Shenanigan Ventures Inc

Not all heroes wear capes!

First day at the new job at Beyond Identity! They didn’t send me any swag, so I had to make my own.

If you're near New York and you want to see what the next generation of identity tooling is going to look like, you should come to this one-day event! Great speakers and demos.

We (Beyond Identity) have opened up early access to a new identity product! It’s called RealityCheck. Are you worried about Zoom deepfakes? Imagine if you could have a badge that connected your Zoom user to a passkey that’s bound to your employee’s identity and devices. It

Deepfakes are a lurking ghost, with many unaware of increasing risk Santander research shows low awareness as Beyond Identity, Veridas, Corsound raise alarm #biometrics #deepfakes Santander biometricupdate.com/202408/deepfak…

Everyone else in these photos looks normal, while I appear to be in a wind tunnel distracted by a squirrel, and if that doesn't get you to click through, I don't know what will. 🤷‍♀️

PM Goals

I deeply apologize on behalf of my entire industry. 😬 There are better solutions now, but it’s slow going to roll them out everywhere…

I can't guarantee that the sun will rise in the East, but I can guarantee that your employees would rather being doing their jobs than attending endless cybersecurity trainings.

I, a Seattleite, once traveled to Florida and ordered a tall drip with no room. They stared at me for a few seconds and said “you mean you want a cup of coffee?”

Look, you CAN do auth, but believe me when I tell you it’s a bitch to maintain, and it’s more efficient for specialized companies to maintain fully secure multi-tenant implementations of their product than for every company to do that maintenance on their own.

And I don’t just mean that auth lives high up the stack so you have to deal with a ton of dependencies (although that’s true) I mean any bureaucrat in the world can screw with their country’s SMS regulations, and blow up your roadmap for an entire quarter.

IAM admin level: mega boss

RealityCheck is part of a larger strategy to link identity directly to hardware. In this demo, we can cryptographically validate the employee's hardware and indicate using a zoom plugin whether they are on their work laptop. Securing zoom with weak MFA is so 2023, you guys. 🤷‍♀️

You don't need to do vishing and smishing "simulations" with your employees. Since we can all agree you're going to get victims (and they ARE being emotionally victimized, make no mistake about it), redirect that energy to hardening your defenses against the inevitable failures