MyCena® Featured in PIMFA Cyber Tech Sprint for Solving Credential Risk in Wealth Management

LONDON, June 22, 2025 — As the financial world digitises, credential-based cyberattacks have become a silent epidemic. In its latest Cyber Security Tech Sprint, PIMFA (Personal Investment Management & Financial Advice Association) WealthTech gathered leading Fintechs to answer a pressing question:

“How can a specialist cyber security Fintech provide unique and additional value to support wealth managers in preventing, detecting, responding and recovering from cyber security attacks?”

Among the standout solutions was MyCena® Unphishable Access, recognised for its innovative access security model that eliminates password-related vulnerabilities, the root cause of most cyber breaches.

“MyCena® is the first platform to separate identification from authentication in digital access. Users never manage credentials. They identify then authenticate. This eliminates human error—and removes the root cause of most breaches.”

Rewriting the Access Model with ML-DAES

MyCena® is a pioneer in passwordless, encrypted access security, offering a patented solution, Multi-Layer Dynamic Access Encryption Security (ML-DAES), that eliminates the primary vulnerability in cybersecurity: human-managed credentials.

With over 90% of breaches traced back to stolen passwords and two-factor tokens, and AI-powered phishing and deepfake attacks increasingly bypassing traditional defenses, MyCena® addresses a critical architectural flaw in security systems that has been historically overlooked: the conflation of identification and authentication. By separating these functions and ensuring credentials are never seen, stored, or shared by users, ML-DAES renders phishing irrelevant, stops lateral movement, and removes the human error that fuels breaches. In doing so, MyCena® sets a new gold standard for secure, scalable access control.

“In the physical world, we naturally separate identity and access. When you sit an exam, you show your ID. When you go home, you use your keys. One person has one identity but can have a thousand keys.”

“But in the digital world, those layers were merged. Your identity—often a password—became the key. That made humans the security perimeter.
Attackers don't need to hack it, they simply find the credentials and log in”
—Julia O’Toole, CEO, MyCena®

Eliminating Human Error from Access Security

With today's complex supply chains involving employees, vendors, contractors, and even fourth- and fifth-party partners, the number of access points has exploded, making it athematically impossiblem to guarantee that every single login is free from human error.

Every password created is another door left vulnerable. It takes just one mistake, one successful phishing attempt, to compromise an entire organization. In one high-profile example, a single breach cost the iconic British company M&S over £300 million.

MyCena® offers a bold, simpler solution: don’t secure human credentials, remove them altogether.

At the core of MyCena®'s patented approach:

  1. No Stored or Known Credentials

    MyCena® generates and distributes encrypted, application-specific credentials that users never see or manage—eliminating the risk of phishing, password reuse, and theft.

  2. Multi-Layered Security Architecture

    A layered defense model ensures that even if one system is breached, attackers cannot pivot or escalate access to others.

  3. No Single Point of Failure

    Unlike traditional password managers or SSO platforms, each system has unique credentials, blocking attackers from leveraging a single breach to compromise multiple systems.

Trusted Across Industries.

Already deployed in fifteen sectors, MyCena® delivers a fully patented secure access control solution tailored to meet both regulatory demands and the fiduciary duties that wealth managers must uphold.

With this latest feature, MyCena® reaffirms its commitment to safeguarding client reputations by building architectural defenses that ensure digital trust. Our infrastructure-agnostic solution supports wealth managers seeking regulation readiness, with systems that are audit-ready, resilient, and easy to deploy in stages.

No infrastructure overhaul required.
No disruption. Maximum protection.

“Because wealth managers are in the business of trust—and securing that trust begins with securing access.”
—Julia O’Toole, CEO, MyCena®

Scalable Protection. Frictionless Compliance.

MyCena®’s platform integrates seamlessly with both legacy and modern systems—SaaS, RDP, SSH, FTP, without requiring infrastructure changes. It automates access governance, simplifies compliance with GDPR, DORA, and MiFID II, and delivers full auditability, all without adding complexity or burden for users.

A Commitment to the Future of Wealth Management

“We are very proud to be recognized by PIMFA,”

Our solution helps wealth managers uphold their commitment to their clients—by safeguarding their digital assets, maintaining their reputation, and protecting the trust placed in them. Their clients have worked hard to secure their financial future —we help them protect that wealth.
—Julia O’Toole, CEO, MyCena®

Experience Unphishability: An Exclusive Offer for PIMFA Members

To support the UK wealth management community, PIMFA members are invited to trial the MyCena® enterprise platform at no cost. This exclusive no-obligation limited opportunity allows firms to assess their credential vulnerabilities and experience the benefits of unphishability, disruption-free access control—without any impact on their current operations.

About PIMFA WealthTech

PIMFA WealthTech is a marketplace and innovation network led by an advisory council of senior wealth management leaders. Its Tech Sprints explore how modern technologies can address real-world challenges in cybersecurity, client engagement, and operational transformation.

Find out more: pimfawealthtech.com
Contact: (Insert preferred contact)

About MyCena®

MyCena® Unphishable Access is a UK-based cybersecurity company that stops the #1 cause of cyber breaches: human error. Its patented ML-DAES model and infrastructure-agnostic platform makes businesses unphishable by design by separating identification (who you are) from authentication (what you can access).

Instead of relying on passwords, MyCena® generates and delivers encrypted credentials—so users never see, share, or reuse them. Without infrastructure change, MyCena® is deployed as an overlay onto your existing stack to eliminate phishing, simplify access control, and support compliance.

MyCena® serves organisations of all sizes across financial services, healthcare, legal and critical infrastructure, enabling invisible, unphishable access control for a safer digital world.

Find out more: mycena.co
Contact: [email protected]

MyCena®
Powered by  GDPR Cookie Compliance
Privacy Overview

This website uses cookies so that we can provide you with the best user experience possible. Cookie information is stored in your browser and performs functions such as recognising you when you return to our website and helping our team to understand which sections of the website you find most interesting and useful.