Security News > 2020 > June > Non-Human Identities: The New Blindspot in Cybersecurity
Many organizations are still lacking key identity-related security controls and the few forward-thinking companies that have started applying proper access controls are typically focusing on human users.
The sheer number of non-human identities far outweighs human users.
Machine identities are often associated with privileged accounts, and typically have a much larger footprint than traditional human privileged accounts within modern IT infrastructures.
These often pose a blind spot, since machine, IoT, service account, and application identities are not always considered when establishing security controls.
Besides underestimating the relevance of non-human identities in the context of a data breach, many organizations are quickly realizing that the traditional static password concept that often requires manual and time-consuming configurations is not suitable in fast-moving multi-cloud and hybrid environments, where access needs are often temporary, and changes are constant.