Global cybersecurity firm Kaspersky has upgraded its Kaspersky Next platform, introducing enhanced artificial intelligence (AI) capabilities and an improved all-in-one Security Operations Center (SOC) management console to strengthen enterprise cybersecurity.
The update improves administration and maintenance of security operations while enabling faster data searches, stronger threat detection and more efficient system management. It also significantly reduces hardware requirements—by up to 30 per cent for users of Kaspersky Next EDR Expert and up to 60 per cent for users of Kaspersky Next XDR Expert.
According to a recent global study by Kaspersky, one in three organisations plans to integrate Endpoint Detection and Response (EDR) or Extended Detection and Response (XDR) solutions into their security operations centres to strengthen protection against increasingly sophisticated cyber threats.
Kaspersky Next is the company’s flagship business-to-business cybersecurity platform, offering real-time protection, threat visibility, investigation and response capabilities. The product line includes Kaspersky Next Optimum, designed for small and medium-sized businesses, and Kaspersky Next Expert, which caters to organisations of all sizes.
The latest update migrates Kaspersky Next EDR Expert to the Open Single Management Platform (OSMP), allowing security tools such as EPP, EDR, XDR and SIEM to be managed through a unified console. The platform also supports integration with third-party solutions while maintaining seamless access through a single sign-on system.
The upgrade introduces new AI-driven features, including improved detection of DLL hijacking attacks—where malicious libraries are loaded through legitimate software—and automated alerts when such threats are detected. The system can also identify potentially compromised user accounts by analysing login patterns and flagging abnormal behaviour.
The release also integrates the Kaspersky Investigation and Response Assistant (KIRA AI), a generative AI tool designed to help SOC analysts interpret complex security data. The assistant can translate plain-text requests into threat-hunting queries, analyse command lines, and generate concise incident summaries to speed up investigations.
Additional improvements include enhanced monitoring of server health, better integration with Kaspersky Managed Detection and Response services, automated response playbooks, visual attack-chain graphs, and a remote “Live Shell” feature that allows analysts to respond to threats directly on protected devices in real time.
Commenting on the update, Ilya Markelov, Head of Unified Platforms at Kaspersky, said the upgrade demonstrates the company’s commitment to providing smarter and more integrated cybersecurity solutions.
“By unifying SOC tools within a single platform and enhancing EDR and AI capabilities, we enable faster and more precise threat detection while improving operational efficiency,” he said.
About The Author
