![New iPad 11 (A16) On Sale for Just $299! [Lowest Price Ever]](https://www.iclarified.com/images/news/97144/97144/97144-640.jpg)
![M4 MacBook Air Drops to Just $849 - Act Fast! [Lowest Price Ever]](https://www.iclarified.com/images/news/97140/97140/97140-640.jpg)
![Apple Smart Glasses Not Close to Being Ready as Meta Targets 2025 [Gurman]](https://www.iclarified.com/images/news/97139/97139/97139-640.jpg)
_NicoElNino_Alamy.jpg?width=1280&auto=webp&quality=80&disable=upscale#)
_Muhammad_R._Fakhrurrozi_Alamy.jpg?width=1280&auto=webp&quality=80&disable=upscale#)
![[The AI Show Episode 144]: ChatGPT’s New Memory, Shopify CEO’s Leaked “AI First” Memo, Google Cloud Next Releases, o3 and o4-mini Coming Soon & Llama 4’s Rocky Launch](https://www.marketingaiinstitute.com/hubfs/ep%20144%20cover.png)
Businesses are facing increased identity-based attacks, and rouge applications are a top culprit
Many firms lost $100,000 and more to these attacks.
- Cybercriminals are increasingly targeting login credentials, session cookies, and more
- The threat of identity-based attacks is rising
- The costs are adding up, and businesses are slow to respond
Businesses are facing an increase in identity-based attacks, and rogue applications are the top culprit, research from the Huntress 2025 'Managed ITDR Report: Identity Is the New Security Perimeter'.
Based on a survey of more than 600 IT and security professionals, Huntress’ new report states that two-thirds (67%) of organizations reported an increase in identity-based incidents in the last three years.
What’s more, these attacks comprised more than 40% of security incidents for more than a third (35%) of organizations in the past 12 months alone.
Keeper is a cybersecurity platform primarily known for its password manager and digital vault, designed to help individuals, families, and businesses securely store and manage passwords, sensitive files, and other private data.
It uses zero-knowledge encryption and offers features like two-factor authentication, dark web monitoring, secure file storage, and breach alerts to protect against cyber threats.
Preferred partner (What does this mean?)View Deal
Second increase
Huntress further claims that “rogue applications” are the number one concern here. Almost half (45%) or respondents said they encountered rogue and/or malicious applications in the past, while 46% described them as a “top identity-based concern”.
To make matters worse, detection and response times are not keeping up. More than half (53%) said they need “hours” to detect such an incident, and two-thirds (68%) added that they were “unable” to detect or respond to the threat until the actors already established persistence.
Huntress also warned that the financial impact of these attacks is “significant.” Aside from the downtime and reputational harm, the researchers found a third (32%) of businesses losing at least $100,000 as a result.
“There’s no denying identity is the new endpoint. With widespread cloud adoption, the shift to hybrid work, and an increased reliance on SaaS applications, the identity attack surface has exploded over the past few years,” said Prakash Ramamurthy, Chief Product Officer at Huntress.
“Hackers are no longer wasting time breaking into networks the hard way. They’re logging in using stolen credentials, session cookies, and access tokens to bypass endpoint protection and exploit weak multi-factor authentication.”
Not all is lost, though, as there are multiple methods, including zero-trust network access (ZTNA), that help mitigate this threat.
You might also like
- The rise of identity-related cyberattacks: costs, challenges and the role of AI
- Take a look at our guide to the best firewalls
- We've rounded up the best password managers
