A study conducted by global cybersecurity firm, Kaspersky, has revealed that 77% of companies worldwide have experienced at least one cyber incident in the past two years. Alarmingly, 21% of these incidents were due to employees becoming victims of phishing attacks. In order to address escalating email threats, Kaspersky has significantly overhauled its Kaspersky Security for Mail Server solution.
The enhanced Kaspersky Security for Mail Server provides advanced functionality for managing content, quarantine management, and heightened visibility for Security Operations Centers (SOC). One of the stand-out features of the latest update is superior content filtering capabilities. This allows administrators to develop intricate filtering rules dependent on keywords seen in the subject lines, main text, senders, and attachment names of emails. The revamped product also features a Data Leak Protection (DLP) tool to oversee outgoing emails for sensitive data.
Security Operations Centres (SOCs) benefit from comprehensive information regarding blocking events, including specifics of the attachments, outcomes of their scans, and determinations on obstructed links. Administrators can capitalise on the improved quarantine functionality, permitting them to view quarantined emails in their original format directly from the console. This simplifies the process of quarantine management, granting administrators added transparency and control over potential mail threats.
Kaspersky’s Security for Mail Server solution now enables administrators to create dictionaries of both permitted and prohibited keywords. This optimises filtering rules for different user groups. These dictionaries are centrally applied to all associated filtering rules, assuring both consistency and efficiency in managing mail security. The solution also boasts a feature to monitor outgoing emails for sensitive data (Data Leak Protection), this can detect and block the transmission of certain types of data formats, such as credit card numbers, reducing the risk of data leaks.
Furthermore, the update optimises visibility for SOC teams, with comprehensive information on blocking events, including details of the attachments, scan results, and blocked link verdicts. This improved visibility assists SOC analysts in correlating events and enhancing incident response strategies.
Regarding the update, Timofey Titkov, Head of Cloud & Network Security Product Line at Kaspersky, commented, “We’re proud to announce the latest update to our product for defending email: the main communication channel in all businesses. With its multi-layered defense mechanisms powered by machine learning algorithms and comprehensive defense systems, Kaspersky Security for Mail Server provides robust protection against a wide range of threats and offers peace of mind to our clients in the face of evolving cyber risks. With this update, we’re reinforcing our commitment to delivering cutting-edge solutions that empower organisations to defend against non-standard Trojans, targeted ransomware attacks, and other emerging threats in today’s dynamic threat landscape.”
About Author
