What's new

Update 11.8.0

Kaspersky Endpoint Security 11.8.0 for Windows offers the following features and improvements:

  1. You can now upgrade Kaspersky Security for Windows Server to Kaspersky Endpoint Security for Windows. Now you can use Kaspersky Endpoint Security for Windows instead of Kaspersky Security for Windows Server on servers and clusters of your organization. To make this possible, Kaspersky Endpoint Security has new functionality:
    • Added support for Web Threat Protection, Mail Threat Protection, Web Control and Device Control components for computers running Windows for servers.
    • Now you can migrate the component set of Kaspersky Security for Windows Server to Kaspersky Endpoint Security for Windows when you upgrade the application. Prior to the installation, Kaspersky Endpoint Security (KES) checks the computer for the presence of Kaspersky applications. If Kaspersky Security for Windows Server is installed on the computer, KES detect the set of KSWS components that are installed and selects the same components for installation.
  2. Added the built-in agent to support the operation of the Kaspersky Endpoint Detection and Response Expert solution. Kaspersky Endpoint Detection and Response Expert is a solution for protecting the corporate IT infrastructure from advanced cyber threats. The functionality of the solution combines automatic detection of threats with the ability to react to these threats to counteract advanced attacks including new exploits, ransomware, fileless attacks, as well as methods using legitimate system tools. EDR Expert offers more threat monitoring and response functionality than EDR Optimum. For more information about the solution, refer to the Kaspersky Endpoint Detection and Response Expert Help.
  3. Network Monitor interface is now improved. The Network Monitor now shows the UDP protocol in addition to TCP.
  4. The Virus Scan task was improved. If you have rebooted the computer during the scan, Kaspersky Endpoint Security automatically runs the task, continuing from the point where the scan was interrupted.
  5. Now you can set a limit for task execution time. You can limit the execution time for Virus Scan and IOC Scan tasks. After the specified amount of time, Kaspersky Endpoint Security stops the task. To reduce the Virus Scan task execution time, you can, for example, configure the scan scope or optimize the scan.
  6. Limitations of server platforms are lifted for the application installed on Windows 10 Enterprise multi-session. Kaspersky Endpoint Security now considers Windows 10 Enterprise multi-session a workstation operating system, not a server operating system. Correspondingly, server platform limitations no longer apply to the application on Windows 10 Enterprise multi-session. The application also uses a workstation license key for activation instead of a server license key.

Update 11.7.0

Kaspersky Endpoint Security for Windows 11.7.0 offers the following new features and improvements:

  1. The interface of Kaspersky Endpoint Security for Windows is updated.
  2. Support of Windows 11, Windows 10 21H2 and Windows Server 2022.
  3. Added new components:
    • A built-in agent for integration with Kaspersky Sandbox was added. The Kaspersky Sandbox solution detects and automatically blocks advanced threats on computers. Kaspersky Sandbox analyzes object behavior to detect malicious activity and activity characteristic of targeted attacks on the IT infrastructure of the organization. Kaspersky Sandbox analyzes and scans objects on special servers with deployed virtual images of Microsoft Windows operating systems (Kaspersky Sandbox servers). For details about the solution, refer to the Kaspersky Sandbox Help.

      You no longer need Kaspersky Endpoint Agent in order to use Kaspersky Sandbox. Kaspersky Endpoint Security can perform all Kaspersky Endpoint Agent functions. To migrate Kaspersky Endpoint Agent policies, use the Migration Wizard. You need Kaspersky Security Center 13.2 for all of the functions of Kaspersky Sandbox to work. For details about the migrating from Kaspersky Endpoint Agent to Kaspersky Endpoint Security for Windows, please refer to the application help.

    • Added the built-in agent to support the operation of the Kaspersky Endpoint Detection and Response Optimum solution. Kaspersky Endpoint Detection and Response Optimum is a solution for protecting the organization's IT infrastructure from advanced cyber threats. The functionality of the solution combines automatic detection of threats with the ability to react to these threats to counteract advanced attacks including new exploits, ransomware, fileless attacks, as well as methods using legitimate system tools. For more information about the solution, refer to the Kaspersky Endpoint Detection and Response Optimum Help.

      You no longer need Kaspersky Endpoint Agent in order to use Kaspersky Endpoint Detection and Response. Kaspersky Endpoint Security can perform all Kaspersky Endpoint Agent functions. To migrate Kaspersky Endpoint Agent policies and tasks, use the Migration Wizard. To use all the functions, Kaspersky Endpoint Detection and Response Optimum require Kaspersky Security Center 13.2. For details about the migrating from Kaspersky Endpoint Agent to Kaspersky Endpoint Security for Windows, please refer to the application help.

  4. The Migration Wizard for Kaspersky Endpoint Agent policies and tasks was added. The Migration Wizard creates new merged policies and tasks for Kaspersky Endpoint Security for Windows. The wizard allows switching Detection and Response solutions from Kaspersky Endpoint Agent to Kaspersky Endpoint Security. Detection and Response solutions include Kaspersky Sandbox, Kaspersky Endpoint Detection and Response Optimum (EDR Optimum), and Kaspersky Managed Detection and Response (MDR).
  5. Kaspersky Endpoint Agent, which is included in the distribution kit, is updated to version 3.11.

    When upgrading Kaspersky Endpoint Security, the application detects the version and designated purpose of Kaspersky Endpoint Agent. If Kaspersky Endpoint Agent is designated for the operation of Kaspersky Sandbox, Kaspersky Managed Detection and Response (MDR) and Kaspersky Endpoint Detection and Response Optimum (EDR Optimum), Kaspersky Endpoint Security switches the operation of these solutions to the application’s built-in agent. For Kaspersky Sandbox and EDR Optimum, the application automatically uninstalls Kaspersky Endpoint Agent. For MDR, you can uninstall Kaspersky Endpoint Agent manually. If the application is designated for the operation of Kaspersky Endpoint Detection and Response Expert (EDR Expert), Kaspersky Endpoint Security upgrades the version of Kaspersky Endpoint Agent. For more details about the application, please refer to the documentation of Kaspersky solutions that support Kaspersky Endpoint Agent.

  6. BitLocker encryption functionality improved:
  7. Now you can configure the maximum number of keyboard authorization attempts for BadUSB Attack Prevention. When the configured number of failed attempts to enter the authorization code is reached, the USB device is temporarily locked.
  8. Firewall functionality is improved:
    • Now you can configure a range of IP addresses for Firewall packet rules. You can enter a range of addresses in IPv4 or IPv6 format. For example, 192.168.1.1-192.168.1.100 or 12:34::2-12:34::99.
    • Now you can enter DNS names for Firewall packet rules instead of IP addresses. You should use DNS names only for LAN computers or internal services. Interaction with cloud services (such as Microsoft Azure) and other Internet resources should be handled by the Web Control component.
  9. Web Control rule search improved. To search a web resource access rule, in addition to the name of the rule, you can use the URL of the website, a username, a content category, or a data type.
  10. The Virus Scan task was improved:
    • The Virus Scan task in idle mode was improved. If you have rebooted the computer during the scan, Kaspersky Endpoint Security automatically runs the task, continuing from the point where the scan was interrupted.
    • The Virus Scan task was optimized. By default, Kaspersky Endpoint Security runs the scan only when the computer is idle. You can configure when the computer scan is run in task properties.
  11. Now you can restrict user access to data provided by the Application Activity Monitor. Application Activity Monitor is a tool designed for viewing information about the activity of applications on a user's computer in real time. The administrator can hide the Application Activity Monitor from the user in application policy properties.
  12. Improved the security of managing the application through the REST API. Now Kaspersky Endpoint Security validates the signature of requests sent via the REST API. To manage the program, you need to install a request identification certificate.

Update 11.6.0

Update 11.5.0

Update 11.4.0

Page top