What's new

Kaspersky CyberTrace offers the following new features and improvements:

What's new in version 4.4

• Results of a retrospective scan are now treated as ordinary detections:
  • They are sent to SIEM solutions.
  • They are displayed in the list of detections and on graphs.
  • They are included into the Kaspersky CyberTrace statistics.

  This will help you make timely conscious decisions based not only on real-time detections but on retrospective scan results as well.

  

• Kaspersky CyberTrace now supports a STARTTLS secure connection to the LDAP server.

  This will allow you to install and use Kaspersky CyberTrace in networks with specific security requirements.

  

• The list of indicators can now be filtered by type.

  This makes filtering more flexible.

  

• In the list of licenses, the expiration date of a license key is now accompanied with the time, in your time zone.
• We have simplified the process of adding a license key and a certificate in the Initial Setup Wizard.

  

• When configuring the format of Kaspersky CyberTrace detection events, it has become possible to use the %IndicatorInfo% variable that contains the link to the Kaspersky CyberTrace Web page with information about a detected indicator.
• Documentation now includes detailed descriptions of the Kaspersky CyberTrace integrations with the following SIEM solutions:
  • McAfee Enterprise Security Manager
  • AlienVault USM/OSSIM
  • FortiSIEM
• Documentation now includes a Sizing guide—recommendations on the computing resources (CPU, RAM, and hard drive space) and network bandwidth that are needed for installing and using Kaspersky CyberTrace. The recommendations depend on the application mode and features that you plan to use.