Secureworks®, a leading player in global cybersecurity, has introduced a groundbreaking benchmark for detecting identity-related risks, unveiling its new Identity Threat Detection and Response (ITDR) solution, Taegis™ IDR. This innovation promises to transform how organisations manage and mitigate identity-based threats, boasting an impressive discovery time of just 90 seconds.
The launch of Taegis IDR comes in response to alarming trends observed by Secureworks’ Counter Threat Unit™ (CTU™). The unit has reported a staggering 688% increase in the sale of stolen credentials on major dark web marketplaces over the past three years. Additionally, a review by Secureworks’ Incident Response team of Microsoft Entra ID environments—formerly Microsoft Azure Active Directory—revealed that a significant 95% of these environments are misconfigured. Such vulnerabilities pose a serious threat, allowing cybercriminals to exploit these weaknesses and escalate privileges.
“Taegis IDR has drastically enhanced our ability to detect and respond to identity risks,” remarked Richard Hay, Information Security Director at First Community Bank. “Its integration within our XDR platform allows us to centralise identity and misconfiguration risks, improving our overall cyber posture and reducing risks.”
Kyle Falkenhagen, Chief Product Officer at Secureworks, emphasised the critical role of identity in cybercrime. “Identity is a key asset for cybercriminals, and with Taegis IDR, we are cutting off their access,” Falkenhagen stated. The new solution provides continuous monitoring across organisational environments and the dark web, employing advanced AI and machine learning to prevent, detect, and respond to identity-based threats that might bypass traditional security measures.
Taegis IDR is designed to address 100% of MITRE ATT&CK Credential Access techniques, including methods such as kerberoasting and password spraying. Key features of the solution include:
- Reduced Identity Attack Surfaces: Continuous scanning of Microsoft Entra ID environments to spot misconfigurations and security gaps.
- Credential Leak Prevention: Alerts for exposed credentials from data breaches or dark web sources.
- Identification of Risky Behaviours: Monitoring for unusual activity linked to stolen credentials.
- Full Visibility of Identities: Immediate visibility of identities within 90 seconds, enabling swift action to address potential exposures.
- Protection Against Identity-Based Threats: Detection and response to credential compromise, insider threats, and various attack techniques before they impact business operations.
- Accelerated Response: Automated playbooks for immediate actions like disabling users, resetting passwords, and revoking sessions.
- Unified ITDR and XDR: Comprehensive protection through a single platform integrating ITDR with extended detection and response (XDR).
Secureworks’ Taegis IDR marks a significant advancement in identity security, promising organisations enhanced protection and rapid response capabilities in an increasingly complex cyber threat landscape.
For more information, please click here.