Bitsight has introduced a new module called Bitsight Identity Intelligence aimed at helping security teams identify compromised credentials, prevent unauthorized access, and proactively reduce risk across their attack surface. This initiative comes in response to the alarming statistic that 77% of web application breaches involve stolen credentials, making compromised credentials a popular target for cybercriminals.
The challenge for organizations lies in the overwhelming amount of disconnected data sources, which make it difficult to prioritize and act on critical threats efficiently. Bitsight Identity Intelligence aims to address this challenge by providing real-time, actionable intelligence through continuous monitoring of exposed credentials across the clear, deep, and dark web, while also mapping affected assets within an organization’s unique attack surface.
With Bitsight Identity Intelligence, organizations can benefit from the following features:
– Early detection of leaked and stolen credentials to prevent exploitation by attackers.
– Identification of compromised credentials being sold on cybercriminal marketplaces.
– Prioritization and faster response capabilities through filter options based on password policies, Active Directory integration, and risk level.
– Proactive actions to investigate breaches, shut down threats, and prevent unauthorized access to critical systems.
Gabi Reish, VP Product at Bitsight, emphasized the significance of identity intelligence as a crucial component of Threat Exposure Management. By providing high-quality, real-time insights, Bitsight aims to help organizations filter out noise, focus on real threats, and take proactive measures against compromised credentials before they escalate into full-blown attacks.
Bitsight Identity Intelligence is now available as a standalone module within Bitsight Cyber Threat Intelligence (CTI), offering customers expanded exposed credential detection, advanced filtering, and prioritization capabilities, automated threat mitigation, and real-time monitoring across various web sources. This new module also includes the option for direct acquisition and takedown of high-risk credentials from deep and dark web marketplaces to prevent malicious use and enable early intervention.
This initiative marks the first solution developed following Bitsight’s acquisition of cyber threat intelligence leader Cybersixgill in December. Customers can access Bitsight Identity Intelligence either as a standalone module or within the cyber threat intelligence portal, further enhancing their capabilities to proactively protect against credential-based attacks. By focusing on early detection, automated mitigation, and real-time monitoring, Bitsight aims to empower organizations to stay ahead of evolving cyber threats and safeguard their critical assets.