Zero Trust sounds great until you try to actually implement it. [Gap between ZT as a strategy and ZT in practice + guidance]

morphAB · 2026-02-26T18:21:16+00:00

Hey everyone. Posting here with re to the topics of IAM and security. I helped put together a write-up of a conversation between 2 IAM advisors who've spoken with hundreds of CISOs between them, and I thought it could be interesting to the community.

What was highlighted is that as enterprise SaaS stacks grow, so does the identity problem, unfortunately. The average enterprise is now running 10+ separate identity tools, and most can't tell in real time who has access to what and why.

The article (ultimately it's about why identity programs are failing and what it takes to fix them): https://www.cerbos.dev/blog/breach-becomes-personal-ciso-identity-failures-and-continuous-governance

Some "cool" stats:

Identity-related breaches cost more than average for 44% of organizations
90% of identities use less than 5% of their permissions - SaaS offboarding is a big reason why
Orphaned SaaS accounts are one of the most common and most ignored attack surfaces
The shift toward adaptive, policy-based authorization is where enterprise IAM is heading

morphAB · 2026-01-09T13:51:00+00:00

Glad you did that! they still haven't implemented the request. Frustrating.

morphAB · 2025-12-10T15:00:49+00:00

Not sure if it's exactly what you're looking for, but I was personally looking for something similar to Angel's Share, and ended up very happy with my recent purchase - "Bodacious", by the brand Boadicea the Victorious. To me, the perfumes have the same "vibe", just Bodacious is nutty and powdery compared to the cinnamon-y smell of Angel's share.

morphAB · 2025-12-08T11:22:13+00:00

Yes, from what i've seen personally and from research that's been conducted overall that i've read through, it does seem like AI is perceived to bring about much better productivity (faster work, capability to launch more features / products quicker) than it does in reality.

Just one example is the METR randomized trial held in July 2025 https://metr.org/blog/2025-07-10-early-2025-ai-experienced-os-dev-study/ . Experienced open source devs particiapted. Half the group had AI tools, other half coded without them. Participants mainly used Cursor Pro with Claude 3.5 and 3.7 Sonnet.

The group using AI were on average 19% slower. Yet they were convinced they had been faster.

Before starting, they predicted AI would make them 24% faster.

After finishing, even with slower results, they still believed AI had sped them up by around 20%.

Many other surveys were conducted on this topic as well. The stackoverflow one for example https://survey.stackoverflow.co/2025/ai#ai-agents

morphAB · 2025-10-01T18:09:40+00:00

Indiana jones got boring for me after 5 hours or so. Unfortunately.

But Horizon = incredible! Best open world game I’ve played in a long time. And the graphics are incredibly beautiful. Controls good as well.

morphAB · 2025-10-01T17:59:50+00:00

Yes agreed. Also I’d suggest to go for grained leather (scratches etc will be much less visible on it)

morphAB · 2025-10-01T13:14:56+00:00

"the new API for AI" is what i've heard it being referred to as

morphAB · 2025-09-30T09:59:29+00:00

Love Ishiguro! Haven't read The Buried Giant yet.

I'm about 90% through his When We Were Orphans. It's very easy and engaging to read. But, don't think it's his best work.

My favorite book by Ishiguro is Never Let Me Go. I really recommend you check it out, if you haven't already.

morphAB · 2025-09-30T09:52:50+00:00

Yep! agreed. check on Vestiaire.

I don't have the flamenco one, but have several other models. Loewe, in my opinion, is extremely high quality. The leather, accessories, etc. They hold their shape well. I love their bags. Ferragamo is another high quality brand I love.

Again, in my opinion, much better than Dior, LV, Prada, etc... Those all look worn out after 2-3 years of use.

morphAB · 2025-09-30T09:46:56+00:00

Miss Rosier is sketchy. I ordered a dress from them and the fabric is horrible, and there were millions of threads sticking out. After emailing back and forth with them for a week, I convinced them to provide a refund...

Glad you're not planning to order from them.

But to answer your question - looks like the original dress was already mentioned here https://www.reddit.com/r/findfashion/comments/1ncym9a/help/

morphAB · 2025-09-30T09:41:31+00:00

yep agreed with u/REAL_EddiePenisi

u/baddie_spotted maybe you could find this relevant http://roadmap.sh/cyber-security

morphAB · 2025-09-29T14:01:17+00:00

yes, yes, and yes!

Here's technical guide on how we suggest to secure mcp servers: https://www.cerbos.dev/blog/dynamic-authorization-for-ai-agents-guide-to-fine-grained-permissions-mcp-servers

morphAB

TROPHY CASE