Kaspersky Releases 2026 Global MDR & IR Report Highlighting Shifts in Attack Targets and Incident Volumes
What Happened — Kaspersky Security Services published its 2026 Global Report, aggregating telemetry from Managed Detection & Response (MDR), Incident Response (IR), Compromise Assessment, and SOC Consulting engagements worldwide. The data show a continued decline in high‑severity incidents, a rise in IT‑sector IR requests, and a geographic concentration of customers in the CIS, Middle East, and Europe.
Why It Matters for TPRM —
- Provides empirical evidence of evolving threat vectors that third‑party vendors must be prepared to detect.
- Highlights sectors (government, industrial, IT) where partner risk is increasing, informing vendor selection and monitoring.
- Offers baseline metrics (e.g., 400 k alerts, 39 k investigated) useful for benchmarking a supplier’s security operations.
Who Is Affected — Government agencies, industrial manufacturers, IT service providers, and financial institutions relying on MDR/IR services.
Recommended Actions — Review existing MDR/IR contracts for coverage gaps, validate that suppliers employ AI‑augmented alert triage, and benchmark their incident‑handling metrics against the report’s averages.
Technical Notes — The report is based on aggregated telemetry (≈15 k events/host/day) and AI‑driven detection logic; no specific CVEs or malware families are disclosed. Source: SecureList – Kaspersky Global Report 2026