Read the 2026 State of Identity Security Report

[GET REPORT]
Hamburger
Close Icon
Sign In
Button Arrow
 Request a Demo
Button Arrow
Linkedin
Linkedin

© Permiso Security 2025

|Privacy Policy|Terms

PØ LABS: RESEARCH FROM THE BATTLE FRONT

The threat researchers in PØ Labs watch incidents live, as they occur. Working right on the front lines of cloud threat, we can learn more than anyone else about the latest techniques of adversaries. And when we see something new, we’re very transparent.

see what we’re tweeting
PØ LABS
Ian Ahl

LUCR-3: Scattered Spider Getting SaaS-y in the Cloud

Ian Ahl | 09.20.23

Star featured research
Summary LUCR-3 overlaps with groups such as Scattered Spider, Oktapus, UNC3944, and STORM-0875 and is a financially motivated attacker that leverages...
Read More
Illustration Cloud
Illustration Cloud

LATEST CLOUD-SHAKING INSIGHTS

Ian Ahl
Research

Inside the OpenClaw Ecosystem: What Happens When AI Agents Get Credentials to Everything

Ian Ahl | 02.02.2026

We spun up an AI agent, gave it a mission to hunt threats, and watched it discover a credential stealer disguised as a weather app within minutes. That was just the beginning.

Read More
The Permiso Team
Press

Permiso Research Finds Up to 75% of Security Incidents Are Identity-Related, Highlighting New AI-Driven Risk

The Permiso Team | 01.21.2026

Survey of 500+ Security & Identity Professionals Shows Dramatic 47-Point Drop in Visibility Confidence as 91% Expect Explosive Growth in AI-Generated Identities in 2026

Read More
Aditya Vats
Featured, Analysis

Permiso State of Identity Security Report 2026: From False Confidence to True Visibility

Aditya Vats | 01.21.2026

Permiso Security today released its 2026 State of Identity Security Report, the third annual benchmark examining how organizations manage, secure, and gain visibility into identities across cloud environments. Based on responses from over 500

Read More
View more posts
illustration-cloud-bottom-2

CLOUD INCIDENT RESPONSE

cloud Infrastructure Paranoia?

Get a free first consultation with the PØ Labs team, led by former Mandiant incident responders. See how PØ Labs identifies compromised infrastructure and helps you respond.

CLOUD HERO, PLEASE
CLOUD INCIDENT RESPONSE

CLOUD COMPROMISE ASSESSMENT

See Who’s Cloud-Lurking Now

PØ Labs can give you a full rundown of who’s in your environment, what they’ve been doing, and if you should be worried. Best case, there’s nothing to worry about.

ASSESSMENT, PLEASE
CLOUD COMPROMISE ASSESSMENT
Cloud

YOUR FRONT-LINE RESEARCH TEAM

Ian Ahl

Ian Ahl

SVP of Threat Research

20+ years of experience starting in the USMC, 8 Years Mandiant IR and Advanced Practices: tracking, detecting, and responding to nation state threat actors.

My favorite dessert is warm dark chocolate brownies with vanilla ice cream and some chocolate drizzle!

LinkedIn
Daniel Bohannon

Daniel Bohannon

Principal Threat Researcher

UGA B.S. CompSci, Georgia Tech M.S. InfoSec, 13+ years IR & researcher roles including Mandiant Advanced Practices Team & Microsoft, OpenSource tool developer (e.g. Invoke-Obfuscation)

My favorite dessert is a lavender latte - to be enjoyed during or between any meal of the day

LinkedIn
Nathan Eades

Nathan Eades

Director of Adversary Detection

RMU B.S. CIS, RMU M.S. InfoSec, 8+ years in IT with roles in software development, cybersecurity consulting, data loss prevention, threat detection and threat research

I cannot insult the other desserts by choosing one.

LinkedIn
Isuf Deliu

Isuf Deliu

Threat Research Manager

Computer engineer with 8 years of experience in various aspects of Blue Teaming, including monitoring, detection, incident response, digital forensics, and threat intelligence.

I cannot insult the other desserts by choosing one.

LinkedIn
Guido Besomi

Guido Besomi

Data Scientist

I’m a mathematical engineer from Universidad de Chile. When I started my data science journey I was a mathematician more than anything else, after 6 years of working on applied problems I’m proud to say I’ve earned the “engineering” part of my degree.

My favorite dessert is any and all combinations of coffee and chocolate. I enjoy coffee in my chocolate and chocolate in my coffee.

LinkedIn
Morris

Morris Hsieh

Associate Data Scientist

Data Science grad from Columbia University, excited to bring ML and LLM to business products. Passionate about drawing insights from big data. Easy-going, optimistic, and always curious!

My favorite dessert is any and all combinations of coffee and chocolate. I enjoy coffee in my chocolate and chocolate in my coffee.

LinkedIn
Andi Ahmeti

Andi Ahmeti

Threat Researcher

Experienced Computer Engineering senior student with a 6-month internship as a Security Engineer. Passionate about cybersecurity and skilled in software development, hardware design, and system architecture.

My favorite dessert is any and all combinations of coffee and chocolate. I enjoy coffee in my chocolate and chocolate in my coffee.

LinkedIn
Abian Morina

Abian Morina

Threat Researcher

Computer Science and Engineering student specializing in Information Security and Assurance. 1+ year of experience as a Penetration Tester/Bounty Hunter.

My favorite dessert is any and all combinations of coffee and chocolate. I enjoy coffee in my chocolate and chocolate in my coffee.

LinkedIn
Enisa Hoxhaxhiku

Enisa Hoxhaxhiku

Threat Researcher

Highly motivated and proactive Computer Science and Engineering student deeply passionate about Information Security and Cybersecurity. Interned in Information Security, actively engaging in red team and blue team activities. Possesses a strong analytical mindset and attention to detail.

My favorite dessert is any and all combinations of coffee and chocolate. I enjoy coffee in my chocolate and chocolate in my coffee.

LinkedIn
Art Ukshini

Art Ukshini

Threat Researcher

Experienced Cyber Security Engineer with a background in Computer Engineering studies. Highly passionate on Offensive Security & with a strategic approach on Defensive Security & Threat Research.

My favorite dessert is any and all combinations of coffee and chocolate. I enjoy coffee in my chocolate and chocolate in my coffee.

LinkedIn
Dredhza Braina

Dredhza Braina

Threat Researcher

Computer engineering graduate with experience as a Software Engineer and DevSecOps Engineer/SRE. Focused on threat research and deeply dedicated to cybersecurity.

My favorite dessert is any and all combinations of coffee and chocolate. I enjoy coffee in my chocolate and chocolate in my coffee.

LinkedIn
Gerald Leba

Gerald Leba

Threat Researcher

Cybersecurity Engineer with a solid foundation in Computer Science, specializing in Offensive Security and Threat Intelligence. Possesses a strategic focus on advanced threat research and analysis.

My favorite dessert is any and all combinations of coffee and chocolate. I enjoy coffee in my chocolate and chocolate in my coffee.

LinkedIn
Ela Dogjani

Ela Dogjani

Associate Threat Researcher

Senior Software Engineering student at Canadian Institute of Technology, Albania. Began tech journey at 14 with STEM trainings. Now exploring security, excited for Permiso internship.

My favorite dessert is any and all combinations of coffee and chocolate. I enjoy coffee in my chocolate and chocolate in my coffee.

LinkedIn

Hear Ye, Hear Ye

Subscribe to Cloud Chronicles for the latest in cloud security!