Kaspersky has announced an update to its Threat Intelligence Portal (TIP), incorporating a new section called Hunt Hub, along with an improved MITER ATT&CK coverage map and an expanded vulnerability database. This update strengthens organizations’ ability to investigate threats, understand the behavior of malicious actors, and proactively monitor the most relevant risks in their environments.

According to the report Kaspersky Security Bulletin 2025the company’s detection systems identified an average of 500,000 malicious files per day in 2025, which represents an increase of 7% compared to the previous year. As cyberattacks become more sophisticated and frequent, security teams need more than just alerts: they need clarity.

More transparency in threat detection

The new Hunt Hub It has been designed to respond to growing market demand for greater transparency and a better understanding of how modern detection technologies work. Integrated in the section Threat Landscape From the Threat Intelligence Portal, Hunt Hub offers centralized access to Kaspersky’s experience and knowledge in threat hunting and detection.

Hunt Hub includes searches for Kaspersky Next EDR Expertalso known as indicators of attack (IoA) or detection rules. All portal users can view the hunt catalog and their descriptions, while Kaspersky Next EDR Expert clients have expanded access to detailed recommendations and detection logic, presented in a convenient, SIGMA-like format. Each hunt is linked to corresponding MITER ATT&CK tactics and techniques and associated with known threat actors, providing analysts with clear context behind each detection.

By making threat detection logic visible and structured, Hunt Hub effectively eliminates the “black box” feel of threat detection. It allows security teams to not only respond to alerts, but also understand why a detection has been triggered and what type of threat it is intended to identify, improving confidence in security technologies and increasing the efficiency of investigation processes.

As part of this update, the MITER ATT&CK coverage map within Threat Landscape has been significantly improved. The portal now brings together, in a single view, the coverage of SIEM, EDR, NDR and Sandbox products, MITER ATT&CK techniques with their corresponding score, coverage percentages and the associated searches of Kaspersky Next EDR Expert. This allows organizations to assess the extent to which their security ecosystem covers relevant attack techniques and identify potential protection gaps.

The section of Vulnerabilities It has also been expanded, and the CVE database now covers nearly 300,000 vulnerabilities. Additionally, the portal offers more detailed information on those vulnerabilities that have been exploited in real attacks, helping organizations prioritize remediation actions based on observed threat activity.

Alex Chen
Alex Chen

Alex Chen serves as the chief editor of Asia Tech Journal, bringing over a decade of experience in technology journalism. Previously writing for several globally renowned publications, Alex is celebrated for his insightful analyses and in-depth reporting on tech trends across Asia. Passionate about innovation, Alex specializes in the dynamic technology ecosystem of China and its global impacts.