New solution integrates Secureworks technology into Sophos Central, enhancing visibility and response across 600,000 customers
Sophos has unveiled its latest cybersecurity innovation: Sophos Identity Threat Detection and Response (ITDR), a powerful addition to its SecOps portfolio designed to tackle the growing wave of identity-based attacks. The launch marks the first full integration of Secureworks technology into the Sophos Central platform, following the recent acquisition.
Sophos ITDR works in tandem with Sophos XDR and MDR, continuously scanning for identity risks, misconfigurations, and compromised credentials—both within customer environments and across the dark web. The solution is engineered to detect and respond to threats such as account takeover, privilege escalation, and lateral movement, using AI-driven analytics and automated playbooks.
“Identity has become the new frontline of cyber defense.”
“Cloud and remote work have expanded the identity attack surface,” said Rob Harrison, SVP of Product Management at Sophos. “Sophos ITDR helps close those gaps by giving customers faster visibility into identity risks and integrating with our XDR and MDR platforms for rapid, analyst-led response.”
The urgency is clear: Sophos X-Ops observed a 106% rise in stolen credentials for sale on the dark web between June 2024 and June 2025. Meanwhile, compromised credentials remained the top root cause of attacks for the second consecutive year, with 56% of incidents involving valid account logins to remote services.
Sophos ITDR offers over 80 cloud identity posture checks, dark web intelligence, and user behavior analytics to detect insider threats and anomalous activity. Key features include a unified Identity Catalog, prioritized Identity Posture Dashboard, and automated remediation actions such as account lockouts and MFA resets.
Security leaders are already seeing impact. “Having identity risk data available within Sophos XDR is a game changer,” said an Information Security Director at a financial services firm.
With identity now central to cyber defense, Sophos ITDR empowers organizations to stay ahead of attackers and strengthen their security posture with speed, clarity, and control.