Huntress has announced it is extending its Managed Identity Threat Detection and Response (ITDR) solution to Google Workspace, marking a significant expansion of the company’s cloud identity security coverage and coming at a telling moment.
The announcement, made today at RSA Conference in San Francisco, coincides with Huntress surpassing 10 million Microsoft 365 identities protected across more than 93,000 organisations. It signals the company’s intent to become the go-to ITDR provider across the two platforms that dominate how modern businesses operate.
The timing reflects a shifting threat landscape. Identity-based attacks accounted for 40% of all security incidents in 2025, with adversaries increasingly exploiting session hijacking, OAuth abuse, MFA manipulation, and trusted access paths that traditional endpoint tools simply don’t see. Google Workspace, long viewed primarily as a productivity suite, has become a primary authentication and SaaS access hub for millions of organisations, and attackers have noticed.
Huntress argues that many businesses still rely on legacy email security tools that weren’t built to catch these kinds of attacks. Its Managed ITDR for Google Workspace is designed to surface high-signal attacker behaviour rather than generate noise, focusing on three key threat patterns: anomalous login activity from unexpected locations or VPN configurations; malicious inbox rule persistence, where attackers create Gmail filters to suppress MFA alerts or hide security notifications; and suspicious datacenter authentication, tracking logins from infrastructure commonly associated with threat actor activity.
The solution sits within Huntress’ broader Agentic Security Platform and is backed by its 24/7 AI-centric SOC.
Prakash Ramamurthy, Chief Product Officer at Huntress, put it plainly: “Hackers aren’t breaking in anymore, they’re logging in, and Google Workspace is increasingly at the center of that risk. When identity becomes the front door to the business, organisations need experts who can detect attacker behaviour in real time and shut it down.”
For MSPs and resource-constrained security teams, the appeal is clear: expert-led detection without adding to the alert burden. Customers such as BizStream and CCP Tech have highlighted the ability to hand off identity threat investigation to Huntress rather than chasing yet another dashboard.
With unified ITDR coverage now spanning Microsoft 365 and Google Workspace, Huntress is positioning itself as a platform play for identity security across the platforms powering today’s workforce. The Google Workspace offering is available immediately, with a 14-day free trial.
