Kaspersky said on the 29th that it unveiled a Threat Intelligence Reporting platform to support swift decision-making and proactive threat response.
Kaspersky Threat Intelligence Reporting is a subscription service that provides more than 200 in-depth analytical reports a year. The reports are produced by continuously tracking and analyzing more than 900 threat actors and attack campaigns by the Kaspersky Global Research and Analysis Team (GReAT), the Industrial Control Systems Cyber Emergency Response Team (ICS CERT), and threat research experts.
With this overhaul, reports that had been offered as a static PDF library were converted into structured content that can be explored and analyzed directly in the Kaspersky Threat Intelligence Portal. The PDF download function for offline use is also maintained.
Each report links technical information such as indicators of compromise (IoC), detection rules (including YARA), and MITRE ATT&CK. Threat actors, malware families, and Common Vulnerabilities and Exposures (CVE) information can be deeply analyzed by country and industry with a single click.
A smart regional filtering feature was also added. It prioritizes threat information related to a specific country, then presents broader regional threat information so analysts can obtain comprehensive region-based threat insights with a single search.
Through this platform, Kaspersky supports customized report searches by country, industry, and software. It also provides analytical reports that include undisclosed incident investigation cases, and allows threat data in the reports to be applied to organizational infrastructure to detect traces of compromise. It also offers an instant check to see whether suspicious indicators are linked to a specific threat report.
Alexander Mazikin, head of the Kaspersky threat intelligence product line, said, "Supporting business resilience in a complex threat environment is the core goal of this improvement effort," adding, "During the Kaspersky Threat Intelligence Portal update, we focused on enhancing the customer experience with active threat investigation, proactive incident monitoring, and detailed response plan analysis."