This report examines the true scope of identity-based risks, based on a survey of more than 500 security professionals, and shows that for many, yesterday’s playbook is outdated. Today’s adversaries are already making their way inside networks – masquerading with legitimate identities that slip past perimeter defenses you’ve invested years building.
The findings also reveal a dangerous paradox at the heart of modern cyberdefense: 86% of leaders express confidence in their defenses, yet 85% of organizations report being affected by ransomware in the past year – even more alarming, nearly 31% experienced between 6 and 10 incidents.
The gaps extend beyond ransomware. Nearly half of corporate users have been infected by malware sometime in their digital history. More than two-thirds of respondents report being significantly or extremely concerned about broader identity-based cyberattacks, including phishing and nation-state threats.
Leaders rate their detection and response capabilities highly; however, as the data highlights, most lack the necessary visibility, investigation, and remediation workflows to respond effectively.
We’ve outlined the key findings from this year’s survey and what respondents are (or aren’t) doing to mitigate the ever-changing identity threat landscape.
