Commvault and CloudSEK Strengthen Defenses Against Exposed Credentials Amid Rising Cyber Threats
Commvault has partnered with CloudSEK to combat the escalating issue of exposed credentials prevalent on dark web marketplaces and forums. This collaboration aims to bolster enterprise defenses against identity-based cyberattacks, which have surged due to the increasing availability of stolen credentials and the rise of automated, AI-driven attack methods.
Integration of Dark Web Intelligence
The partnership integrates CloudSEK’s dark web credential intelligence directly into Commvault’s Active Directory Vulnerability Assessments and Advanced Audit and Anomaly Detection solutions. This integration allows enterprises to combine external data on credential exposure with internal identity telemetry, enabling early detection of compromised accounts in the attack cycle. Organizations can take immediate actions such as disabling, locking, or resetting at-risk credentials, as well as reversing unauthorized changes in Active Directory environments before attackers can escalate their privileges or deploy ransomware.
Urgency of Addressing Credential Exposure
Current industry data underscores the critical need for these measures, with over 24 billion stolen credentials reported to be circulating across underground channels. Recent trends indicate that the time between credential exposure and malicious exploitation has decreased significantly, from months to mere hours. In 2024 alone, an estimated 107 billion identity records have been exposed globally, with 57% of cyberattacks originating from compromised identities in the previous year.
Automated Vulnerability Management
Through this integration, vulnerabilities identified across internal systems, public sources, and dark web channels are automatically scored and prioritized. The platform offers security teams specific remediation guidance, allowing them to focus resources on the most critical issues while minimizing the manual effort associated with incident response.
Nivya Ravi, Assistant Vice President of Partnerships at CloudSEK, emphasized the importance of partnerships in today’s AI-driven threat landscape. By embedding predictive threat intelligence into enterprise security workflows, organizations can proactively address exposed credentials and identity risks before they can be exploited by attackers.
Future Availability and Enhancements
Commvault plans to make the CloudSEK integration available at no additional cost to customers utilizing its Active Directory Vulnerability Assessments and Advanced Audit and Anomaly Detection solutions later this summer. For organizations seeking enhanced capabilities, an upgrade path to the complete suite of CloudSEK solutions will also be offered.
Pranay Ahlawat, Chief Technology and AI Officer at Commvault, stated that integrating CloudSEK’s external exposure threat intelligence with Commvault’s Active Directory protection capabilities enhances customers’ ability to identify hidden identity risks earlier and neutralize identity-based threats before they escalate.
Support for Okta and Identity Resilience
In addition to the CloudSEK integration, Commvault has announced planned support for Okta within its Identity Resilience suite. As hybrid cloud architectures, SaaS deployments, and automated workflows become standard, identity systems have emerged as crucial control points for securing organizational operations. However, these systems are increasingly targeted for disruption, whether through misconfiguration or direct attacks.
Disruptions in identity provider platforms like Okta can lead to widespread access issues, locking users out of applications and interrupting business operations, which can result in immediate productivity loss and revenue impact. Many organizations currently depend on manual processes to restore affected identity environments, increasing operational risk and prolonging downtime during incidents.
Commvault’s new offerings for Okta focus on automating protection and recovery procedures. The solution features policy-driven backups of critical objects, including users, groups, applications, and policies within Okta. With granular restoration capabilities, organizations can recover only modified or deleted items at specific points in time, minimizing disruption while maintaining operational continuity.
Backups are stored in immutable storage, isolated from production systems, to reduce exposure to ransomware attacks or unauthorized changes. Early access for Okta support is expected to launch in spring 2026, with general availability anticipated by summer 2026. The product will be delivered globally as part of Commvault’s Cloud Identity Resilience suite on a per-user pricing model.
As reported by www.verdict.co.uk.
