{"id":255233,"date":"2026-05-25T14:19:00","date_gmt":"2026-05-25T18:19:00","guid":{"rendered":"https:\/\/news-you-need.com\/index.php\/2026\/05\/25\/identity-related-breach-hit-71-of-enterprises-sophos\/"},"modified":"2026-05-25T16:50:27","modified_gmt":"2026-05-25T20:50:27","slug":"identity-related-breach-hit-71-of-enterprises-sophos","status":"publish","type":"post","link":"https:\/\/news-you-need.com\/index.php\/2026\/05\/25\/identity-related-breach-hit-71-of-enterprises-sophos\/","title":{"rendered":"Identity-Related Breach Hit 71% of Enterprises: Sophos"},"content":{"rendered":"<p><a href=\"https:\/\/www.cybersecurity-insiders.com\/identity-related-breach-sophos-2026\/\">Identity-Related Breach Hit 71% of Enterprises: Sophos<\/a><\/p>\n<p><a href=\"https:\/\/www.cybersecurity-insiders.com\/identity-related-breach-sophos-2026\/\">https:\/\/www.cybersecurity-insiders.com\/identity-related-breach-sophos-2026\/<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-05-25 14:19:00<\/a><\/p>\n<p>Source Domain: <a href=\"www.cybersecurity-insiders.com\">www.cybersecurity-insiders.com<\/a><\/p>\n<p>Identity, not the network perimeter, is now the primary way attackers break into enterprises. A survey of 5,000 IT and cybersecurity leaders across 17 countries from Sophos finds that 71% of organizations suffered at least one identity-related breach in the past year. Each affected organization was hit by an average of three separate attacks.<\/p>\n<ul>\n<li>Sophos\u2019s State of Identity Security 2026 puts identity at the center of enterprise intrusions, yet most breach prevention still concentrates on human accounts.<\/li>\n<li>Weak management of non-human identities, the machine accounts that can outnumber human ones by 100 to 1, was the root cause of 41% of successful identity breaches.<\/li>\n<li>Two-thirds of ransomware victims, 67%, traced their attack to an identity compromise, and the average breach cost $1.64 million to fix.<\/li>\n<li>Only 34% of organizations regularly audit or rotate service accounts and non-human identities, the gap the report tells defenders to close first.<\/li>\n<\/ul>\n<h2>Identity-Related Breach Hit 71% Across 17 Countries<\/h2>\n<p>Energy, oil, and gas operators were the most exposed, with 80% reporting at least one identity-related breach, against 63% in IT and technology. By geography the spread ran wider still: 89% of Swiss organizations and 83% of Mexican ones were hit. The 5,000 leaders Sophos surveyed across 14 industries averaged three separate identity attacks over the year, at a mean recovery cost of $1.64 million and a median of $750,000. For 73% of victims, fixing a single breach cost $250,000 or more.<\/p>\n<p>That financial weight tracks a change in how intrusions start. Identity compromise has become the connective tissue of the modern attack, and ransomware shows it most clearly. 67% of ransomware victims said their incident began with an identity attack rather than a malware drop or an unpatched edge device.<\/p>\n<h2>Why Non-Human Identities Are the Blind Spot<\/h2>\n<p>The survey\u2019s most consequential finding sits in the accounts no one logs into. Non-human identities, the service&#8230;<\/p>\n<p><a href=\"https:\/\/www.cybersecurity-insiders.com\/identity-related-breach-sophos-2026\/\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Identity-Related Breach Hit 71% of Enterprises: Sophos https:\/\/www.cybersecurity-insiders.com\/identity-related-breach-sophos-2026\/ Publish Date: 2026-05-25 14:19:00 Source Domain: www.cybersecurity-insiders.com&#8230;<\/p>\n","protected":false},"author":1,"featured_media":255234,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/www.cybersecurity-insiders.com\/wp-content\/uploads\/csi-home-office-login-identity-v2.webp","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[30,32,57],"class_list":["post-255233","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-breach","tag-malware","tag-security"],"_links":{"self":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/255233"}],"collection":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=255233"}],"version-history":[{"count":1,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/255233\/revisions"}],"predecessor-version":[{"id":255235,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/255233\/revisions\/255235"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/255234"}],"wp:attachment":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=255233"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=255233"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=255233"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}