Cloud Tales Episode 02 Featuring Will Bengtson (VP of Security Engineering at HashiCorp)

REGISTER NOW
Hamburger
Close Icon
Linkedin
Linkedin

© Permiso Security 2022

|Privacy Policy|Terms

PØ LABS: RESEARCH FROM THE BATTLE FRONT

The threat researchers in PØ Labs watch incidents live, as they occur. Working right on the front lines of cloud threat, we can learn more than anyone else about the latest techniques of adversaries. And we when see something new, we’re very transparent.

see what we’re tweeting
PØ LABS
Bleon Proko

Introducing YetiHunter: An open-source tool to detect and hunt for suspicious activity in Snowflake

Bleon Proko | 06.13.24

Star featured research
Summary On May 30, 2024 Snowflake confirmed many clients were affected by an attacker leveraging compromised NHI credentials to perform data theft....
Read More
Illustration Cloud
Illustration Cloud

LATEST CLOUD-SHAKING INSIGHTS

The Permiso Team
Research

Exploiting Cloud Secrets Management Repositories: Adversary Tactics and Mitigation Strategies

The Permiso Team | 07.02.2024

Introduction Proper handling of sensitive information, such as passwords and API keys, is a crucial responsibility for any organization and cybersecurity professional using cloud services for their business operations. To keep your cloud secrets

Read More
Bleon Proko
Research, Featured Research, Featured

Introducing YetiHunter: An open-source tool to detect and hunt for suspicious activity in Snowflake

Bleon Proko | 06.13.2024

Summary On May 30, 2024 Snowflake confirmed many clients were affected by an attacker leveraging compromised NHI credentials to perform data theft. In their notice, Snowflake included some indicators and suggested hunts. Our good friends at Mandiant

Read More
Daniel Bohannon
Research

Extending Cloud Console Cartographer With New Mappings

Daniel Bohannon | 06.04.2024

Last month Permiso’s P0 Labs released the Cloud Console Cartographer open-source framework and corresponding research presentation at Black Hat Asia in Singapore. Recently we released our full suite of unit tests. Now let’s talk about how to extend

Read More
View more posts
illustration-cloud-bottom-2

CLOUD INCIDENT RESPONSE

cloud Infrastructure Paranoia?

Get a free first consultation with the PØ Labs team, led by former Mandiant incident responders. See how PØ Labs identifies compromised infrastructure and helps you respond.

CLOUD HERO, PLEASE
CLOUD INCIDENT RESPONSE

CLOUD COMPROMISE ASSESSMENT

See Who’s Cloud-Lurking Now

PØ Labs can give you a full rundown of who’s in your environment, what they’ve been doing, and if you should be worried. Best case, there’s nothing to worry about.

ASSESSMENT, PLEASE
CLOUD COMPROMISE ASSESSMENT
Cloud

YOUR FRONT-LINE RESEARCH TEAM

Ian Ahl

Ian Ahl

SVP of Threat Research

20+ years of experience starting in the USMC, 8 Years Mandiant IR and Advanced Practices: tracking, detecting, and responding to nation state threat actors.

My favorite dessert is warm dark chocolate brownies with vanilla ice cream and some chocolate drizzle!

LinkedIn
Daniel Bohannon

Daniel Bohannon

Principal Threat Researcher

UGA B.S. CompSci, Georgia Tech M.S. InfoSec, 13+ years IR & researcher roles including Mandiant Advanced Practices Team & Microsoft, OpenSource tool developer (e.g. Invoke-Obfuscation)

My favorite dessert is a lavender latte - to be enjoyed during or between any meal of the day

LinkedIn
Andrew Kraut

Andrew Kraut

Senior Threat Researcher

Born with a screwdriver in his hand, Andy has been digging into the internals of technology since he opened his eyes and in the security industry since the era of dial-up. Proudly a generalist, Andy has turned his hand at a wide swath of security industry focuses on both the offensive and defensive sides over the last 25 years. When he’s not breaking systems and questioning assumptions, you can find him suspiciously connecting his laptop to things, pushing buttons that say “Do not press,” biking mountains, and climbing rocks.

My favorite dessert is chocolate marshmallow churro fries (from Award Weiners at Disney’s California Adventure).

LinkedIn
Nathan Eades

Nathan Eades

Senior Threat Researcher

RMU B.S. CIS, RMU M.S. InfoSec, 8+ years in IT with roles in software development, cybersecurity consulting, data loss prevention, threat detection and threat research

I cannot insult the other desserts by choosing one.

LinkedIn
Bleon Proko

Bleon Proko

Threat Researcher

4 years on IT and cyber security working in Telecommunication, MSP, and Bank.

I tend to not eat sweets, but if I had to choose, trilece.

LinkedIn
Guido Besomi

Guido Besomi

Data Scientist

I’m a mathematical engineer from Universidad de Chile. When I started my data science journey I was a mathematician more than anything else, after 6 years of working on applied problems I’m proud to say I’ve earned the “engineering” part of my degree.

My favorite dessert is any and all combinations of coffee and chocolate. I enjoy coffee in my chocolate and chocolate in my coffee.

LinkedIn
Andi Ahmeti

Andi Ahmeti

Associate Threat Researcher

Experienced Computer Engineering senior student with a 6-month internship as a Security Engineer. Passionate about cybersecurity and skilled in software development, hardware design, and system architecture.

My favorite dessert is any and all combinations of coffee and chocolate. I enjoy coffee in my chocolate and chocolate in my coffee.

LinkedIn
Abian Morina

Abian Morina

Associate Threat Researcher

Computer Science and Engineering student specializing in Information Security and Assurance. 1+ year of experience as a Penetration Tester/Bounty Hunter.

My favorite dessert is any and all combinations of coffee and chocolate. I enjoy coffee in my chocolate and chocolate in my coffee.

LinkedIn
Mela Elezaj

Mela Elezaj

Associate Threat Researcher

Business Informatics second year university student. Cybersecurity, research skills and database exploring.

My favorite dessert is any and all combinations of coffee and chocolate. I enjoy coffee in my chocolate and chocolate in my coffee.

LinkedIn
Enisa Hoxhaxhiku

Enisa Hoxhaxhiku

Associate Threat Researcher

Highly motivated and proactive Computer Science and Engineering student deeply passionate about Information Security and Cybersecurity. Interned in Information Security, actively engaging in red team and blue team activities. Possesses a strong analytical mindset and attention to detail.

My favorite dessert is any and all combinations of coffee and chocolate. I enjoy coffee in my chocolate and chocolate in my coffee.

LinkedIn
Art Ukshini

Art Ukshini

Associate Threat Researcher

Experienced Cyber Security Engineer with a background in Computer Engineering studies. Highly passionate on Offensive Security & with a strategic approach on Defensive Security & Threat Research.

My favorite dessert is any and all combinations of coffee and chocolate. I enjoy coffee in my chocolate and chocolate in my coffee.

LinkedIn
Dredhza Braina

Dredhza Braina

Associate Threat Researcher

Computer engineering graduate with experience as a Software Engineer and DevSecOps Engineer/SRE. Focused on threat research and deeply dedicated to cybersecurity.

My favorite dessert is any and all combinations of coffee and chocolate. I enjoy coffee in my chocolate and chocolate in my coffee.

LinkedIn
Ela Dogjani

Ela Dogjani

Associate Threat Researcher

Senior Software Engineering student at Canadian Institute of Technology, Albania. Began tech journey at 14 with STEM trainings. Now exploring security, excited for Permiso internship.

My favorite dessert is any and all combinations of coffee and chocolate. I enjoy coffee in my chocolate and chocolate in my coffee.

LinkedIn