🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

Interested in learning how to defend against #ScatteredSpider? Will Thomas wrote this blog post for SANS Institute and cited 1aN0rmus's threat research as part of understanding the many TTPs of this threat actor group. sans.org/blog/defending…

If you're heading to SecureWorld in Chicago next week, be sure to check out Andrew Kraut's session, "The Evolving Cyber Threat Landscape: Tales of Villains, Heroes and Resilience." Be sure to swing by booth 350 and say hi to Milan Gavran and Permiso Security Randall!

We are back on the road for some upcoming shows and conferences! 5/21 - SecureWorld in Chicago 6/09 - Gartner Security & Risk Management Summit in DC 6/29 - fwd:cloudsec in Denver

LUCR-3 (ScatteredSpider, UNC3944, OctoTempest) TTP Series continues with: Topic 2: Data Theft in Github - Log into the GitHub UI with a browser session - Generate a Personal Access Token (PAT) //Even though they don't use it! - Skip git clone, download repos directly as .zip

During recent threat hunting activities, Daniel Bohannon and Abian Morina discovered a subtle, but significant flaw in AWS. After drilling into IAM policies, they discovered that #CloudTrail fails to log oversized policies due to undocumented size thresholds - a blind spot

Big thanks to AWS Security Digest for covering Abian Morina and Daniel Bohannon's recent #CloudTrail logging evasion vulnerability. "Simple hacking is the best hacking. What happens if you stick a lot of whitespace in a request to the AWS API? Sometimes maybe good things, sometimes

Leo Tsaousis Permiso Security saw some threat actors using console-only APIs. permiso.io/blog/exploitin… That’s the first one that comes to mind.

Thanks to Phill Moore for including Abian Morina and Daniel Bohannon's recent threat research on #CloudTrail logging evasion in his recent issue of This Week in 4n6! thisweekin4n6.com/2025/06/01/wee…

Huge thanks to Zack Allen and Detection Engineering Weekly for including Abian Morina and Daniel Bohannon's recent blog article on #CloudTrail logging evasion by leveraging whitespace in IAM policy size limits. "Ok this is a hilarious vulnerability, and it’s relevant for

What if a SOC analyst could get a daily personalized breakdown of the last 24 hours of identity alerts while they are on their commute? Introducing Permiso Podcaster! *Everyday is a hackathon with the Permiso Security MCP

If you're at Gartner Security & Risk Management Summit this week, stop by booth 570 to learn how Permiso detects and protects against human and non-human identity threats! Come meet Tobin Sears, Sanjeev Williams, Jared Elder and Paul Nguyen !

You can't protect what you don't know. We're thrilled to announce the upcoming launch of Permiso Discover, a free identity inventory & visibility for human, non-human and AI. Starting today, you can join the waitlist to gain early access to this powerful platform that helps you

AWS CloudTrail logging is not as bulletproof as many teams assume. Recent research by Permiso Security has exposed a class of evasion techniques that exploit policy size limits and how whitespace is handled in IAM policies. Although AWS states that whitespace does not count

After yesterdays test on the Permiso Security MCP, I tried a bunch more basic prompt injection techniques by embedding names and tags in AWS resources with instructions. All available models in Cursor handled this super well. Though I have a bunch more ideas to try!

If you're heading to fwd:cloudsec in a few weeks, we are teaming up with our friends at Tamnoon to host Arcade & Apps. What's better than pizza and arcade games after a long day of conferencing? Space is limited, so reserve your spot by signing up! tamnoon.io/fwd-cloudsec-n…

We're less than two weeks away from fwd:cloudsec ! -Nathan Eades will be speaking on 'The False Sense of Security: Defense Becoming A Vulnerability' pretalx.com/fwd-cloudsec-2… -We're teaming up with our friends at Tamnoon to host Arcade & Apps at #LuckyStrike Denver -Permiso

We're less than a week away from fwd:cloudsec ! Permiso will be out in full force. -Nathan Eades will be speaking on 'The False Sense of Security: Defense Becoming A Vulnerability' on Monday at 10:30AM lnkd.in/gVUNX8yU -We're teaming up with our friends at Tamnoon and

Just a few short days away from fwd:cloudsec! -Michael Newar, Andrew Kraut and Jared Elder will be at the booth. -Nathan Eades is taking the stage at 10:30AM on Monday. Come check out his talk: fwdcloudsec.org/conference/nor… -After a long day of conferencing, come hang out with our

Permiso's Director of Adversary Detection, Nathan Eades is taking the stage at fwd:cloudsec in less than an hour! If you're not at the conference, you can watch live! youtube.com/watch?v=si9qVV…

Big thanks to everyone that came out to our event at fwd:cloudsec. Great catching up with old friends and meeting new people!