Kaspersky Lab Enhances Enterprise Incident Response with Kaspersky Threat Lookup

Kaspersky Lab announces the global availability of Kaspersky Threat Lookup – a security intelligence service aimed at enhancing enterprise incident response and cybersecurity forensics capabilities. Kaspersky Threat Lookup provides access to several petabytes of global security intelligence data that is being updated almost in real-time. This always-on web service helps businesses to properly analyze digital evidence in light of a security incident and obtain the insights needed to speed up detection and remediation.

According to a survey of more than 4,000 business representatives worldwide, conducted by Kaspersky Lab and B2B International in 2016, time is the crucial factor in incident detection and response. he survey findings show that enterprises pay over 100% more in recovery fees if they are unable to detect a security breach in a short time. The average recovery cost of a breach that stays undetected for a week or more is over $US1 million, while instantly discovered incidents cost US$400k to mitigate, almost half the overall industry average.

Kaspersky Threat Lookup is the solution of choice for corporate IT security teams to accelerate their incident response and forensic capabilities. Once suspicious indicators such as IP, URL or file hash have been identified by a corporate IT security officer, they can be entered into the service web interface. In return, users are provided with meaningful and structured information about a potential threat and offers global insights that help identify a targeted attack in progress.

Kaspersky Threat Lookup offers enterprises the same level of intelligence that Kaspersky Lab specialists use to analyze the most sophisticated threats, and includes indicators of compromise for these new attacks. One of the early adopters of Kaspersky Threat Lookup service is INTERPOL. Kaspersky Lab has been offering early access to the organization’s threat intelligence according to the expertise sharing agreement to help investigate cybercrime.