Kaspersky Lab this week announced Kaspersky CyberTrace, a free threat intelligence fusion and analysis tool to make it easier for security teams to access threat intelligence.
Available for free globally, the solution was designed to aggregate and evaluate disconnected data feeds, to help security teams monitor, detect and identify threats to their organizations and improve incident response.
With the new tool, Kaspersky aims to help CISOs improve their threat intelligence consumption, an operation that becomes increasingly difficult due to the amount of available threat intelligence sources.
Kaspersky CyberTrace not only brings relevant information to organizations, but also helps them unify the threat data formats by connecting the data with security information and event management (SIEMs), as well as network security controls.
The tool, Kaspersky says, retrieves continuously updated threat data feeds from multiple threat intelligence sources and matches them with incoming security events, thus allowing enterprises to keep up-to-date with the latest threats.
The free tool integrates with SIEMs such as IBM QRadar, Splunk, ArcSight ESM, LogRhythm, RSA NetWitness, and McAfee ESM, as well as other security controls.
As soon as Indicators of Compromise (IoC) from threat intelligence feeds are discovered in log sources within an organization’s environment, the Kaspersky CyberTrace alerts SIEMs for ongoing monitoring and validation.
It also helps prioritize tasks and also enables advanced in-depth threat investigation, to accelerate forensic and threat hunting activities. Additionally, it provides feed usage statistics to measure their effectiveness and relevance for a certain environment.
“Manually collecting, analyzing and sharing threat data doesn’t provide the level of responsiveness required by an enterprise. Kaspersky CyberTrace helps organizations better understand their risks, increase the productivity of their security teams and ensure a more robust protection against cyberthreats,” Sergey Martsynkyan, head of B2B product marketing at Kaspersky Lab, says.
For the first time in several years, Kaspersky Lab this week shared company sales metrics, announcing stable growth in 2018 and a 4% revenue increase compared to 2018. The company did acknowledge an overall slowdown in the North American market, where sales decreased by 25%, mainly due to geoplitical tensions and a ban by U.S. government.