🎙️ In the premier episode of the Permiso Security Podcast, 1aN0rmus provides a detailed step by step breakdown #Salesloft breach. Listen (and watch) as Ian walks through -A detailed timeline of the breach between June and August -The challenges associated with Salesforce

Attackers are finding new ways to hide in plain sight. That’s why Permiso built Inboxfuscation - a free, open-source obfuscation and detection framework to help security teams detect and stop Unicode-obfuscated Microsoft Exchange inbox rules. It includes modules for both

Inboxfuscation - a free, open-source obfuscation and detection framework to help security teams detect and stop Unicode-obfuscated Microsoft Exchange inbox rules permiso.io/blog/inboxfusc…

This past Sunday at Blue Team Con, I shared my latest research and released a new open-source framework called Inboxfuscation. The research looks at how attackers can abuse Microsoft 365 inbox rules using Unicode tricks like:

The full write-up is now live, blog post is attached below if you’d like the deep dive. Blog: lnkd.in/dinPFE7h Github: lnkd.in/dUV9yFpZ #Permiso #M365 #InboxRules #Obfuscation #Unicode #Evade #Persistence #Detection #Inboxfuscation #BlueTeamCon

Chatbots + OAuth == big blast radius. I break down the Salesloft/Drift incident and share fast detection wins you can run today in the pilot episode of the Permiso Security Podcast: youtu.be/0eRy1KkKdtk?si… open.spotify.com/show/0oGzHDKeZ…

ctrl/tinycolor and 40+ NPM Packages Compromised stepsecurity.io/blog/ctrl-tiny…

My CEO this week: “what are we doing about this npm supply chain attack?” Also my CEO this week: “what are we doing about this npm supply chain attack?” Also my CEO this week: “what are we doing about this npm supply chain attack?”

I've been researching the Microsoft cloud for almost 7 years now. A few months ago that research resulted in the most impactful vulnerability I will probably ever find: a token validation flaw allowing me to get Global Admin in any Entra ID tenant. Blog: dirkjanm.io/obtaining-glob…

Prepping for the next episode of the Permiso Security Podcast:

Gartner has been out of touch with tech analysis: and their latest report on AI coding assistants show just by how much. - They rank Amazon, GitLab, GCP, Windsurf all above Cursor - No mention of Claude Code or OpenAI Codex Cursor pays Gartner nothing: others do Embarrassing

"Jubair is charged with computer fraud conspiracy, two counts of computer fraud, wire fraud conspiracy, two counts of wire fraud, and money laundering conspiracy. If convicted, he faces a maximum penalty of 95 years in prison. On Tuesday, Sept. 16, U.K. authorities arrested

From S1ngularity to Shai-Hulud, NPM is the core topic we cover in episode 2 of The Permiso Security podcast

Two Permiso speakers on the international stage tomorrow: Andi Ahmeti will be presenting "Inbox Under Siege: Real-World BEC Attacks, Tactics & Lessons Learend" at BSides Tirana tomorrow at 3:40 local time. Daniel Bohannon will be presenting "SkyScalpel: Making & Breaking

If this guy gets anything less than 1M in rewards I’m canceling my MSFT subscriptions in protest 😊

When did this start showing up in Copilot Interaction logs?

i can't believe this shit actually works

Love seeing our work at @PermisoSecurity being shared with the community! I had the chance to develop Inboxfuscation an open-source tool to detect malicious inbox rules. Excited to see it getting out there!