Business confidence in cyber recovery falls to 20%
The firm noted that non-human identities now outnumber human users by roughly 82 to one.
Confidence in cyber recovery is slipping fast amongst Singapore organisations, with just 20% believing they could fully recover from an identity-based incident within 12 hours, down sharply from 52% in 2024.
The findings, released by Rubrik, also showed that 97% of local firms hit by ransomware in the past year ended up paying a ransom.
The data comes from a global survey conducted by Wakefield Research, which included IT and security leaders across Singapore and other major markets.
In Singapore, identity-based threats now dominate boardroom concerns. About 84% of local security leaders cited identity attacks as their top risk, as businesses contend with a growing ecosystem of non-human users, including AI agents, service accounts and bots, that far outnumber human identities.
This expanding threat surface has prompted urgent action. 90% of Singapore respondents plan to hire identity specialists in the next 12 months, and 94% are either changing or have already changed their identity and access management (IAM) providers, most citing security as the primary reason.
The report highlighted the fast rise of agentic AI, with 92% of Singapore organisations having already integrated AI agents into their identity infrastructure, and another 7% planning to do so.
Nearly 44% of security leaders believe that half or more of next year’s cyberattacks will involve agentic AI, either as part of the threat vector or attack automation.
Rubrik warned that traditional IAM tools alone are no longer sufficient. The firm noted that non-human identities now outnumber human users by roughly 82 to one, making governance, monitoring, and control of machine and agentic identities critical to enterprise resilience.