About Kaspersky Industrial CyberSecurity for Linux Nodes 1.3

Kaspersky Industrial CyberSecurity for Linux Nodes 1.3 provides malware protection for devices running Linux operating systems. Threats can infiltrate the system via network data transfer channels or from removable drives.

The application is used to:

• Scan file system objects residing on local drives of a client device, as well as mounted and shared resources that are accessed via the SMB and NFS protocols.
• Scan objects in the file system both in real time using the File Threat Protection task and on demand using virus scan tasks.
• Scan startup objects, boot sectors, process memory, and kernel memory.
• Detect infected objects and neutralize detected threats.
• Automatically select an action to neutralize the threat.
• Save backup copies of files before disinfection or deletion and restore files from backups.
• Manage tasks and configure their settings.
• Add keys and activate the application using key files and activation codes.
• Update the application with service packs.
• Update application databases from Kaspersky update servers, via the Administration Server, or from a user-specified source on schedule and on demand.
• Use application databases to detect and disinfect infected files. During the scan process, the application analyzes each file for the presence of a threat: it compares the file code with the code of a specific threat and looks for possible matches.
• Monitor the integrity of the system or specified files and report changes. System Integrity Monitoring can be performed in continuous monitoring mode and in on-demand scan mode.
• Manage an operating system firewall and, if necessary, restore a set of the firewall rules that was changed.
• Protect files in local directories with network access via SMB / NFS from remote malicious encryption.
• Analyze traffic sent to users' computers via HTTP / HTTPS and FTP and check if web addresses are malicious or phishing.
• Configure flexible restrictions on access to data storage devices (hard disks, removable disks, CD / DVD drives), data transfer equipment (modems), data conversion devices (printers) and interfaces for connecting devices to computers (USB, FireWire).
• Scan removable drives when they are connected to a client device.
• Check incoming network traffic for activity typical of network attacks.
• Check containers, images and namespaces.
• Receive information about the actions of applications on a client device.
• Configure encrypted connections scan settings.
• Control the launch of programs on users' computers, which reduces the risk of computer infection by restricting access to programs.
• Get information about all executable files of the applications installed on computers using the Inventory Scan task, which can be useful, for example, for creating application control rules.
• Participate in Kaspersky Security Network. Using data from Kaspersky Security Network ensures a faster reaction of Kaspersky Industrial CyberSecurity for Linux Nodes to various threats, increases the efficiency of some protection components, and also reduces the likelihood of false positives.
• Configure the integration between Kaspersky Industrial CyberSecurity for Linux Nodes and Kaspersky Managed Detection and Response (MDR) to continuously search, detect, and remediate threats directed at your organization.
• Configure the integration between Kaspersky Industrial CyberSecurity for Linux Nodes and Kaspersky Industrial CyberSecurity for Networks to expand the capabilities for investigating and responding to threats in industrial enterprise networks.
• Allow users without root permissions to manage the application functions.
• Notify the administrator about events that occurred while the application was running.
• Check the integrity of application components using the integrity check tool.

You can manage Kaspersky Industrial CyberSecurity for Linux Nodes using the following methods:

• Using application control commands from the command line.
• Using Kaspersky Security Center Administration Console.
• Using Kaspersky Security Center Web Console.
• Using a graphical user interface.