Identity-Centric Threats: The New Reality
The cyberthreat landscape has transformed significantly with identity-based attacks emerging as a dominant threat vector. The 2025 Identity Threat Research Report, "Identity-Centric Threats: The New Reality," presents findings from research conducted by the eSentire Threat Response Unit (TRU) on shifting tactics, how they bypass traditional cybersecurity controls, and implications on organizational security posture. Download your complimentary copy of the report.
What are identity-centric threats?
Identity-centric threats focus on compromising user identities to gain access to valuable organizational assets, rather than exploiting technical vulnerabilities in systems. Recent data shows that these threats have increased by 156% between 2023 and 2025, now accounting for 59% of all confirmed threat cases in Q1 2025.
How has Cybercrime-as-a-Service impacted identity theft?
Cybercrime-as-a-Service platforms have reshaped the landscape of cybercrime by lowering the barrier to entry for threat actors. These platforms, such as Phishing-as-a-Service, allow even those with limited technical skills to execute sophisticated identity theft campaigns, contributing to a significant increase in credential theft incidents.
What measures can organizations take to combat identity threats?
Organizations should rethink their security posture by assuming identities will be compromised. This includes implementing continuous authentication verification, comprehensive credential monitoring, and rapid response capabilities to address identity-based threats effectively.
Sign in with LinkedIn