Identity, Threat Intelligence, Decentralized identity and verifiable credentials

Blackpoint Cyber adds AI SOC agent for identity threat response

Hooded hacker figure behind laptop with glowing fingerprint scan and digital security icons on dark background, concept of cybercrime and identity theft

Blackpoint Cyber has launched a new AI SOC Agent for Identity Threat Detection and Response, giving its SOC an autonomous response capability for credential-based attacks. The new agent is generally available and is designed to act on high-confidence identity threats across Microsoft 365 and Google Workspace accounts.

The company says the agent can contain credential-based attacks in less than two minutes on average, with response times as low as 21 seconds. Blackpoint is positioning the launch around a growing identity security problem, as attackers increasingly target user accounts, cloud apps, and collaboration tools instead of relying only on malware or endpoint compromise.

The AI SOC Agent was trained on Blackpoint’s SOC analyst decisions, incident response forensics and telemetry from nearly a million protected accounts. The company says the agent only takes autonomous action on high-confidence threats, with human SOC oversight and escalation still part of the operating model. The capability is included across all Blackpoint ITDR service tiers at no additional cost.

Identity threats move too quickly for slow triage, especially when compromised accounts can be used to access email, files, SaaS apps, and customer systems. Blackpoint is adding automation to shorten response times while keeping the SOC involved in higher-risk calls. That balance will matter as providers look for ways to scale identity security without handing every decision to AI.

You can skip this ad in 5 seconds