With the aim of strengthening the cybersecurity resilience of Filipino businesses and organizations amid the ongoing digital transformation, Kaspersky has launched the Kaspersky Unified Monitoring and Analysis Platform (KUMA). This comprehensive software solution incorporates security information and event monitoring and management functionalities, providing a robust defense for entities operating in the ever-evolving cyberspace landscape.
As the Philippines anticipates sustained double-digit economic growth, reaching US$35 billion by 2025, according to a joint report by Google, Temasek, and Bain & Company, the surge in eCommerce and digital economy activities is expected to drive this expansion. However, despite the optimistic economic outlook, the nation remains susceptible to phishing and cyberattacks that pose a threat to both organizations and individuals.
Kaspersky’s 2024 threat forecast for the Southeast Asian region, including the Philippines, indicates the persistence of financial service outages, DDoS attacks, and website defacements. In the previous year alone, Kaspersky’s detection systems thwarted 26,164,698 web attacks and 22,731,157 local infection attempts in the Philippines, emphasizing the urgency for robust cybersecurity measures.
To address these challenges, Kaspersky stresses the need for organizations and individuals to prioritize cybersecurity strategies. Highly-regulated industries such as public utilities, financial services, and healthcare are particularly urged to adopt proactive cybersecurity measures to safeguard their vast client data.
KUMA, a native Security Information and Event Management (SIEM) solution, emerges as a powerful tool for staying ahead of evolving cyber threats. Kaspersky experts uncovered a mobile Advanced Persistent Threat (APT) campaign in June 2023 using KUMA, where iOS devices were targeted, demonstrating its effectiveness in threat detection. KUMA serves as a unified console for monitoring and analyzing information security incidents, incorporating components such as Collectors, a Correlator, Core, and Storage. The platform offers high performance, low system requirements, scalability, a unified web console interface, and out-of-the-box integration with third-party products and Kaspersky solutions.
With the integration of the Kaspersky CyberTrace platform, KUMA enables the extraction of compromise indicators from the National Coordination Center for Computer Incidents, enhancing its capability to detect and respond to cyber incidents efficiently. KUMA’s Extended Detection and Response (XDR) capabilities empower cybersecurity teams to detect, investigate, and respond to complex cyber threats effectively.
Organizations of varying sizes and maturity levels can deploy KUMA to receive security events from diverse sources and tools, correlating them with threat intelligence feeds for timely detection of suspicious activities. KUMA aggregates information for incident investigation and response, providing insights and intelligence to understand security posture and risks.