Identity: The New Perimeter Of Ransomware Defense
ComputerWeekly, Monday, January 5th, 2026
Ransomware exponents can target identity, bypassing technical defences. Boards should prioritise identity security, align investments, and embed cyber risk in governance
Ransomware has evolved from being an operational nuisance confined to the IT department into one of the most significant strategic risks faced by organisations today.
Last year's disruptive campaigns run by groups such as UNC3944, also known as Scattered Spider, highlight how these attacks have moved beyond technical exploitation, now centring on social engineering and identity abuse.
These developments should be a wake-up call for boards of directors. Identity has become the new security perimeter, and the board's role in safeguarding it has never been more important.