79% of SA Organisations Experienced Three Identity-Related Breaches in 12 Months

The latest Identity Security Landscape Report 2026 underscores a seismic shift in how South African enterprises manage digital identities. With machine and AI agent identities now dwarfing human accounts—92 to 1—the attack surface is expanding faster than traditional security teams can defend. The data shows that 79% of organisations experienced three or more identity‑related breaches in the last year, and 93% have encountered at least one breach, signalling that identity threats have become a sustained operational reality rather than isolated incidents.

Governance gaps are widening as 94% of businesses deploy AI agents without robust oversight. Fragmented tooling adds roughly ten hours to incident response, while 80% of firms still lack full automation of certificate lifecycle management, exposing them to an average $248,051 loss per failure. The financial strain is compounded by insurers: 97% of security leaders report that cyber‑insurance requirements now directly influence identity‑security investments, pushing firms toward more measurable, auditable controls.

In response, Palo Alto Networks introduced Idira™, a next‑generation platform designed to replace fragmented, manual processes with unified, dynamic controls for every identity type. By eliminating standing privileges and extending automated governance to machines, AI agents and humans alike, Idira aims to reduce breach frequency and lower insurance premiums. The market trend is clear: enterprises that adopt platform‑driven identity security will better align with insurer expectations, contain breach costs, and sustain innovation in an increasingly automated ecosystem.