New research reveals a 1-trillion-attribute threat landscape driven by machine speed and scale, and high-density credential consolidation.

LOS ALTOS, CA — February 12, 2026 — Constella, the leader in Identity Risk Intelligence, today announced the release of its flagship 2026 Identity Breach Report. The report details a fundamental shift in the cyber threat landscape, moving from the mass collection of data to the industrialized weaponization of identity at machine speed and scale, with sophisticated attribute correlation.

The Era of the “Attackable” Identity

The 2026 report highlights a critical divergence in data trends: while unique identifiers grew by only 11% in 2025, the total volume of records surged by 135%. This “Identity Density Gap” signifies that adversaries are no longer just looking for new victims; they are building richer, high-fidelity profiles of existing ones.

By correlating an average of 429 billion attributes, including phone numbers, corporate hierarchies, and personal interests, threat actors can now execute autonomous, multi-channel impersonation attacks that bypass traditional MFA and legacy defenses.

“The ‘plaintext problem’ has evolved,” says Alberto Casares, CTO at Constella. “It is no longer a primary metric of insecure enterprise storage. Instead, it reflects an industrialized pipeline where infostealers exfiltrate credentials directly from browsers, bypassing hashing entirely, while GPU-optimized cracking farms convert historical hash sets into actionable, clear-text weapon libraries at a global scale.”

Key Findings from the 2026 Report:

• Surge in Breaches Containing PII: A 661% increase in breaches containing PII indicates that 95% of ingested records are now ready for immediate, automated exploitation.
• The Plaintext Crisis: 68.89% of all breached credentials were found to be stored in plaintext, a staggering 261% increase year-over-year.
• Agentic AI & Industrialized Detection: Constella utilized Agentic AI automation to expand detection by 159%, hunting over 567,000 breaches in 2025.
• The Identity Density Gap: While unique identifiers grew by only 11%, the total volume of records surged by 135%.

Featured Webinar:
The Industrialization of Identity: Defending Against Threats at Machine Speed and Scale

To coincide with the report launch, Constella will host an executive panel on February 26th to discuss the operationalization of this data and the move toward an Identity Risk Posture.

Panelists include:

• Andres Andreu, CEO, Constella: A veteran security leader, Andres provides the strategic vision for meeting machine-scale threats with machine-scale intelligence.
• Alberto Casares, CTO, Constella: Alberto oversees the analysis of industrialized cybercrime pipelines and the exfiltration tactics of modern infostealers.
• Hector Monsegur, Cybersecurity Researcher & Chief Research Officer, SafeHill: Known formerly as “Sabu” and the mastermind behind LulzSec, Hector now uses his raw insider perspective to help organizations neutralize high-profile threats and manage threat exposure.
• Eamonn Maguire, Director of Engineering for AI & ML, Proton: Eamonn holds a DPhil from Oxford and a postdoc from CERN; he has spent the last five years at Proton combating abuse and account takeover while leading the development of public-facing AI features like Proton Scribe and Lumo.

“Traditional defenses are no longer sufficient because the threat is increasingly driven by legitimate accounts being compromised and used for impersonation from real inboxes,” notes the report. “Organizations must shift from event-based security to a model of continuous identity vigilance”.

Register for the webinar, or download the report.

The firm achieved “Category Leader” status in all five evaluated categories, recognized for its innovative approach to mapping threat actor infrastructure.

Fremont, CA – November 25, 2025 – Constella Intelligence, a leader in digital risk protection and identity threat intelligence, today announced it has been named Best in Class in Javelin Strategy & Research’s 2025 Dark Web Threat Intelligence Vendor Scorecard. In addition to the top recognition, Constella was recognized as a Category Leader in all five strategic areas evaluated in the report.

The 2025 Dark Web Threat Intelligence Vendor Scorecard benchmarks leading vendors serving U.S. entities, though Constella does boast customers spanning the globe,  evaluating their ability to identify and connect digital and physical risks. Javelin’s research highlights that as cyber risks become more interconnected, vendors playing a critical role in turning raw data into actionable insights are essential for predicting and preventing serious disruptions.

Constella Intelligence received the Best in Class designation for its unique methodology. According to Javelin Strategy & Research, Constella was recognized for its “innovative ‘reverse-engineering’ approach to mapping threat actor infrastructure. Rather than tracking malware samples, Constella analyzes identity-related artifacts left by malicious actors to uncover the infrastructure behind their operations.”

“We are honored to be recognized as Best in Class by Javelin Strategy & Research,” said Andres Andreu, CEO at Constella Intelligence. “Achieving Leader status in every evaluated category validates our identity-centric approach to dark web intelligence. As the threat landscape evolves to bridge the cyber and physical worlds, our focus remains on empowering organizations to anticipate attacks by understanding the specific actors and infrastructures behind them.”

Investors in Constella Intelligence see this recognition as a major validation of the company’s strategic direction and market impact.

“Constella’s recognition as Best in Class confirms that their identity-centric approach is reshaping how the industry handles threat intelligence,” said Alberto Yepez, Managing Director at Forgepoint Capital. “In an environment where cyber threats increasingly spill into the physical realm, Constella’s unique ability to merge vast historical datasets with fresh intelligence enables the discovery of hidden connections at scale, replicating the investigative processes used by Law Enforcement and delivering the level of attribution organizations need to stay ahead of emerging threats.”

“Achieving Category Leader status across every single evaluated area is a rare and impressive feat,” said Anik Bose, General Partner at BGV. “This sweep of the Javelin Scorecard demonstrates that Constella isn’t just competing; they are setting the standard for comprehensive dark web monitoring and actionable intelligence.”

In the 2025 Scorecard, Constella Intelligence was named a Category Leader in the following areas:

• Threat Actor and TTP (Tactics, Techniques, and Procedures)
• Data Processing and Enrichment
• Contextual and Strategic Analysis
• Source Collection
• Indicators of Compromise (IoCs)

“Dark web threat intelligence vendors play critical roles in turning raw data like IP addresses and file hashes into meaningful, actionable insights,” said Tracy (Kitten) Goldberg, Director of Cybersecurity at Javelin Strategy & Research. “This intelligence is essential for attributing attacks to specific threat actors and predicting future attacks.”

For more information about Constella Intelligence and its dark web monitoring capabilities, please visit Constella.ai/request-a-demo/.

About Constella Intelligence
Constella Intelligence is a global leader in identity risk intelligence, helping organizations detect, investigate, and respond to threats linked to exposed personal data. Powered by the world’s largest breach and infostealer data lake, spanning over one trillion attributes across 125+ countries and 50+ languages, Constella delivers unmatched visibility into identity threats across the surface, deep, and dark web. Enterprises and technology partners worldwide rely on Constella to strengthen identity posture, fuel threat intelligence, and reduce digital risk. Learn more at Constella.ai.

Media Contact:
Christine Castro
christine.castro@constellaintelligence.com