[Webinar] What Insider Threats Actually Look Like - A Lesson From the Rippling Lawsuit

[WATCH NOW]

Announcing Permiso Discover - A free identity inventory & visibility for human, non-human and AI

[Join the Waitlist]

Platform
Resources
Blog
About

Sign In
Request A Demo

Platform
- Permiso  Platform
  
  Our unified identity security platform combines Identity Security Posture Management (ISPM) with Identity Threat Detection and Response (ITDR) to protect all of your human and non-human identities, wherever they go.
  
  Learn More
- Solutions
  Integrations
  
  Permiso Discover
- Use Cases
- See Permiso in action
  
  Demo, please!
Resources
- Resource Center
  - Report
  - eBook
  - Collateral
  - Webinar
  - Press
- Guides
- Featured Resources
  
  CISO Guide to Detecting and Preventing Identity Attacks
  Learn More
  
  The Human Touch In Creating and Securing Non-Human Identities
  Learn More
Blog
About
- About
  
  P0 Labs
- Careers
  
  Contact
- Hear Ye, Hear Ye
  
  Subscribe to Cloud Chronicles for the latest in cloud security!

© Permiso Security 2022

|Privacy Policy|Terms

Cloud Chronicles

The latest research, reports and releases from the minds at Permiso Security.

module_168716615926221

Ian Ahl

When AI Gets Hijacked: Exploiting Hosted Models for Dark Roleplaying

Ian Ahl | 10.03.24

Key Takeaways Attacks against GenAI Infrastructure like AWS Bedrock have increased substantially over the last six (6) months. Particularly with exposed access keys. Attackers are hijacking victim...

Illustration Cloud

Illustration Cloud

All Categories

Bleon Proko

An Arrow to the Heel: Abusing Default Machine Joining to Domain Permissions to Attack AWS Managed Active Directory

Bleon Proko

An Arrow to the Heel: Abusing Default Machine Joining to Domain Permissions to Attack AWS Managed Active Directory

Bleon Proko 07.17.2025

Intro AWS Managed Active Directory, or the AWS Directory Service, is a service which provides users with an Active Directory environment hosted and managed on AWS infrastructure. However, there are...

Thank You

RansomWhen??? I Never Even Noticed It…

Bleon Proko

RansomWhen??? I Never Even Noticed It…

Bleon Proko 02.06.2025

A successful ransomware attack is the culmination of numerous steps performed by a determined attacker: gaining initial access to the victim’s environment, enumerating privileges to identify...

Breaking free from the chains of fate - Bypassing AWSCompromisedKeyQuarantineV2 Policy

Bleon Proko

Breaking free from the chains of fate - Bypassing AWSCompromisedKeyQuarantineV2 Policy

Bleon Proko 10.31.2024

Intro AWSCompromisedKeyQuarantineV2 (v3 was released during the creation of this article) is an AWS policy that attaches to identities whose credentials are leaked. It denies access to certain...

Introducing YetiHunter: An open-source tool to detect and hunt for suspicious activity in Snowflake

Bleon Proko

Introducing YetiHunter: An open-source tool to detect and hunt for suspicious activity in Snowflake

Bleon Proko 06.13.2024

Summary On May 30, 2024 Snowflake confirmed many clients were affected by an attacker leveraging compromised NHI credentials to perform data theft. In their notice, Snowflake included some indicators...

How Using Deprecated Policies Creates Overprivileged Permissions - AmazonEC2RoleforSSM vs AmazonSSMManagedInstanceCore

Bleon Proko

How Using Deprecated Policies Creates Overprivileged Permissions - AmazonEC2RoleforSSM vs AmazonSSMManagedInstanceCore

Bleon Proko 02.15.2023

Managed policies help AWS users simplify the way permissions are assigned. Periodically, AWS will add new permissions to active policies, which offer a new set of permissions to users. Because these...

Hear Ye, Hear Ye

Subscribe to Cloud Chronicles for the latest in cloud security!

21972-312_SOC_NonCPA

Product
P0 Labs
Request a demo
About
Blog
Contact Us
Join Our Team
Resources
Sign In

© Permiso Security 2025

Security|Privacy Policy|Terms