Kaspersky has done a great job in providing clear and deep insight into a range of advanced attacks,” said Simon Edwards, Chief Executive Officer at SE Lab. ![]() Detecting each stage of an attack, without making mistakes is far tougher. “Detecting breaches is an extremely challenging task. With 100% of attacks detected, the solution also showed outstanding results in classifying legitimate applications and URLs with a 100% legitimate accuracy rating.īased on the total sum of the evaluated criteria, Kaspersky Endpoint Detection and Response finished with 98% in the total accuracy rating and was awarded the highest level of estimation – the AAA Award. Even better, it also detected in-depth insights, capturing details as each threat proceeded down the attack chain from the initial introduction to the system through its execution and subsequent behavior by the attacker. ![]() The test also considered the EDR’s ability to correctly identify legitimate applications and behavior, and measured any false positive detections or other sub-optimum interactions.Īccording to the independent laboratory, Kaspersky EDR detected every targeted attack and tracked each of the hostile activities that occurred during the test. After that, they tried to complete the attack goal, including stealing information, damaging systems and connecting to other systems on the network. Testers behaved as real adversaries, probing targets using a variety of tools, techniques, and vectors before attempting to gain access to the infrastructure. The solution’s performance was tracked at all major attack stages, from delivery to escalation and lateral action. To evaluate Kaspersky EDR capabilities, SE Labs’ engineers tested the product under a range of complex attacks similar or identical to those used by Dragonfly and Dragonfly 2.0, FIN7 and Carbanak, Oilrig, and APT29 threat groups. However, judging the effectiveness of these solutions is not an easy task, and many factors, such as the ability to detect, relevancy, and accuracy are at play when assessing how well the product will help during a real attack. With cyberattacks becoming more sophisticated and endpoints still the main target for cybercriminals, the importance of reliable endpoint protection cannot be overestimated.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |