<ul><li>Kaspersky has made improvements to their SIEM system, focusing on early detection of attacker activity.</li><li>New detection rules have been added to identify attempts to collect data on containerization infrastructure and manipulate the containerization system.</li><li>The latest update includes over 659 rules, with 525 rules directly related to detection logic.</li><li>The SIEM system has also added and improved normalizers for various event sources.</li></ul>

Improvements to our SIEM for Q3 2024 | Kaspersky official blog

Discover more