.png)
PØ LABS: RESEARCH FROM THE BATTLE FRONT
The threat researchers in PØ Labs watch incidents live, as they occur. Working right on the front lines of cloud threat, we can learn more than anyone else about the latest techniques of adversaries. And when we see something new, we’re very transparent.
LUCR-3: Scattered Spider Getting SaaS-y in the Cloud
Ian Ahl | 09.20.23
featured research
Introducing SandyClaw - The First Dynamic Sandbox for AI Agent Skills and Prompts
TL;DR AI agent skill marketplaces are the new software supply chain, and attackers are already exploiting them. The current generation of skill scanners relies on static code checks or LLM-based evaluation. Neither executes the skill, which means
Permiso Security Wins 2026 SC Award for Best Threat Detection Technology
Permiso Security has won the 2026 SC Award for Best Threat Detection Technology, announced on March 24 duringRSAC 2026 in San Francisco. This marks the second consecutive year Permiso has been recognized at the SC Awards. In 2025, the company won
-1.png?width=767&name=image%20(7)-1.png)
CO-PILOT, DISENGAGE AUTOPHISH: The New Phishing Surface Hiding Inside AI Email Summaries
AI assistants have genuinely improved day-to-day operations for teams buried in inbox triage, client support, customer success, sales follow-ups, incident response, and everything in between. Microsoft Copilot sits right in the flow: it can
CLOUD INCIDENT RESPONSE
cloud Infrastructure Paranoia?
Get a free first consultation with the PØ Labs team, led by former Mandiant incident responders. See how PØ Labs identifies compromised infrastructure and helps you respond.
CLOUD COMPROMISE ASSESSMENT
See Who’s Cloud-Lurking Now
PØ Labs can give you a full rundown of who’s in your environment, what they’ve been doing, and if you should be worried. Best case, there’s nothing to worry about.
YOUR FRONT-LINE RESEARCH TEAM
Ian Ahl
SVP of Threat Research
20+ years of experience starting in the USMC, 8 Years Mandiant IR and Advanced Practices: tracking, detecting, and responding to nation state threat actors.
My favorite dessert is warm dark chocolate brownies with vanilla ice cream and some chocolate drizzle!
Daniel Bohannon
Principal Threat Researcher
UGA B.S. CompSci, Georgia Tech M.S. InfoSec, 13+ years IR & researcher roles including Mandiant Advanced Practices Team & Microsoft, OpenSource tool developer (e.g. Invoke-Obfuscation)
My favorite dessert is a lavender latte - to be enjoyed during or between any meal of the day
Nathan Eades
Director of Adversary Detection
RMU B.S. CIS, RMU M.S. InfoSec, 8+ years in IT with roles in software development, cybersecurity consulting, data loss prevention, threat detection and threat research
I cannot insult the other desserts by choosing one.
Isuf Deliu
Threat Research Manager
Computer engineer with 8 years of experience in various aspects of Blue Teaming, including monitoring, detection, incident response, digital forensics, and threat intelligence.
I cannot insult the other desserts by choosing one.
Guido Besomi
Data Scientist
I’m a mathematical engineer from Universidad de Chile. When I started my data science journey I was a mathematician more than anything else, after 6 years of working on applied problems I’m proud to say I’ve earned the “engineering” part of my degree.
My favorite dessert is any and all combinations of coffee and chocolate. I enjoy coffee in my chocolate and chocolate in my coffee.
Morris Hsieh
Associate Data Scientist
Data Science grad from Columbia University, excited to bring ML and LLM to business products. Passionate about drawing insights from big data. Easy-going, optimistic, and always curious!
My favorite dessert is any and all combinations of coffee and chocolate. I enjoy coffee in my chocolate and chocolate in my coffee.
Andi Ahmeti
Threat Researcher
Experienced Computer Engineering senior student with a 6-month internship as a Security Engineer. Passionate about cybersecurity and skilled in software development, hardware design, and system architecture.
My favorite dessert is any and all combinations of coffee and chocolate. I enjoy coffee in my chocolate and chocolate in my coffee.
Abian Morina
Threat Researcher
Computer Science and Engineering student specializing in Information Security and Assurance. 1+ year of experience as a Penetration Tester/Bounty Hunter.
My favorite dessert is any and all combinations of coffee and chocolate. I enjoy coffee in my chocolate and chocolate in my coffee.
Enisa Hoxhaxhiku
Threat Researcher
Highly motivated and proactive Computer Science and Engineering student deeply passionate about Information Security and Cybersecurity. Interned in Information Security, actively engaging in red team and blue team activities. Possesses a strong analytical mindset and attention to detail.
My favorite dessert is any and all combinations of coffee and chocolate. I enjoy coffee in my chocolate and chocolate in my coffee.
Art Ukshini
Threat Researcher
Experienced Cyber Security Engineer with a background in Computer Engineering studies. Highly passionate on Offensive Security & with a strategic approach on Defensive Security & Threat Research.
My favorite dessert is any and all combinations of coffee and chocolate. I enjoy coffee in my chocolate and chocolate in my coffee.
Dredhza Braina
Threat Researcher
Computer engineering graduate with experience as a Software Engineer and DevSecOps Engineer/SRE. Focused on threat research and deeply dedicated to cybersecurity.
My favorite dessert is any and all combinations of coffee and chocolate. I enjoy coffee in my chocolate and chocolate in my coffee.
Ela Dogjani
Associate Threat Researcher
Senior Software Engineering student at Canadian Institute of Technology, Albania. Began tech journey at 14 with STEM trainings. Now exploring security, excited for Permiso internship.
My favorite dessert is any and all combinations of coffee and chocolate. I enjoy coffee in my chocolate and chocolate in my coffee.