What's new

Update 12.5

Kaspersky Endpoint Security 12.5 for Windows offers the following features and improvements:

  1. The option to configure telemetry exclusions has been added. Telemetry is a list of events that have occurred on the protected computer. Telemetry data is used by Kaspersky Anti Targeted Attack Platform (EDR) to monitor and protect the organization's IT infrastructure. Configuring telemetry exclusions allows to improve computer performance and to optimize data transmission to the Telemetry server.
  2. The interface of the application's trusted zone has been improved. Kaspersky Endpoint Security now hides trusted zone objects from the user if the administrator has prohibited the user from adding their own (local) scan exclusions and trusted applications. This prevents unauthorized access to the trusted zone by an intruder, increasing the level of computer security.
  3. The option to scan traffic for MyOffice Mail and R7-Office Organizer mail clients has been added. The Mail Threat Protection component now scans not only message attachments at download, but also sent and received messages.
  4. A new category of web resources Generative AI Tools has been added. You can configure access to websites from the new category using Web Control.
  5. Now you can select the location of a network packet rule in the Firewall list. The location of a network packet rule in the list determines its priority. In previous versions of the application, a new rule could only be added to the end of the list, after which you had to manually move the rule through the list to prioritize it. Now, when adding a rule, you can choose whether the rule should be placed at the beginning, at the end of the list, or next to the selected rule.
  6. In the rules of Kaspersky Endpoint Security components, now you can select users not only from Active Directory, but also from the list of users in Kaspersky Security Center. You can also enter local user account data manually. This possibility has been added for the rules of the following components: Application Control, Device Control, Web Control, Adaptive Anomaly Control and Log Inspection.
  7. The network attack detection report now includes a column with the MAC address of the attacking computer (the Network Threat Protection component). Now you can see the MAC address of the attacking computer in the report in addition to its IP address. This is helpful for incident investigation. Reports, containing the MAC address of the attacking computer, will also be available in the Kaspersky Security Center Linux console version 15.1 and higher.
  8. The level of computer protection requirements has been increased. The high protection level now requires enabling Protection of application services against external management. Check the security level indicator in the upper part of the policy window. If you have a medium or low security level, you can enable Protection of application services against external management in the security level indicator recommendation window.
  9. Support for new events of object detection when the application is running in the Endpoint Detection and Response Agent (EDR Agent) configuration has been added. These events were already supported in the [KES+built-in agent] configuration.
  10. When developing this version of Kaspersky Endpoint Security for Windows, we incorporated the changes included in the following private patches: pf9640, pf9830, pf9831, pf10047, pf10351, pf12102, pf12105, pf13084, pf13089, pf14040, pf14047, pf15026, pf15028, pf16013.

Update 12.4

Kaspersky Endpoint Security 12.4 for Windows offers the following features and improvements:

  1. Added new functionality to protect the connection of the computer to Kaspersky Security Center. New Administration Server connection protection task allows setting a password for connecting to a trusted server. This means that it is not possible to reconnect the computer and run commands from another server without this password.
  2. For the Password Protection component, the ability to select users manually and not only from Active Directory has been added. That is, you can manually specify a user name and password and assign access rights to Kaspersky Endpoint Security for this account. This way, you do not need to share your KLAdmin password with other users or create new Active Directory accounts to control access to the application.
  3. Support for Windows 11 23H2.

Update 12.3

Kaspersky Endpoint Security 12.3 for Windows offers the following features and improvements:

  1. Now you can install the application in the Endpoint Detection and Response Agent configuration. This configuration allows installing the application with a set of components required by Detection and Response solutions by Kaspersky: Kaspersky Managed Detection and Response, and Kaspersky Anti Targeted Attack Platform (EDR). You can install the application in this configuration alongside third-party solutions (for example, Dr.Web, Dallas Lock, ESET). This lets you use third-party infrastructure security tools alongside Detection and Response by Kaspersky.
  2. Kaspersky Endpoint Security operation with Bluetooth devices has been improved. Now you can configure exclusions and restrict access to all Bluetooth devices except input devices (wireless keyboards, mice, etc).
  3. The operation of Application Control component with the database of executable files has been optimized. Kaspersky Endpoint Security now automatically removes file information from the database if the file is deleted from the computer. This allows keeping the database up to date and saving Kaspersky Security Center resources.
  4. The level of computer protection requirements has been increased. The high protection level now requires enabling Password protection. Check the security level indicator in the upper part of the policy window. If you have a medium or low protection level, you can enable Password protection in the security level indicator recommendation window.
  5. HTTPS protocol support has been added to enable the application to work with Kaspersky Security Network. Enable HTTPS usage in the Administration Server properties in the KSN proxy server settings.

Update 12.2

Kaspersky Endpoint Security 12.2 for Windows offers the following features and improvements:

  1. WPA3 protocol support has been added to control connections to Wi-Fi networks (Device Control). Now you can select WPA3 protocol in the trusted Wi-Fi network settings and deny connection to the network using a less secure protocol.
  2. Now you can choose a protocol and ports for Network Threat Protection exclusions. Now in addition to specifying IP addresses of trusted devices, you can also select a port and protocol. This lets you exclude individual data streams and prevent network attacks from trusted IP addresses.
  3. Different order of update sources for the local Update task if a policy is applied to the computer. The Kaspersky Security Center server is now used by default as the first update source instead of Kaspersky servers. This helps save traffic when the user runs the local Update task.

Update 12.1

Kaspersky Endpoint Security 12.1 for Windows offers the following features and improvements:

  1. A built-in agent for the Kaspersky Anti Targeted Attack Platform solution has been added. You no longer need Kaspersky Endpoint Agent in order to use EDR (KATA). All functions of Kaspersky Endpoint Agent will be performed by Kaspersky Endpoint Security. To migrate Kaspersky Endpoint Agent policies, use the Migration Wizard. After updating the application, Kaspersky Endpoint Security switches to using the built-in agent and removes Kaspersky Endpoint Agent. Kaspersky Endpoint Agent has been added to the list of incompatible software. Kaspersky Endpoint Security has built-in agents for all Detection and Response solutions, therefore installing Kaspersky Endpoint Agent to integrate with those solutions is no longer necessary.
  2. Azure WVD compatibility mode is now supported. This feature allows correctly displaying the state of the Azure virtual machine in the Kaspersky Anti Targeted Attack Platform console. Azure WVD compatibility mode allows assigning a permanent unique Sensor ID to these virtual machines.
  3. Now you can configure user access to mobile devices in iTunes or similar applications. That is, you can, for example, allow the mobile device to be used only in iTunes and block using the mobile device as a removable drive. The application also supports these rules for the Android Debug Bridge (ADB) application.
  4. Kaspersky Security Center version 11 is no longer supported. Upgrade Kaspersky Security Center to the latest version.

Update 12.0

Kaspersky Endpoint Security 12.0 for Windows offers the following features and improvements:

  1. The operation of Kaspersky Endpoint Security on servers has been improved. Now you can migrate from Kaspersky Security for Windows Server to Kaspersky Endpoint Security for Windows and use a single solution to protect workstations and servers. To migrate the application settings, run the Policies and tasks batch conversion wizard. The KSWS license key can be used to activate KES. After migrating to KES, you do not even need to restart the server. For more information about migrating to KES, see Migration Guide.
  2. The licensing of the application as part of a paid virtual machine image in Amazon Machine Image (AMI) has been improved. There is no need to activate the application separately. In this case, Kaspersky Security Center uses the license key for the cloud environment that is already added to the application.
  3. Device Control is improved:

Update 11.11.0

Update 11.10.0

Update 11.9.0

Update 11.8.0

Page top