Guardz has launched its new Identity Threat Detection and Response (ITDR) solution, further expanding the Guardz AI-native, unified MDR platform. Designed to combat the growing number of sophisticated identity-based threats, the new ITDR capability combines real-time behavioral analytics and agentic AI with human-led threat hunting, automated response actions, and 24/7 expert support to deliver a powerful new layer of protection across user identities.
As the security landscape continues to evolve, identity has emerged as the new perimeter, with 60% of cyberattacks in 2024 targeting identities and accounts. While firewalls, email, and endpoint security were once the focus of cyber defense, modern attacks increasingly exploit identity-based systems and human behavioral patterns to compromise users and gain access. The Guardz ITDR is designed to detect and stop these increasingly advanced threats in real time, supported by the Guardz Research Unit’s (GRU) threat hunting experts, security analysts, and sophisticated AI triage, to distinguish legitimate activity from signs of compromise.
GRU threat hunters and Guardz AI agents’ findings are extracted from large sets of identity and log data from platforms like Microsoft 365 and Google Workspace to detect behavioral anomalies – such as impossible travel, authentication anomalies, token theft, credential abuse, or mailbox takeovers. This data is enriched with broader user context to reduce false positives and highlight real threats. For customers with the Ultimate Plan, Guardz’s AI triages the event and escalates it to the 24/7 MDR team, where human SOC analysts validate the incident and provide MSPs with expert guidance on containment actions like suspending users or isolating devices to ensure swift, informed response while keeping control in the MSP’s hands.
“Attackers don’t need to break down doors anymore; they are quietly walking in through the identities of your users,” said Dor Eisner, CEO and Co-Founder of Guardz. “Our ITDR capability gives MSPs a powerful new layer of defense that goes far beyond login alerts. We’re detecting sophisticated patterns like token theft and session hijacking, cutting through the noise, and helping MSPs take decisive action before damage is done.”
Behind the scenes, Guardz runs a structured pipeline to stay ahead of emerging threats. The GRU’s threat hunting and AI agents uncover new identity-based attacks, which are converted into detection logic and deployed across the platform. Alerts then go through AI triage and human validation before reaching customers to form a three-phase approach of research, detection, and incident support that drives the depth and reliability of Guardz’s ITDR.
The launch of its ITDR solution marks a broader strategic direction for Guardz as it expands its investment in threat research and MDR capabilities following its recent $56 million Series B funding. Guardz is one of the first to deliver advanced ITDR capabilities tailored specifically to the needs of MSPs and their SMB clients.
