India, May 25 -- The latest Sophos state of identity security report highlights a major shift in how cyberattacks are evolving across enterprises. Instead of attacking systems directly, cybercriminals are increasingly targeting identities, both human and machine, to gain access to sensitive networks, applications, and business operations. For Indian organisations, the numbers are becoming difficult to ignore.

According to Sophos, nearly 77% of organisations surveyed in India experienced at least one identity-related breach in the past year. Even more concerning, 79% of ransomware victims said their attacks began through compromised identities. The findings point to a growing identity crisis where access management weaknesses are quietly ...