The new solution allows organizations to detect, validate and recover leaked credentials and active sessions – before attackers strike.
MONTREAL, QC / ACCESS Newsline / October 15, 2025 / Flare, the leader in Threat Exposure Management (TEM), announced the launch of Identity Exposure Management (IEM), designed to prevent exposed identities from causing large-scale incidents.
Every hour that exposed accounts go unaddressed increases the risk of a breach. Verizon’s DBIR 2025 report found that stolen credentials were involved in 88% of web application attacks. Additionally, the average e-crime outbreak time is just 48 minutes, according to CrowdStrike’s 2025 Global Threat Report. This stems from the growth of Infostealer Malware-as-a-Service, which has lowered the barrier to entry for attacks.
Nearly 50 million compromised identities are traded across Telegram and dark web channels every week, giving attackers endless opportunities to conduct account takeovers. Adversaries collect login credentials and browsing data via infostealer malware, making it relatively easy to bypass MFA and hijack organizations.
“Many of the largest breaches in recent years have resulted from attackers simply logging in,” he says Nick AscoliDirector of Product Strategy at Glow. “At any time, a newly exposed account represents one of the most critical risks to an organization. Detecting and remediating this exposure before attackers exploit it is critical.”
IEM builds on the success of Flare’s integration with Entra ID and manual validation capabilities, which hundreds of leading enterprises already rely on. This workflow helped teams test thousands of leaked dark web credentials and stealer logs, resulting in a true positive rate of approximately 2%, and preventing critical incidents worth millions in avoided breach costs. IEM closes the loop with fully automated validation and remediation within a customer’s Entra ID environment, reducing dwell time from days or weeks to seconds.
“With IEM, we give security teams the power to act, not just warn,” he said Serge-Olivier PaquetteChief Product Officer at Glow. “Our customers already use Flare to validate thousands of leaked credentials. Now they can completely eliminate the threat before attackers ever have a chance to log in.”
In addition to automation, IEM delivers powerful new visibility and context with “Identity Profiles” and “Blast Radius” features. Customers can enrich each discovered exposure with context about the user, related incidents and potential attack routes, strengthening the posture after the threat has been resolved.
“The modern perimeter is the identity. The rapid adoption of this integration strengthens our defenses,” says a security architect at a Fortune 500 electronics company and early design partner for the new product. “Flare’s automation-driven approach transforms the way we respond to exposure.”
About Flare
Flare is a leader in Threat Exposure Management, helping global organizations detect high-risk exposures on the clear and dark web. By combining the industry’s best cybercrime database with a ridiculously intuitive user experience, Flare empowers customers to regain the information advantage and make cybercrime irrelevant.
For more information, visit https://flare.io.
SOURCE: Glow
