Kaspersky has unveiled a series of upgrades to its Managed Detection and Response (MDR) platform, introducing enhanced automation, improved incident management capabilities, and a new offering tailored for industrial and embedded systems.
The updates are aimed at strengthening organisational security while enabling faster and more efficient responses to increasingly sophisticated cyber threats.
According to the company, Kaspersky MDR recorded strong performance in 2025, detecting up to three high-severity, human-driven incidents per day. Data from the Kaspersky Security Services Global Report also shows that response times improved by approximately 22% year-on-year, driven by advancements in automation, expanded detection rules, and continued input from its cybersecurity experts.
As cyber risks become more complex and difficult to detect, Kaspersky says the latest enhancements are part of a broader strategy to continuously evolve its security solutions and improve customer experience.
Among the key updates, Kaspersky Embedded Systems Security 4.0 (KESS) and KICS for Nodes 4.5 now feature a unified MDR agent. This integration is designed to simplify onboarding and improve system manageability, particularly in industrial environments where it helps reduce complexity, enhance resilience, and streamline maintenance.
The MDR platform has also been upgraded with enhanced container telemetry through Kaspersky Endpoint Security for Linux 12.4, offering greater visibility into containerised environments. This is expected to improve detection accuracy and accelerate risk identification.
In addition, new automated file transfer capabilities have been introduced via Kaspersky Anti Targeted Attack 8.0 and Kaspersky Next EDR Expert 8.0. With MDR integration enabled, files can now be shared automatically based on analyst requests, eliminating manual processes and speeding up responses to targeted cyberattacks.
Kaspersky has further strengthened incident response by enabling direct escalation from the MDR portal to its Global Emergency Response Team. This allows for comprehensive handling of complex incidents, including investigation, evidence collection, identification of attack vectors, and development of mitigation strategies.
To support deeper analysis, MDR incidents can now be automatically exported to Kaspersky SIEM 4.0, allowing for broader correlation with security events while maintaining MDR as the primary incident management hub.
The company has also introduced a one-click escalation feature from Kaspersky Next EDR Expert to MDR, giving organisations faster access to expert support and improved control over incident workflows.
Additional enhancements include enriched Telegram notifications, which deliver real-time updates with priority levels, affected assets, recommended actions, and direct links to incidents, reducing the need for users to log into the platform.
The MDR portal has also been fully optimised for mobile devices and tablets, enabling users to monitor and manage incidents remotely and improving overall operational efficiency.
“At Kaspersky, we are committed to continuously enhancing our MDR to stay ahead of evolving cyber threats and protect organisations worldwide across industries, 24/7,” said Renat Turianov, MDR Product Owner at Kaspersky.
“These latest updates bring extended integrations with the Kaspersky product portfolio, smarter automation, and new features that enable quicker and more precise responses, all designed to improve user experience in a threat landscape where agility and precision are critical.”
Go to TECHTRENDSKE.co.ke for more tech and business news from the African continent and across the world.
Follow us on WhatsApp, Telegram, Twitter, and Facebook, or subscribe to our weekly newsletter to ensure you don’t miss out on any future updates. Send tips to editorial@techtrendsmedia.co.ke
