Kaspersky upgrades SIEM with AI-led threat detection and deeper customization

Kaspersky has rolled out a major update to its Security Information and Event Management (SIEM) platform, adding AI-driven account compromise detection, stronger data integrity controls, and expanded customization options—features aimed squarely at organisations building or modernising Security Operations Centres (SOCs).

The update comes at a time when SIEM platforms are firmly back in focus. A recent global survey by Kaspersky found that SIEM ranks among the top three cybersecurity technologies organisations prioritise when planning a SOC, with 40% of respondents identifying it as a core requirement for an advanced security function.

AI steps into account compromise detection

One of the most notable additions is an AI-enabled mechanism to detect potential account theft. The new capability analyses login behaviour, establishes baseline patterns, and flags deviations that may indicate compromised credentials. By generating early alerts on suspicious activity, the feature is designed to help security teams respond faster ...