Guardz launches ITDR for MSPs

The new AI-driven capability adds sophisticated identity-based detection to the Guardz unified MDR platform, with incident support from the company’s 24/7 SOC.

  • Monday, 30th June 2025 Posted 1 month ago in by Phil Alsop

Guardz has launched its new Identity Threat Detection and Response (ITDR) solution, further expanding the Guardz AI-native, unified MDR platform. Designed to combat the growing number of sophisticated identity-based threats, the new ITDR capability combines real-time behavioral analytics and agentic AI with human-led threat hunting, automated response actions, and 24/7 expert support to deliver a powerful new layer of protection across user identities.

 

As the security landscape continues to evolve, identity has emerged as the new perimeter, with 60% of cyberattacks in 2024 targeting identities and accounts. While firewalls, email, and endpoint security were once the focus of cyber defense, modern attacks increasingly exploit identity-based systems and human behavioral patterns to compromise users and gain access. The Guardz ITDR is designed to detect and stop these increasingly advanced threats in real time, supported by the Guardz Research Unit’s (GRU) threat hunting experts, security analysts, and sophisticated AI triage, to distinguish legitimate activity from signs of compromise.

 

GRU threat hunters and Guardz AI agents’ findings are extracted from large sets of identity and log data from platforms like Microsoft 365 and Google Workspace to detect behavioral anomalies – such as impossible travel, authentication anomalies, token theft, credential abuse, or mailbox takeovers. This data is enriched with broader user context to reduce false positives and highlight real threats. For customers with the Ultimate Plan, Guardz’s AI triages the event and escalates it to the 24/7 MDR team, where human SOC analysts validate the incident and provide MSPs with expert guidance on containment actions like suspending users or isolating devices to ensure swift, informed response while keeping control in the MSP’s hands.

 

“Attackers don’t need to break down doors anymore; they are quietly walking in through the identities of your users,” said Dor Eisner, CEO and Co-Founder of Guardz. “Our ITDR capability gives MSPs a powerful new layer of defense that goes far beyond login alerts. We’re detecting sophisticated patterns like token theft and session hijacking, cutting through the noise, and helping MSPs take decisive action before damage is done.”

 

Behind the scenes, Guardz runs a structured pipeline to stay ahead of emerging threats. The GRU’s threat hunting and AI agents uncover new identity-based attacks, which are converted into detection logic and deployed across the platform. Alerts then go through AI triage and human validation before reaching customers to form a three-phase approach of research, detection, and incident support that drives the depth and reliability of Guardz’s ITDR.

 

The launch of its ITDR solution marks a broader strategic direction for Guardz as it expands its investment in threat research and MDR capabilities following its recent $56 million Series B funding. Guardz is one of the first to deliver advanced ITDR capabilities tailored specifically to the needs of MSPs and their SMB clients.

Assured Data Protection announces organisational changes to strengthen its growth trajectory, appointing Stacy Hayes as Chief Strategy Officer and...
Calero introduces a new SaaS Management offering to streamline IT processes, optimise resources, and centralise data for today's technology-driven...
GCX appoints Luca Simonelli to enhance global partnerships and lead operations in Italy, amid significant company growth.

Parallel Works launches ACTIVATE AI Partner Ecosystem

Posted 7 hours ago by Aaron Sandhu
Parallel Works introduces its ACTIVATE AI Partner Ecosystem, enhancing AI infrastructure with scalable, integrated solutions across hybrid cloud...
Onecom enhances its capabilities by acquiring Gradwell Communications, aligning with its growth strategy and expanding its reach in the UK.
Ekinops partners with Telegraph42 to boost high-speed data transmission in Eurasia using advanced wavelength technology.
Kaseya unveils its AI-powered workflow automation tool, boosting efficiency and accuracy for IT professionals with its VSA 10 platform.
runZero teams up with Aqaio to enhance its exposure management platform in Germany, aiming to tackle the complex cyber threat landscape with...