Specops Launches Verified ID to Stop Identity-Based Attacks at the Service Desk

New identity verification product integrates government-issued document authentication and live biometric verification into enterprise service desk, password reset, and onboarding workflows, covering more than 16,000 document types across more than 200 countries and territories.

STOCKHOLM, Sweden — April 13, 2026 —

Specops, an Outpost24 company, today launched Specops Verified ID, an identity verification product that enables organizations to confirm user identity using government-issued identity documents combined with biometric liveness validation and fraud detection, delivering a higher level of assurance against the social engineering attacks that increasingly target enterprise service desks and account recovery workflows.

According to the Palo Alto Networks Unit 42 Global Incident Response Report (2025), social engineering is the top initial access vector, accounting for 36% of all cyber incidents. The MGM Resorts breach in 2023, which began with a single social engineering phone call to the IT help desk, resulted in more than $100 million in losses. The 2025 Marks & Spencer ransomware attack cost the business over £300 million ($400 million) in lost sales, demonstrating that even established enterprises with mature security programs remain vulnerable to identity-based intrusion at the service desk.

The verification methods most organizations rely on today are fundamentally vulnerable. Knowledge-based questions are guessable or exposed in data breaches, callback and SMS-based verification are defeated by SIM-swapping, and many service desk agents rely entirely on their own judgment with no structured process at all.

Specops Verified ID replaces these methods with government-issued document scanning combined with biometric liveness validation, supporting more than 16,000 document types across more than 200 countries and territories. Once verification passes, the originating workflow continues: the calling user is genuine, the first-day credential is issued, or account access is restored.

Specops Verified ID addresses any service desk interaction where identity must be confirmed, preventing the impersonation attacks that represent the most common social engineering entry point. For new employee onboarding through First Day Password, it eliminates the security risk of distributing initial credentials through insecure channels. These capabilities are particularly relevant for organizations operating under NIS2, DORA, HIPAA, and NIST frameworks.

Specops Verified ID integrates natively into Specops Secure Service Desk, uReset, and First Day Password, meaning users complete identity verification within the same process they are already using. With the launch of Specops Verified ID, Specops extends its security capabilities to address both user authentication and identity verification, enabling organizations not only to check whether a user has the right credentials but also to confirm that the person requesting access is the legitimate account holder. For more information, visit the Specops Verified ID page.

About Specops

Specops, an Outpost24 company, is a leading provider of identity and access management, specializing in password security, identity verification, and zero trust solutions. Protecting more than 3,500 organizations across 65 countries, Specops helps enterprises strengthen identity security, prevent credential-based attacks, and reduce access risk across both users and devices. With native Active Directory integration and a database of more than 5.8 billion compromised passwords updated daily, Specops delivers powerful security while keeping IT operations simple.

About Outpost24

Outpost24 is a leading global provider of cybersecurity solutions, encompassing two specialized divisions to deliver comprehensive exposure and access management. The company helps thousands of organizations worldwide proactively identify, manage, and reduce cyber risk across their entire digital and human attack surface. This is achieved through the combined expertise of Outpost24, the Attack Surface Management division focused on holistic Exposure Management, and Specops, the Identity and Access Management provider specializing in world-class Identity and Password Security and Zero Trust solutions. Founded in 2001 and headquartered in Sweden, Outpost24 operates globally with 12 offices worldwide, including in the US, UK, France, Belgium, Spain, and Israel. Learn more about Outpost24 at outpost24.com.