Huntress 2025 Managed ITDR Report

The Huntress 2025 Managed ITDR Report uncovers what IT and security pros are really up against—and what’s at stake. Identity-based attacks now drive over 40% of security incidents, with 51% of organizations hit by BEC last year. Most can’t detect threats until it’s too late—leading to six-figure losses. This report delivers the trends, data, and guidance you need to defend against today’s evolving identity threats.

Download Your Report
By submitting this form, you accept our Terms of Service & Privacy Policy

Attackers stopped breaking in a while ago. Now they just log in. The fastest-growing threats target identities, stolen credentials, account takeover, and business email compromise (BEC) that drains accounts before anyone notices.

This report digs into what's actually happening across Microsoft 365 and Google Workspace identities, drawn from what Huntress sees protecting organizations every day.

What's inside

  • The most common identity attacks we see, and how they unfold

  • How BEC turns one unauthorized login into real financial loss

  • The early signals that show up before an account takeover does damage

  • What strong identity protection looks like in practice

Why identity is the new battleground for budgets

A valid login looks normal. That's the whole problem. Without eyes on your identities, account takeover and BEC play out in the quiet—until money or data is gone.

How to act on it

Pair the findings with continuous identity monitoring. Managed ITDR catches account takeover early while the Huntress SOC handles the investigation. For the wider threat picture, read the 2026 Cyber Threat Report.

Download the report to see the identity threats hitting businesses now.




[PH] Learn More About Phishing

[PH] Huntress delivers everything you want from a security tool, all designed with the unique needs of outsourced IT and security teams in mind.
[PH] Phishing attempts can show up as messages from your bank, your boss, your utility providers, or even the government. One click from one user can compromise an entire network and inadvertently let hackers deploy ransomware, steal information, or worse.
[PH] The median time it takes for a user to click a link and enter information is less than 60 seconds. With a turnaround time that quick, it's no wonder phishing is one of the preferred methods used by hackers. (2024 Verizon Data Breach Report)