What's new

Kaspersky Anti Targeted Attack Platform 7.1.1 and 7.1.2 introduce the following changes:

  1. Fixed vulnerabilities of the operating system.
  2. Fixed errors that occurred when upgrading Kaspersky Anti Targeted Attack Platform.
  3. Fixed an error when registering network traffic events and corresponding alerts.
  4. If scanning an email message with multiple URLs generates an alert, the alert contains information for each URL.
  5. Fixed an error that occurred when downloading data for the GosSOPKA system.

Kaspersky Anti Targeted Attack Platform 7.1 introduces the following changes:

  1. Improved performance of Kaspersky Anti Targeted Attack Platform
  2. Improved real-time ICAP traffic scanning:
    • Increased request processing speed.
    • Improved statistics collection.
    • Optimized interaction with the Kaspersky Security Network (KSN).
    • Added file scanning in POST requests (REQMOD).
    • Added deduplication of object scan requests.
    • The following changes have been made to the standard real-time ICAP traffic scan:
      • While the file is being scanned, its download speed is reduced. If the file cannot be scanned within the specified time, the download continues at normal speed.

        After the implementation of this functionality, you no longer can configure the Scan file and File expired notification pages.

      • Multimedia files are excluded from scanning.
    • The following changes have been made to the advanced real-time ICAP traffic scan:
      • To optimize workload, the application may temporarily switch from advanced ICAP traffic scanning mode to standard scanning mode. When this happens, a warning about switching to the standard scanning mode is displayed on the Dashboard in the application web interface.
  3. Improved interface for managing user-defined Intrusion Detection rules.
  4. Now you can use a Storage Area Network (SAN) system as a drive for storing the data of a Central Node component installed on a server.
  5. New event type: USB device.
  6. Now you can select the Last 7 days period when searching for events in the Threat Hunting section.
  7. New ways to manage authentication policies:
  8. When adding an Intrusion Detection rule from Kaspersky to an exclusion, you can specify the conditions when you want it to apply. For example, you can apply exclusions only to selected hosts.
  9. Now you can upload information about network traffic alerts and events (NDR events) to the GosSOPKA system.
  10. Logging functionality has been expanded:
  11. Now you can limit the amount of telemetry from the Endpoint Agent component (when integrated with the KEDR functionality).
  12. The following changes have been made to the web interface of the application:
    • New localization language, Traditional Chinese.
    • The Run application task has been renamed to Run application.
  13. Access to the web interface of the Sensor component is no longer provided.

Changes in Kaspersky Endpoint Security 12.9 for Windows

You can view the list of changes in Kaspersky Endpoint Security 12.9 for Windows in the Kaspersky Endpoint Security for Windows Online Help.

Changes in Kaspersky Endpoint Security 12.2 for Linux

You can view the list of changes in Kaspersky Endpoint Security 12.2 for Linux in the Kaspersky Endpoint Security for Linux Online Help.

Changes in Kaspersky Endpoint Security 12.1 for Mac

You can view the list of changes of Kaspersky Endpoint Security 12.1 for Mac in the Kaspersky Endpoint Security for Mac Online Help.

See also

About Kaspersky Anti Targeted Attack Platform

Using Kaspersky Threat Intelligence Portal

Distribution kit

Hardware and software requirements

Restrictions
Page top