes from CEO Sumedh Thakar, who's been with the business for over two decades. "He's so approachable and empowering," he said. "It inspired me to lead the same way in ANZ." For Salehi, customer relationships remain a top priority. "I've had over 100 customer meetings this year," he said. "It's not about selling a product, it's about understanding the person in front of you."
Techday NZ
03-06-2025
- Techday NZ
SOCRadar boosts MSSP support with free AI training, new tools
SOCRadar has announced an expansion of its Managed Security Service Provider (MSSP) programme designed to support partners in scaling operations, automating threat workflows, and improving service delivery. As part of the enhanced programme, SOCRadar will provide free AI Agent and Automation Training to its partners. This training aims to educate MSSPs on the use of AI agents and generative AI (GenAI) technologies to streamline security operations centre (SOC), threat intelligence, and vulnerability management processes. The training is described as platform-agnostic, equipping MSSP partners with hands-on experience to build their own AI-powered workflows, irrespective of the specific tools they currently deploy. Alongside the introduction of free training, SOCRadar has implemented several enhancements to its MSSP programme, including multi-tenant licensing, threat intelligence use cases designed specifically for MSSPs, a Multi-Tenant Management Console, and configurable External Threat Assessment Reports. "Our enhanced MSSP program enables partners to scale smartly and serve clients more effectively. By combining AI Agents with our extended threat intelligence capabilities, MSSPs can double their operational efficiency—automating routine workflows, accelerating incident response, and delivering tailored intelligence without adding headcount. We believe AI Agents and GenAI will be foundational to the future of MSSPs, and we're committed to helping our partners lead that transformation," Huzeyfe Onal, Chief Executive Officer of SOCRadar, said. According to SOCRadar, its AI agents are intelligent automation components embedded within the company's Extended Threat Intelligence (XTI) platform. These agents utilise Large Language Models (LLMs) and automation scripts with the ability to execute complex, multi-stage cybersecurity workflows. Unlike traditional scripts or static rules, SOCRadar's AI agents can analyse contextual information, make decisions based on data, and take actions across multiple IT systems. This approach is intended to reduce the manual workload for analysts, while increasing both the speed and accuracy of threat detection and response. MSSPs can create what SOCRadar refers to as "smart workflows" by establishing specific goals and operational boundaries for each AI agent. The agents then apply planning, reasoning, and learning methods to support tasks such as identifying threats, enriching data, correlating alerts, or prioritising vulnerabilities for remediation. The company listed several key benefits of its framework for MSSPs, including the automation of threat intelligence, SOC, and vulnerability management tasks; reduction in analyst workload while accelerating detection and response times; improvement in decision accuracy with a reduction in false positives; enablement of continuous monitoring across multiple clients without increasing staffing; and the potential to increase both scalability and profitability whilst preserving service quality. SOCRadar reports that it serves over 800 customers in 70 countries. Its Extended Threat Intelligence Platform makes use of artificial intelligence and machine learning for threat detection and to deliver actionable intelligence against cyber threats. The suite of offerings includes Cyber Threat Intelligence, External Attack Surface Management, Brand Protection, Dark Web Monitoring, and Supply Chain Threat Intelligence.
