Among the headline findings of the report is that the Small & Medium Enterprise (SME) sector in the United Arab Emirates has successfully moved from a stage of resilience to prosperity after the Covid-19 pandemic, with two in three SMEs expressing a positive view of the future business environment in the country. The report found an overall confidence index score of 61 among UAE SMEs – a number based on RFI Global’s analysis of macroeconomic indicators in the UAE, as well as survey responses from over 1,000 SMEs in the country collected between November-December 2023, all of which contributed to the final Index.

IMPORTANT FINDINGS

The report refers to a strong economic forecast for the UAE, with non-oil GDP expected to grow by over 4% in 2024, and overall GDP projected to grow by 5.70% this year. The RAKBANK SME Confidence Index also highlight steady recovery in factors such as hotel occupancy rates close to pre-pandemic levels, which signals a rebound in the tourism sector that is contributing to the general positive outlook among SMEs about their future revenue prospects and the business landscape in the next 12 months. However, the report also talks about the challenges faced by SMEs, including rising labour, operational and other business costs; the impending introduction of corporate tax; and the cost of capital/credit. To navigate these challenges, SMEs need continued support and attention from financial institutions, in addition to the initiatives we are already seeing from government entities, particularly the UAE.

“Small and Medium Enterprises are the backbone of every healthy economy, and this is especially true in the UAE, where SMEs make up 94% of companies and contribute over 50% to the country’s GDP.” – Raheel Ahmed, Chief Executive Officer, RAKBANK

Drawing from a wealth of macroeconomic data and business sentiment analysis, the report suggests that the issuance of new business licenses in Dubai also reflects a strong business environment. Despite challenges posed by fluctuations in Brent oil futures, the overall macroeconomic indicators suggest fertile ground for SME growth and development. While SMEs are proactively embracing innovation and expansion, showing a strong trend towards launching new products/services and bullishness towards customer demand and pricing of products/services, they also displayed one common thread – the critical role of banking support. The need for tailored financial solutions and advisory services is evident in the SME sector. In fact, one of the report’s standout findings is the high level of satisfaction with banking support among almost all the SME sectors.

“RAKBANK has a rich legacy of supporting SMEs, and the launch of our Index in partnership with RFI Global builds upon this legacy, as the UAE’s first SME-specific confidence survey.” – Dhiraj Kunwar, Managing Director, Business Banking, RAKBANK

The RAKBANK SME Confidence Index also offers an in-depth analysis of business sentiment across various industries, with a special focus on Construction & Manufacturing, Transport, Trading, Public Services, Professional Services, and Consumer & Retail Services, with all the sectors again demonstrating strong confidence

The report refers a strong economic forecast for the UAE, with non-oil GDP expected to grow by over 4% in 2024, and overall GDP projected to grow by 5.70% this year.

HID announces its 2024 State of the Security Industry Report, which gathered responses from 2,600 partners, end users, and security and IT personnel worldwide, across a range of job titles and organization sizes representing over 11 industries.

The 2024 State of Security Report delves into the underlying concerns driving upcoming innovations and the technologies that underpin them, helping security leaders to be proactive in adapting to evolving challenges. Conducted in the fall of 2023, this year’s survey reveals six themes, as follows:

1. Mobile identity is expected to be ubiquitous in the next five years

Given the widespread use of mobile devices, momentum continues to build around their use in support of identity. Within the next five years, surveyed end users state that nearly 80% of organizations will deploy mobile IDs. Industry partners are even more optimistic in their outlook, stating that 94% of their customers will have deployed mobile IDs.

• Multi-Factor Authentication is widespread, despite slow but growing implementation of Zero Trust

More than 83% of end users respondents said their organization currently uses Multi-Factor Authentication (MFA), mainly due to the vulnerabilities of passwords. For many, this represents the first step on the longer journey toward Zero Trust, an approach to security that calls for organizations to maintain strict access controls and to never trust, always verify anyone – internal or external – by default. Zero Trust has been implemented in 16% of organizations with over 100,000 employees and 14% in those with up to 10,000 employees, according to the survey.

With MFA being widespread, the eventual end of passwords is imminent. The creation of new standards such as FIDO (Fast Identity Online), which uses “standard public key cryptography techniques to provide phishing-resistant authentication,” will pave the path to new and more secure authentication options that will be part of a more robust Zero Trust architecture.

• Sustainability becomes a growing driver in business decisions

Among HID’s survey respondents, sustainability continues to rank high as a business priority, with both end users and partners rating its importance at a “4” on a 1-to-5 scale. Additionally, 74% of end users indicate the importance of sustainability has grown over the past year, and 80% of partners reported the trend growing in importance among their customers.

As such, there will likely be a continued emphasis on solutions that minimize energy use, reduce waste, and optimize resource usage. A shift to cloud-based solutions and increased use of mobile devices are two clear strategies to reach these sustainability goals.

• Biometrics continues its impressive momentum

In this year’s survey, 39% of installers and integrators said their customers are using fingerprint or palm print, and 30% said they’re using facial recognition. The momentum continues to build as 8% plan to test or implement some form of biometrics in the next year and 12% plan to do so in the next three to five years.

• Identity management points up to the cloud

Nearly half of end users are moving to cloud-based identity management, with 24% already using it and another 24% in the process of implementing such systems. Industry partners say their customers face several hurdles here, including existing reliance on legacy/on-prem equipment (28%), lack of budget (24%), and cloud-based identities simply not being a business priority (21%).

• The rise of artificial intelligence for analytics use cases

Conversations about AI have come to dominate the business landscape, and many security professionals see AI’s analytic capabilities as the low-hanging fruit to enhance identity management. Rather than looking to AI to inform the entirety of the security system, it’s possible to leverage data analytics as a way to operationalize AI in support of immediate outcomes. In this scenario, 35% of end users reported they will be testing or implementing some AI capability in the next three to five years, with 15% already using AI-enabled biometrics.

CyberArk has released a new global research report that shows how siloed approaches to securing human and machine identities are driving identity-based attacks across enterprises and their ecosystems.

The CyberArk 2024 Identity Security Threat Landscape Report provides unique perspectives on how Artificial Intelligence (AI) boosts cyber defenses as well as attacker capabilities; increases the pace at which identities are created in new and complex environments; and highlights the scale of identity-related breaches affecting organizations.

The report, which surveyed 2,400 cybersecurity decision makers in more than 18 countries including the UAE, found that 99% of UAE organizations had two or more identity-related breaches in the past year, indicating the scale of the new challenges.

Cyber Risk Rises as Machine Identity Security Treated Differently to Humans

While the quantity of both human and machine identities is growing quickly, the report found that security professionals globally rate machines as the riskiest identity type. In part due to widespread adoption of multi-cloud strategies and growing utilization of AI-related programs like Large Language Models, machine identities are being created in vast numbers. Many of these identities require sensitive or privileged access.

However, contrary to how human access to sensitive data is managed, machine identities often lack identity security controls, and therefore represent a widespread and potent threat vector ready to be exploited. Key findings of the report include:

• 99% of UAE organizations had two or more identity-related breaches in the past year.
• Machine identities are the #1 cause of identity growth in the UAE and are considered by respondents to be the riskiest identity type.
• 94% of UAE organizations expect identities to grow 3x or more in the next 12 months
• 28% of UAE organizations cited concerns over their software supply chain as a key concern for securing machine identities.

“The digital initiatives that drive organizations forward inevitably create waves of new human and machine identities. Because many of these identities require sensitive or privileged access it is imperative that businesses in the UAE gain a clearer understanding of the nature of this access and the attack surface it represents,” said Tom Lowndes, Director, Middle East at CyberArk. “Identity-centric breaches affect nearly all organizations, with most suffering multiple successful attacks; to address the extent of growing threats on identity that organizations face from an array of malign actors, it is key to build resilience on a new cybersecurity model that places identity security at its core.”  

Widespread Use of AI to Battle AI and Complacency Takes Hold

Consistent with CyberArk’s 2023 report, the 2024 Threat Landscape Report found that all organizations in the UAE (100% of those surveyed) are using AI in cybersecurity defense initiatives. Furthermore, the report predicts an increase in the volume and sophistication of identity-related attacks, as skilled and unskilled bad actors also increase their capabilities, including AI-powered malware and phishing. In related findings, the majority of respondents are confident that deepfakes targeting their organization won’t fool their employees.

• All UAE organizations surveyed have adopted AI-powered tools as part of their cyber defenses to some degree, with 35% using AI for advanced analytics and 31% addressing cyber skills and resource challenges with AI.
• 99% of UAE respondents expect AI-powered tools to create cyber risks including AI powered malware, phishing, data leakage from compromised AI models and deepfake scams.
• 83% are confident that their employees can identify deepfakes of their organizational leadership.
• 97% of UAE organizations surveyed have been a victim of a successful identity-related breach due to a phishing or vishing attack.
• 100% of UAE organizations increased their investment in identity-related products or services to some extent in the last 12 months as a result of a breach.

The full report offers further insight on what is behind human and machine identity growth, where related cyber risk lies and how AI is being used in cyber defenses. The report also details the consequences firms are facing from identity-centric cyber breaches and recommends methods to ensure that security practices keep up with organizational initiatives to reduce cybersecurity debt.