Almost all UK enterprises experienced identity-related breaches in 2025, driven by criminal access to legitimate accounts rather than technical vulnerabilities, as the explosion of machine and AI identities intensifies enterprise security risks.
- 74% of UK enterprises had at least three successful identity breaches in 2025
- Machine identities now outnumber human ones 100 to 1 in UK organizations
- Limited behavioral monitoring and credential revocation for AI and machine identities
What happened
Research from CyberArk, published in the Identity Security Landscape Report 2026, highlights that nearly every enterprise in the UK experienced one or more successful identity-related breaches in 2025. These breaches predominantly involved attackers logging into legitimate user accounts, avoiding direct exploitation of software vulnerabilities.
The report reveals that the number of digital identities — spanning human users, machines, and AI agents — is rapidly increasing, contributing to a more complex and expansive attack surface. The volume of machine identities now exceeds human identities by a factor of 100 to 1 within UK enterprises.
Why it matters
The surge in digital and AI identities means organizations face new and compounded security challenges, as traditional identity management and security controls struggle to keep up. Many enterprises allow AI agents and machine identities access to sensitive systems, including financial data, without robust monitoring or mechanisms to automatically revoke compromised credentials.
This dynamic has placed mounting pressure on companies to enhance visibility and governance over identity access. Without a shift towards unified, automated identity security platforms, enterprises risk further breaches as identity complexity rapidly outpaces manual or fragmented security strategies.
What to watch next
Businesses should closely monitor the integration of automated identity security solutions that can scale with the increasing number of AI and machine identities. Adoption of behavioral analytics and real-time credential management will be critical in mitigating risks posed by the evolving identity landscape.
Regulators and security providers are expected to emphasize best practices around AI identity governance, encouraging platforms that consolidate manual efforts into streamlined, platform-driven protections. How quickly enterprises adapt to these changes will influence their resilience against the rising tide of identity-related cyberattacks.