The user’s private keys, which are stored locally in the secure secure enclave portion of the device’s memory, authenticate and authorize the user through Beyond’s cloud-based service. Password management headaches and credential theft have long been one of the biggest challenges for organizations, and password layering with multi-factor authentication (MFA) and other protections has become the norm. But as the recent SolarWinds attack, believed to be outside of Russia, has shown, attackers can bypass MFA to capture or set credentials within their targets. Jermoluk, CEO of Beyond Identity, says the global pandemic and the ensuing rush to send employees from home to work contributed to the decision to offer the startup’s core technology to organizations for free. Cyber-attacks have been on the rise last year, he notes, many of which targeted vulnerable and valuable credentials from home workers.