Stellar Cyber Launches Built-In ITDR to Stop Credential Attacks
News | 17.07.2026
Identity has become the primary attack surface, and credential-based intrusions now drive the majority of breaches. Stellar Cyber addresses this shift with native Identity Threat Detection and Response (ITDR) inside its unified SecOps platform, giving SOC teams identity-centric visibility without deploying another tool.
According to Verizon's 2024 DBIR, 70% of breaches start with compromised credentials, and 22% of confirmed breaches in 2025 originated from account compromise. To close this gap, Stellar Cyber has embedded ITDR directly into its open, AI-driven SecOps platform, correlating identity signals with endpoint, network, and cloud telemetry in a single console.
What was announced
Stellar Cyber announced the advanced development of its Identity Threat Detection and Response capabilities, fully integrated into its unified AI-driven SecOps platform. The new ITDR functionality ingests identity data from Active Directory, Entra ID, Okta, and other identity providers, with no agents or add-ons required. It baselines identity behavior within 24 hours and deploys in under an hour.
The solution targets three primary use cases: compromised user accounts with unusual access patterns, account takeover through impossible-travel logins, and insider data exfiltration by privileged users. Detections are automatically correlated with existing case timelines, and analysts can disable accounts, expire sessions, or isolate hosts with a single click or via pre-built playbooks.
Identity is today's battleground. We built ITDR into the core of our platform to give customers the full identity context they need, fused with all their other security data, to stop credential-based attacks in real time and move closer to autonomous response
Why this matters
For CIOs, CISOs, and procurement leaders, tool sprawl remains a persistent cost and complexity driver. Standalone ITDR products add another console, another license, and another integration layer. Stellar Cyber's approach delivers identity defense as part of the same platform already used for SIEM, NDR, and Open XDR, under a single license.
This matters for three reasons: faster mean time to detect and respond through unified correlation, lower total cost of ownership by avoiding rip-and-replace projects, and audit readiness through prebuilt dashboards aligned with PCI-DSS, HIPAA, and ISO 27001.
Technical details
- Unified Identity Visibility: ingests data from on-prem and SaaS identity tools including Active Directory, Entra ID, and Okta, agentless.
- AI-Powered Detection: Multi-Layer AI and UEBA flag ATO, MFA abuse, privilege escalation, brute force logins, and lateral movement.
- Real-Time Identity Risk Scoring: continuous evaluation of users, service accounts, and machine identities.
- Seamless Correlation: identity threats merged into case timelines with endpoint, network, and cloud context.
- Instant Remediation: disable accounts, expire sessions, and isolate hosts via one-click or automated playbooks.
- Audit-Ready Dashboards: prebuilt reports mapped to PCI-DSS, HIPAA, ISO 27001, and other frameworks.
- Vendor-Agnostic: works with Microsoft Entra ID, Google, Okta, CrowdStrike, Zscaler, and more.
Softprom and Stellar Cyber
Softprom is the official distributor of Stellar Cyber. Partners and enterprise customers can access licensing, technical enablement, proof-of-value projects, and post-deployment support through Softprom's channel programs.
Request a demo, pricing, or a technical consultation for Stellar Cyber ITDR through Softprom.
This content was prepared as part of the Softprom DistriFlow project — an automated system for monitoring and adapting vendor news. Original source: original article.