Kaspersky Industrial Cybersecurity Boosts Performance New Features Improve Network Security and Operational Efficiency

The new version of Kaspersky Industrial Cybersecurity expands cross-platform Extended Detection and Response (XDR) capabilities, simplifies security settings management, and provides deeper insight into network activity. These improvements enable faster threat detection, easier configuration control, and increased operational efficiency.

The latest findings from Kaspersky ICS CERT indicate that malware was blocked on 20.5% of industrial control system (ICS) computers in the second half of 2025. This figure highlights the high level of cyber threats faced in industrial environments and underscores the importance of implementing comprehensive cybersecurity strategies to protect critical assets and processes. In response to the growing security demand, Kaspersky has upgraded its flagship solution for industrial environments.

The company offers a unique ecosystem that seamlessly integrates specialized OT-grade technologies, expert knowledge, and deep experience. At the heart of this ecosystem is Kaspersky Industrial Cybersecurity (KICS), the native Extended Detection and Response (XDR) platform designed for critical infrastructure protection. Developed to comprehensively secure industrial automation and control systems, this platform consists of KICS for Nodes, for distributed control system endpoints, and KICS for Networks, which monitors automation system network security.

The new version offers a range of advanced capabilities designed to strengthen security and ensure operational resilience:

1. Expanded XDR Capabilities

The latest version of KICS now supports Linux-based systems, enabling faster and more accurate incident analysis. With the new analysis graph, security teams can quickly identify connections between processes, files, and users, facilitating root cause analysis. Manual control features also enable precise response steps, increasing effective response to threats.

2. Time-Saving Advanced Configuration Control

To simplify the management of security settings, the platform now offers ready-made templates for Windows, Linux, industrial network devices, and PLCs (Programmable Logic Controllers). This approach reduces installation time and minimizes the risk of errors. Viewing and managing host configurations from a single window enables rapid detection of changes and automatic alerts for any modifications, helping organizations effortlessly maintain optimal security levels.

3. Deeper Insights into PLC and Operational Performance

The new update introduces advanced tools for monitoring PLCs through agentless querying and advanced internal log analysis. This method enables a deeper understanding of PLC behavior and project execution issues without the need to install additional software. Rapid troubleshooting and operational insights support the uninterrupted operation of industrial processes by minimizing downtime.

Monitoring capabilities now cover a wider range of industrial devices, including Siemens, Prosoft, Moxa, Hirschmann, and Ruggedcom. Agentless querying enables management of a variety of industrial equipment without installing additional software, reducing operational complexity and time loss.

4. New Device-Centric Approach to Network Integrity Monitoring

The new device-centric approach improves network activity monitoring. This feature provides detailed information about communication patterns between assets, allowing security teams to quickly identify high-traffic hosts and understand how devices interact on the network. This simplifies network monitoring and enhances threat detection.

5. Optimization and System Performance with Automatic Data Collection

To increase operational efficiency, the platform now semi-automatically collects and analyzes OS and ICS software health data. This feature quickly identifies performance issues, recommends optimal settings, and creates exclusion rules. This allows organizations to resolve issues more quickly and maintain system stability.

“We remain committed to providing our users with stronger and more integrated protection across both IT and OT environments. The latest version of KICS introduces innovative features that significantly enhance the security, visibility, and management of industrial networks. These improvements enable organizations to more effectively protect their critical infrastructure and respond more quickly to emerging threats. Our goal is to provide industrial companies with more intelligent and adaptable solutions that deliver operational resilience and a strong cybersecurity posture,” said Andrey Strelkov, Head of Kaspersky Industrial Cybersecurity Product Group.