Palo Alto Network’s incident response firm said identity-based attacks are exploding as poor security controls stretch across a widening mosaic of integrated tools and systems.

The software defects, which have a maximum-severity rating, do not require authentication and allow remote attackers to execute code arbitrarily on the underlying system.

Cisco Talos observed identity-based attacks in 60% of the incidents it responded to last year.

Inexpensive information-stealing malware surged in 2024, infecting 23 million hosts, according to Flashpoint.