SailPoint Research Sheds Light on Cybercrime Targeting Digital Identities

Rhea-AI Summary

SailPoint Technologies Holdings, Inc. (NYSE: SAIL) released a survey revealing that 100% of respondents experienced a security breach in the past year, with 32% noting over one million digital identities compromised. Key findings indicate that 71% faced unauthorized access to data, and 75% cited over-permissioned access as a facilitator for breaches. The results emphasize the need for stringent identity security measures to mitigate risks associated with digital identities, particularly amid increased cloud adoption.

Positive

• 100% of security professionals surveyed reported experienced cyber compromises, indicating heightened industry awareness.
• The survey's findings can enhance SailPoint's positioning as a leader in identity security.

Negative

• 32% of respondents reported that over one million digital identities were compromised, highlighting significant security weaknesses.
• 71% of respondents faced unauthorized access to sensitive data, which may undermine client trust.

SailPoint Technologies Holdings, Inc. (NYSE: SAIL), the leader in enterprise identity security, today released the findings from a new survey of security and IT managers/directors that explored why large, well-resourced enterprises are continuing to be compromised. The one common denominator that stands out above the rest as a leading facilitator of cyber incidents – digital identities.

According to the report, all respondents (100%) confirmed that their organizations experienced a security compromise in the last year, with 32% of respondents stating that one million or more digital identities were compromised. Further, 71% of respondents reported that compromised identities led to unauthorized access to data that should have been deleted or destroyed.

"Clearly, the pivot toward cloud adoption and rapid access to critical apps and systems in the last year has accelerated the pace of business. This has generally been great for business, but there is a downside to rapid technology adoption. The results of this study have confirmed what many of us have observed anecdotally for years," said Grady Summers, EVP of Product at SailPoint. "A good security program starts with securing identities. We make it too easy for attackers when identities are left active months after the users have departed the organization or when an identity has far more privilege than is needed to get the job done. I found the survey results fascinating because they clearly show how organizations can limit the blast radius of an attack by focusing on identity security."

Additional takeaways include:

• 75% of respondents said that the compromise(s) were facilitated by over-entitled/over-permissioned access;
• 83% said the compromise(s) included unauthorized access to digital identity information, including that of employees, partners, contractors, customers and;
• 66% of respondents said digital identities that should have been inactive were compromised during the security incident.

Learn more in the Protecting Digital Identity from Cyber Compromise report and in this blog.

Methodology
TAG Cyber surveyed 262 technology professionals about identity-based cybersecurity incidents, with 40% of respondents serving as IT managers/directors and 29% as security managers/directors. The remainder are spread across security- and IT-related categories.

The industries represented in the respondent pool are similarly diverse. Top five industries represented are computer manufacturing (hardware, software, peripherals), computer and networking services/consulting, information technology (the write-in for “other”), internet/application service provider, and data processing services. Bank and retail tied for sixth place.

34% of individuals surveyed work for large enterprises (more than 10,000+ employees), with 21% working in companies with 50,000+ plus employees, and 66% of respondents work for medium-sized businesses. Companies with fewer than 500 employees were not considered for this survey.

About SailPoint
SailPoint is the leader in identity security for the cloud enterprise. We’re committed to protecting businesses from the inherent risk that comes with providing technology access across today’s diverse and remote workforce. Our identity security solutions secure and enable thousands of companies worldwide, giving our customers unmatched visibility into the entirety of their digital workforce, and ensuring that each worker has the right access to do their job, no more, no less. With SailPoint at the foundation of their business, our customers can provision access with confidence, protect business assets at scale and ensure compliance with certainty.

Stay up-to-date on SailPoint by following on Twitter and LinkedIn and by subscribing to the SailPoint blog.

View source version on businesswire.com: https://www.businesswire.com/news/home/20210316005668/en/

FAQ

What did SailPoint's recent survey reveal about cyber security breaches?

SailPoint's survey revealed that 100% of respondents experienced a security compromise in the last year.

How many digital identities were compromised according to the SailPoint survey?

According to the survey, 32% of respondents reported that over one million digital identities were compromised.

What percentage of respondents indicated that over-permissioned access led to compromises?

75% of respondents stated that the compromises were facilitated by over-entitled or over-permissioned access.

What industry does SailPoint operate in?

SailPoint operates in the identity security industry, focusing on protecting digital identities.

How does SailPoint's survey impact its business strategy?

The survey results may reinforce SailPoint's strategy to emphasize identity security solutions in response to heightened cyber threats.