Huntress reveals new identity security management approach

Huntress expands its platform with Managed Identity Security Posture Management to enhance Microsoft 365 security, preventing incidents like business email compromise.

Huntress has launched its Managed Identity Security Posture Management (ISPM), expanding its Agentic Security Platform. The service is designed to provide preventative controls aimed at reducing risks such as account takeovers and business email compromise.

With this release, Huntress has added new capabilities supported by its recent acquisition of Inside Agent. The company positions this as a fully managed approach to improving Microsoft 365 identity security.

In the past year, identity-based attacks accounted for 79% of all critical incidents processed by Huntress. During Early Access testing across more than 12,000 Microsoft 365 tenants, the company identified common control gaps. Over 60% of organisations were found to be missing at least half of the recommended ISPM controls and had incomplete multi-factor authentication configurations. In addition, some environments lacked safeguards on administrative accounts or allowed standard users to perform administrative actions.

To address these issues, Huntress deployed a set of security policies across tested environments. According to the company’s analysis, these changes may help reduce up to 35% of identity-based incidents, based on Managed ITDR (Identity Threat Detection and Response) data from the previous six months.

The ISPM capability is designed to work alongside Managed ITDR as part of a continuous security cycle. ITDR focuses on identifying and responding to active threats, while ISPM is intended to reduce underlying identity risks and misconfigurations.

At general availability, the service includes several new features:
  • Expanded Microsoft 365 coverage: Protection now extends across services such as Exchange, SharePoint, and Teams, with a focus on reducing risks including data exfiltration and privilege escalation.
  • Learning Mode for impact analysis: This feature allows organisations to assess the potential user impact of Conditional Access policies before full deployment.
  • Managed deployments: The service supports assisted rollout of updated policies to help organisations adapt to changing threat patterns and security requirements.
Epsilon Telecommunications partners with ESpanix to strengthen connectivity across the Iberian...
Cadence and HPE team up to modernise data centres with digital twin technology, aiming to...
Kyndryl extends its partnership with AWS to support global AI adoption.
Lenovo's new Hybrid AI Advantage introduces AI innovations that aim to enhance deployment...
DigiCert and Google Cloud aim to enhance trust in cloud computing by introducing independent trust...
Checkmarx has launched Checkmarx AI Inventory within the Checkmarx One platform, adding visibility...
Scality has refreshed its global Partner Programme, emphasising partner enablement, certification,...
As cyber threats escalate, SEP2's approach aims to offer a specialist partnership to strengthen...