MAC Spoofing Protection

The Network Threat Protection component tracks vulnerabilities in the Address Resolution Protocol (ARP). This way, the component protects the computer against attacks such as MAC spoofing. A MAC spoofing attack consists of changing the MAC address of a network device (network card). As a result, an attacker can redirect data sent to a device to another device and gain access to this data.

By default, Kaspersky Endpoint Security does not monitor MAC spoofing attacks.

To change the mode of protection against MAC spoofing attacks:

1. In the main application window, click the Settings button.
2. In the application settings window, select Essential Threat Protection → Network Threat Protection.
3. In the MAC spoofing Protection operating mode section, select one of the following options:
   • Do not track MAC Spoofing attacks.
   • Notify about all activity characteristic of MAC spoofing attacks.
   • Block all activity characteristic of MAC spoofing attacks.

Page top