Majority of Nonhuman Accounts Remain Unmanaged, Threatening Enterprise Security
Severity: Medium (Score: 51.1)
Sources: Cybersecuritynews, Gbhackers
Published: · Updated:
Keywords: identity, two-thirds, nonhuman, accounts, unseen, unmanaged, according
Summary
Orchid Security's Identity Gap: 2026 Snapshot report reveals that two-thirds of nonhuman accounts in enterprises are unseen and unmanaged. This phenomenon, termed 'identity dark matter,' poses risks to AI readiness and overall enterprise security. The report indicates that unmanaged accounts can lead to vulnerabilities and potential exploitation by malicious actors. Organizations are urged to address these identity gaps to strengthen their security posture. The findings highlight the urgent need for improved identity management practices across various sectors. Without proper oversight, enterprises risk significant security breaches and operational disruptions. Key Points: • Two-thirds of nonhuman accounts are unmanaged, increasing security risks. • Identity dark matter threatens enterprise AI readiness and security. • Organizations must enhance identity management to mitigate vulnerabilities.
Detailed Analysis
**Impact** Two-thirds of nonhuman accounts within enterprises remain unseen and unmanaged, creating significant identity gaps. This affects organizations globally, particularly those preparing for agent AI adoption, and increases the risk of unauthorized access and operational disruptions. The expanding identity dark matter undermines the security posture across multiple sectors reliant on automated systems. **Technical Details** The articles do not provide specific attack vectors, TTPs, malware, exploited CVEs, or infrastructure details related to this issue. No indicators of compromise (IOCs) or kill chain stages are mentioned. **Recommended Response** Enterprises should prioritize comprehensive discovery and inventory of all nonhuman accounts to reduce identity gaps. Implement strict access controls and continuous monitoring for anomalous activity associated with these accounts. Focus on integrating identity governance solutions that support agent AI environments. Monitoring for unmanaged account activity is critical until further technical details are available.
Source articles (2)
- Two-Thirds of Nonhuman Accounts Are Unseen and Unmanaged, According to Orchid Security’s Identity Gap Report — Cybersecuritynews · 2026-05-19
New York, United States, May 19th, 2026, CyberNewswire New research shows identity dark matter continues to expand and erode enterprise identity, resulting in a fragile foundation for agent AI readine… - Two-Thirds of Nonhuman Accounts Are Unseen and Unmanaged, According to Orchid Security’s Identity Gap Report — Gbhackers · 2026-05-19
New York, United States, May 19th, 2026, CyberNewswire New research shows identity dark matter continues to expand and erode enterprise identity, resulting in a fragile foundation for agent AI readine…
Timeline
- 2026-05-19 — Orchid Security releases Identity Gap report: The report reveals that two-thirds of nonhuman accounts in enterprises are unseen and unmanaged, posing security risks.
- 2026-05-19 — Gbhackers publishes report on Orchid Security's findings: Gbhackers highlights the same findings from Orchid Security, emphasizing the risks associated with unmanaged nonhuman accounts.
Related entities
- Orchid Security (Company)
- United States (Country)