The last few months I have had so much fun rapidly prototyping personal and @permisosecurity projects. I treat every weekend as a hackathon. Using @cursor_ai has been a game changer for me to be able to crank out fast and mostly polished POCs. Today, I'm gonna showcase some of

AI security makes more sense when you see it through identity. Ian Ahl explains why most “AI incidents” come down to stolen creds, OAuth abuse, and over-privileged accounts and how to fix it with Discover. Protect. Defend. Stream now:

Cloud logs all speak a different language. AWS ≠ GCP ≠ SaaS ≠ IdP. P0LR Espresso is an open source tool that normalizes logs across environments so defenders get fast, strong shots of context during live response. Read more:

In his recent article in @crunchbasenews, Permiso's Co-founder and Co-CEO Jason Martin talks about the impact #ScatteredSpider has on businesses and how to think about defending against them. "When modeling approaches to increase resilience against their attacks it’s best to

⚡️AI adoption is outpacing security. Permiso delivers **complete visibility** into AI users, builders & agents with runtime intelligence that stops hidden threats. Blog post here: https://t.co/sygmClA5kt

Great write up from the @The_Cyber_News on our latest open-source tool, #Inboxfuscation, in their newsletter today. "A new open-source tool named Inboxfuscation can create malicious inbox rules in Microsoft Exchange that are difficult for security tools to detect. Developed by

Love seeing our work at @PermisoSecurity being shared with the community! I had the chance to develop Inboxfuscation an open-source tool to detect malicious inbox rules. Excited to see it getting out there!

i can't believe this shit actually works

If this guy gets anything less than 1M in rewards I’m canceling my MSFT subscriptions in protest 😊

When did this start showing up in Copilot Interaction logs?

Two Permiso speakers on the international stage tomorrow: Andi Ahmeti will be presenting "Inbox Under Siege: Real-World BEC Attacks, Tactics & Lessons Learend" at @BSidesTirana tomorrow at 3:40 local time. @danielhbohannon will be presenting "SkyScalpel: Making & Breaking

From S1ngularity to Shai-Hulud, NPM is the core topic we cover in episode 2 of The Permiso Security podcast

"Jubair is charged with computer fraud conspiracy, two counts of computer fraud, wire fraud conspiracy, two counts of wire fraud, and money laundering conspiracy. If convicted, he faces a maximum penalty of 95 years in prison. On Tuesday, Sept. 16, U.K. authorities arrested

Gartner has been out of touch with tech analysis: and their latest report on AI coding assistants show just by how much. - They rank Amazon, GitLab, GCP, Windsurf all above Cursor - No mention of Claude Code or OpenAI Codex Cursor pays Gartner nothing: others do Embarrassing

Both allergic to Windows too, though implemented very differently

Love that both the S1ngularity (Nx) and Shai-Hulud cred theft just encode the output files with triple b64

I've been researching the Microsoft cloud for almost 7 years now. A few months ago that research resulted in the most impactful vulnerability I will probably ever find: a token validation flaw allowing me to get Global Admin in any Entra ID tenant. Blog:

Prepping for the next episode of the Permiso Security Podcast:

My CEO this week: “what are we doing about this npm supply chain attack?” Also my CEO this week: “what are we doing about this npm supply chain attack?” Also my CEO this week: “what are we doing about this npm supply chain attack?”

ctrl/tinycolor and 40+ NPM Packages Compromised

The full write-up is now live, blog post is attached below if you’d like the deep dive. Blog: https://t.co/zzFYZIIAmE Github: https://t.co/Drhq49pFWh #Permiso #M365 #InboxRules #Obfuscation #Unicode #Evade #Persistence #Detection #Inboxfuscation #BlueTeamCon