New solution integrates with Sophos MDR and XDR to deliver faster detection and remediation of compromised credentials and identity risks.
Sophos, a global cybersecurity leader, has unveiled its latest innovation, Sophos Identity Threat Detection and Response (ITDR), to help enterprises counter the rising wave of identity-based attacks. Integrated with Sophos XDR and Sophos MDR, the new offering continuously monitors for identity risks, misconfigurations, and compromised credentials — including scans across the dark web — to enable rapid response and mitigate exposure.
This launch marks a major milestone following Sophos’ Secureworks acquisition, making ITDR the first fully integrated solution within the Sophos Central platform, enhancing its ability to deliver comprehensive security operations for more than 600,000 global customers.
“Identity is the new frontline of cyber defense.”
– Rob Harrison, SVP, Product Management, Sophos
“Cloud and remote work have expanded the identity attack surface and created new opportunities for attackers,” said Rob Harrison, SVP, Product Management, Sophos. “Sophos ITDR helps close those gaps by providing faster visibility into identity risks, monitoring compromised credentials, and enabling analyst-led response through Sophos MDR.”
Identity-related breaches are now one of the fastest-growing threat vectors globally. According to Sophos X-Ops, stolen credentials for sale on the dark web increased by 106% between June 2024 and June 2025, while 56% of incidents in its Active Adversary Report were traced back to attackers using valid accounts to log into remote services.
Sophos ITDR employs AI-driven detections, user behavior analytics, and more than 80 cloud identity posture checks to detect attacks such as privilege escalation, brute force, lateral movement, and account takeover. Automated playbooks allow for immediate remediation — including account lockouts, password resets, and multi-factor authentication refreshes.
An Information Security Director at a financial firm noted, “Having identity risk data available within Sophos XDR is a game changer for strengthening our overall security posture.”
With identity now at the core of modern cyber resilience, Sophos’ ITDR solution enables enterprises to stay ahead of evolving threats through continuous visibility, automation, and rapid response.
