Kaspersky Endpoint Security Cloud has proven to be a robust and comprehensive solution for endpoint protection. So far, no major negative features have been observed. However, email security integration with Microsoft 365 has room for improvement. In a recent real-world incident, a company received 10 phishing emails, of which only three were blocked by the system. Enhancing detection accuracy to block 7 or more would significantly improve trust and effectiveness. With the on-premises version, there's a known issue where assigning a device to a new group results in it being auto-assigned back to the previous group. Fixing this bug would greatly streamline device management. Additionally, in the cloud version, once a device is assigned to a user, it cannot be reassigned without deleting the user or the device entirely. It would be far more user-friendly if the platform allowed simple reassignment or de-assignment, returning the device to an "unassigned" state. As for automated behavioral analysis, while current functionality is based on machine learning, upgrading to true AI-powered detection could bring substantial improvements. Ideally, the system should proactively flag potential threats, and offer administrators the option to either allow or block applications based on intelligent risk analysis
