Kaspersky has announced the launch of its new External Attack Surface module within the Digital Footprint Intelligence (DFI) service, now available directly in the Threat Intelligence portal. This new enhancement introduces External Attack Surface Management (EASM) capabilities, giving security teams improved visibility and control to proactively defend against cyber threats by continuously monitoring and securing their organization’s external perimeter.

Why External Attack Surface Management Matters

Public-facing applications have long been the primary target for cyberattacks. According to the Kaspersky Incident Response Report, in 2024:

• Exploitation of public-facing applications accounted for 39% of all incidents.
• Over 90% of exploited vulnerabilities had been publicly known for more than a year, underscoring ineffective patching policies.

As businesses expand their digital presence through cloud services, external apps, and shadow IT, the need for continuous monitoring of internet-facing assets has become urgent.

Key Features of the New Module

The External Attack Surface module helps organizations address these challenges by:

• Monitoring exposed infrastructure for vulnerabilities and weak points.
• Detecting risks such as outdated software, open ports, and misconfigurations.
• Assigning risk scores that help prioritize remediation based on business impact.
• Retaining historical data for incident investigation and long-term security insights.
• Aggregating data from multiple specialized search engines for maximum visibility.

Each detected issue comes with detailed descriptions and recommended mitigations, enabling teams to move quickly from detection to resolution.

Benefits for Security Teams

The new module is designed to answer two critical security questions:

1. What internet-facing assets do we have?
2. Which of them are vulnerable?

By combining vulnerability detection, misconfiguration analysis, and risk assessment, the module delivers a clear picture of organizational exposure.

More importantly, it provides actionable guidance for security teams, such as:

• Patching vulnerable services.
• Moving assets behind VPNs.
• Applying WAF rules.
• Resetting compromised credentials.

Kaspersky’s Commitment to Cyber Defense

Yuliya Novikova, Head of Digital Footprint Intelligence at Kaspersky, explained:

“With the External Attack Surface module, we give security teams not only visibility of what attackers can see but also recommendations to reduce exposure and respond effectively. By enriching DFI with EASM functionality, we expand the scope of our Threat Intelligence portfolio and deliver cross-product synergies that empower teams with deeper insights, faster investigations, and stronger cyber resilience.”

Conclusion

As digital perimeters expand, security teams face growing challenges in keeping up with hidden vulnerabilities. With the External Attack Surface module, Kaspersky equips organizations with the tools needed to discover, assess, and remediate risks, building a stronger and more proactive cybersecurity posture.