Microsoft has quietly been beefing up its Entra and Defender offerings to counter the rising threat of AI-driven identity attacks, a worrying trend that’s seen cyberattacks scale and speed up significantly thanks to automation and personalized social engineering.
AI-driven identity attacks: the new normal
Artificial intelligence has become a double-edged sword in the world of cybersecurity. While AI can help defend against attacks, it’s also being used by attackers to chain vulnerabilities and probe exposed systems with greater autonomy than ever before.
Attackers are using AI to automate reconnaissance, making it easier to gather information about potential targets and craft personalized social engineering attacks. These attacks are often more convincing because they’re tailored to the specific victim, which makes them harder to detect.
Microsoft’s counterattack
MICROSOFT is addressing these challenges by unifying risk signals across Microsoft Entra and Microsoft Defender to provide a comprehensive identity risk score. This unified score evaluates accounts and systems based on a range of factors, including behavior, location, and device information.
The unified risk score allows Microsoft to provide a clearer picture of potential security threats and enable more effective remediation. This is particularly important for organizations that are already struggling to keep up with the growing threat landscape.
What this means for you
If you’re using Microsoft Entra or Defender, you may not notice any immediate changes. However, under the hood, Microsoft is working to provide a more comprehensive view of identity risk, which should help to reduce the likelihood of attacks.
For organizations that are vulnerable to AI-driven identity attacks, this update is a welcome addition. It’s a sign that Microsoft is taking the threat seriously and working to stay ahead of the curve. As the threat landscape continues to evolve, it’s likely that we’ll see more companies follow Microsoft’s lead and invest in similar technologies.
