Identity Crisis: Global Firms Face Mounting Risks Amid AI Surge And Lack Of Recovery Testing
Security Boulevard, Monday, March 9th, 2026
Organizations may be increasingly adopting Identity Threat Detection and Response (ITDR) practices, but a critical gap in disaster recovery readiness is leaving many vulnerable to catastrophic failure.
The annual State of ITDR survey from Quest Software, which gathered insights from 650 IT and security executives worldwide, reveals a startling lack of preparedness around post-attack restoration.
Despite industry recommendations to test disaster recovery plans every six months, more than 75% of organizations fail to do so. More alarming is that 24% of respondents admitted they never practice their recovery plans.
As organizations migrate to hybrid and cloud environments, the attack surface has shifted from the network perimeter to individual identities. This sprawl is compounded by an explosion of non-human identities, such as service accounts and automated bots, which outnumber human users by an estimated ratio of 82-to-1.