member badge
Rich Mozeleski
Huntress ITDR is expanding from reactive detection to proactive prevention. When we identify confirmed malicious infrastructure used by threat actors to attack M365 identities, we will automatically block that infrastructure across all protected tenants — stopping attacks before the attacker ever gains access.
Planned capabilities include:
  1. Proactive Blocking
    — Known malicious IP ranges and infrastructure used in identity attacks are automatically blocked across your tenants, preventing authentication before the attacker can gain access.
  2. Blocked Attack Reporting
    — When an attack is blocked on your behalf, you receive an incident report showing what was prevented — giving you visibility into the threats targeting your clients and demonstrating the value of ITDR protection.
  3. Continuous Threat Intelligence
    — Huntress continuously updates its threat intelligence with newly discovered adversary infrastructure, so your tenants are protected against emerging campaigns — not just yesterday's threats.
  4. Password Reset Remediation
    — When a compromise is detected, Huntress can now reset the affected identity's password as part of the incident response, closing the door on stolen credentials.
Interested in early access?
We're looking for partners to participate in an early access program. If you'd like to be among the first to try this capability, reach out to rich.mozeleski@huntresslabs.com.