In today’s cybersecurity landscape, credentials have become the most common entry point for data breaches. Attackers are no longer forcing their way into systems; instead, they are simply logging in using valid stolen credentials, often bypassing Identity and Access Management (IAM) and Multi-Factor Authentication (MFA).
To combat this shift, ThreatDown (formerly the corporate business unit of Malwarebytes) has announced the launch of ThreatDown Identity Threat Detection and Response (ITDR). This new solution is designed to help security teams monitor identities to detect suspicious activity, misconfigurations, and active credential-based attacks.
Key Features and Integration
ThreatDown ITDR is natively integrated with the existing EDR (Endpoint Detection and Response) and MDR (Managed Detection and Response) platforms. This provides a unified “endpoint-to-identity” visibility without the need for additional agents or new consoles.
EDR-ITDR Correlation: The system automatically links suspicious endpoint behavior with anomalous identity events in a single investigation timeline.
Proactive Attack Path Hardening: It continuously assesses identity posture to uncover misconfigurations before they can be exploited.
Advanced Detection: ITDR identifies sophisticated threats such as account compromises, privilege abuse, MFA fatigue, and persistence techniques.
Empowering Lean IT Teams
Kendra Krause, General Manager of ThreatDown, emphasized that most malicious activity now occurs after authentication. By building ITDR directly into the current platform, ThreatDown offers a practical way for lean IT teams and MSPs (Managed Service Providers) to close security gaps without the burden of new tools or extra costs.
“Attackers have moved from breaking in to logging in… With ITDR, we are providing a way to close this gap without new tools, new consoles, or added costs,” said Krause.
Faster Response and Lower Costs
By utilizing a single-agent deployment and a unified console, organizations can manage endpoint, identity, and email security in one place. This integration significantly improves response times during an incident and reduces the overall operational overhead.
If an identity-related incident occurs, ITDR allows for a deeper investigation with full context across various identity providers and directory services.
Join the Live Webinar
For those interested in a deeper dive, ThreatDown will be hosting a live webinar to showcase these capabilities on May 21 at 11 AM ET.
How would you like to use this information—are you looking to create a formal report or perhaps a shorter summary for a newsletter?
