The 2024 Identity Security Threat Landscape for the public sector shows rising cyber debt fueled by GenAI threats, machine identity sprawl, and vendor risks. Eight in ten organizations reported breaches, with 83% citing vulnerable IAM and 100% facing phishing or vishing. Machine identities now drive 2x growth but are still often overlooked, as many define privileged users as human-only, despite up to 50% of machine identities holding sensitive access. Third- and fourth-party providers increase risks, yet vendor risk management remains the lowest investment priority. To reduce threats, agencies focus on system hardening, phishing-resistant MFA, ITDR, and Zero Standing Privileges.

Join for free to read