Mitiga
@mitiga.bsky.social
Let Them Come. Mitiga is the leader in AI-Native Zero-Impact Breach Mitigation – the only approach that ensures cyberattacks cause no business impact.
Attackers have figured out a new playbook. In 2026, Roei Sherman, Mitiga Head of Research, says, SaaS is the soft underbelly of the enterprise. https://loom.ly/xTj5uQk | via Cyber Defense Magazine
January 12, 2026 at 8:44 PM
Attackers have figured out a new playbook. In 2026, Roei Sherman, Mitiga Head of Research, says, SaaS is the soft underbelly of the enterprise. https://loom.ly/xTj5uQk | via Cyber Defense Magazine
The problem with the ConsentFix phishing technique: nothing looks broken.
Mitiga Labs' breakdown of ConsentFix and why standard controls miss it:
https://loom.ly/rs16AoY
Mitiga Labs' breakdown of ConsentFix and why standard controls miss it:
https://loom.ly/rs16AoY
January 12, 2026 at 5:04 PM
The problem with the ConsentFix phishing technique: nothing looks broken.
Mitiga Labs' breakdown of ConsentFix and why standard controls miss it:
https://loom.ly/rs16AoY
Mitiga Labs' breakdown of ConsentFix and why standard controls miss it:
https://loom.ly/rs16AoY
You don't have time to cut through the noise manually. Piece together the signals from where? All over.
Your modern Cloud Detection and Response (CDR) platform turns those fragmented signals into decisions. Fast.
Prevent impact. Let them come.
Your modern Cloud Detection and Response (CDR) platform turns those fragmented signals into decisions. Fast.
Prevent impact. Let them come.
January 9, 2026 at 6:31 PM
You don't have time to cut through the noise manually. Piece together the signals from where? All over.
Your modern Cloud Detection and Response (CDR) platform turns those fragmented signals into decisions. Fast.
Prevent impact. Let them come.
Your modern Cloud Detection and Response (CDR) platform turns those fragmented signals into decisions. Fast.
Prevent impact. Let them come.
How else would you get the full picture of your cloud ecosystem? Honestly, it's hard to imagine approaching cloud security today without some level of AI augmentation, says Brian Contos.
January 8, 2026 at 9:07 PM
How else would you get the full picture of your cloud ecosystem? Honestly, it's hard to imagine approaching cloud security today without some level of AI augmentation, says Brian Contos.
Identity is the link that ties together modern clinical operations. However, many hospitals still center their security around networks and endpoints, using firewalls, VPNs, and endpoint agents. Those are necessary, but they don’t reflect where risk forms today. https://loom.ly/ZSSiiMU
January 7, 2026 at 7:02 PM
Identity is the link that ties together modern clinical operations. However, many hospitals still center their security around networks and endpoints, using firewalls, VPNs, and endpoint agents. Those are necessary, but they don’t reflect where risk forms today. https://loom.ly/ZSSiiMU
Technologies like cloud and AI are changing security, yes, but they're also changing the way we live.
Mitiga CEO Charlie Thomas joins Brian Contos for the first Mitiga Mic of the year to discuss his journey through security, startups, and the changes he sees coming.
Watch: https://loom.ly/EQvprZY
Mitiga CEO Charlie Thomas joins Brian Contos for the first Mitiga Mic of the year to discuss his journey through security, startups, and the changes he sees coming.
Watch: https://loom.ly/EQvprZY
January 6, 2026 at 3:35 PM
Technologies like cloud and AI are changing security, yes, but they're also changing the way we live.
Mitiga CEO Charlie Thomas joins Brian Contos for the first Mitiga Mic of the year to discuss his journey through security, startups, and the changes he sees coming.
Watch: https://loom.ly/EQvprZY
Mitiga CEO Charlie Thomas joins Brian Contos for the first Mitiga Mic of the year to discuss his journey through security, startups, and the changes he sees coming.
Watch: https://loom.ly/EQvprZY
2026 is the year of AI vs. AI.
We’re moving closer to autonomous systems colliding at machine speed. Mitiga COO & Co-founder Ariel Parnes recently published his 2026 Cyber Risk Forecast in CPO Magazine. Watch for AI attackers, deepfakes, and more. https://loom.ly/lkguSzU
We’re moving closer to autonomous systems colliding at machine speed. Mitiga COO & Co-founder Ariel Parnes recently published his 2026 Cyber Risk Forecast in CPO Magazine. Watch for AI attackers, deepfakes, and more. https://loom.ly/lkguSzU
The 2026 Cyber Risk Forecast: Entering the AI-Versus-AI Battlefield - CPO Magazine
Next year, cybersecurity becomes an AI-driven battleground where trust erodes, deception scales, and the speed of intelligent machines determines who stays secure and who gets left behind.
www.cpomagazine.com
January 5, 2026 at 5:06 PM
2026 is the year of AI vs. AI.
We’re moving closer to autonomous systems colliding at machine speed. Mitiga COO & Co-founder Ariel Parnes recently published his 2026 Cyber Risk Forecast in CPO Magazine. Watch for AI attackers, deepfakes, and more. https://loom.ly/lkguSzU
We’re moving closer to autonomous systems colliding at machine speed. Mitiga COO & Co-founder Ariel Parnes recently published his 2026 Cyber Risk Forecast in CPO Magazine. Watch for AI attackers, deepfakes, and more. https://loom.ly/lkguSzU
Attribution gaps, what GitHub Actions logs capture, and the exfiltration paths hidden in plain sight.
If you don't know what to look for in GitHub logs, you may be caught off guard when it matters most.
📖 https://loom.ly/Nt6uABY
If you don't know what to look for in GitHub logs, you may be caught off guard when it matters most.
📖 https://loom.ly/Nt6uABY
January 2, 2026 at 3:03 PM
Attribution gaps, what GitHub Actions logs capture, and the exfiltration paths hidden in plain sight.
If you don't know what to look for in GitHub logs, you may be caught off guard when it matters most.
📖 https://loom.ly/Nt6uABY
If you don't know what to look for in GitHub logs, you may be caught off guard when it matters most.
📖 https://loom.ly/Nt6uABY
One year closes. Another begins.
And defenders are finding ways to hold the line through faster threats and wider surfaces.
Mitiga is built for what comes next: clarity, control, and Zero-Impact containment across cloud, SaaS, identity, and AI.
Here’s to the year ahead.
Let them come.
And defenders are finding ways to hold the line through faster threats and wider surfaces.
Mitiga is built for what comes next: clarity, control, and Zero-Impact containment across cloud, SaaS, identity, and AI.
Here’s to the year ahead.
Let them come.
December 31, 2025 at 3:04 PM
One year closes. Another begins.
And defenders are finding ways to hold the line through faster threats and wider surfaces.
Mitiga is built for what comes next: clarity, control, and Zero-Impact containment across cloud, SaaS, identity, and AI.
Here’s to the year ahead.
Let them come.
And defenders are finding ways to hold the line through faster threats and wider surfaces.
Mitiga is built for what comes next: clarity, control, and Zero-Impact containment across cloud, SaaS, identity, and AI.
Here’s to the year ahead.
Let them come.
In 2025, CRN named Mitiga one of the hottest cybersecurity startups around. And you know what? We're not slowing down.
Join the team. Find your next opportunity here: https://loom.ly/vky1cQg
Join the team. Find your next opportunity here: https://loom.ly/vky1cQg
December 30, 2025 at 3:04 PM
In 2025, CRN named Mitiga one of the hottest cybersecurity startups around. And you know what? We're not slowing down.
Join the team. Find your next opportunity here: https://loom.ly/vky1cQg
Join the team. Find your next opportunity here: https://loom.ly/vky1cQg
We're approaching what you might call "The Year of the SaaS Breach." That's what Mitiga Labs head of research says anyway.
Read 2026 predictions cybersecurity and computing predictions 👉 https://loom.ly/_Zj2a_g
Read 2026 predictions cybersecurity and computing predictions 👉 https://loom.ly/_Zj2a_g
December 29, 2025 at 5:15 PM
We're approaching what you might call "The Year of the SaaS Breach." That's what Mitiga Labs head of research says anyway.
Read 2026 predictions cybersecurity and computing predictions 👉 https://loom.ly/_Zj2a_g
Read 2026 predictions cybersecurity and computing predictions 👉 https://loom.ly/_Zj2a_g
You don’t need more agents.
A modern CDR has to be agentless first so you can see across your entire SaaS and cloud control plane. And it should use the EDR agents you already have to add runtime depth.
Read the full guide to see what your CDR must deliver: https://loom.ly/f1wjDcs
A modern CDR has to be agentless first so you can see across your entire SaaS and cloud control plane. And it should use the EDR agents you already have to add runtime depth.
Read the full guide to see what your CDR must deliver: https://loom.ly/f1wjDcs
December 26, 2025 at 4:52 PM
You don’t need more agents.
A modern CDR has to be agentless first so you can see across your entire SaaS and cloud control plane. And it should use the EDR agents you already have to add runtime depth.
Read the full guide to see what your CDR must deliver: https://loom.ly/f1wjDcs
A modern CDR has to be agentless first so you can see across your entire SaaS and cloud control plane. And it should use the EDR agents you already have to add runtime depth.
Read the full guide to see what your CDR must deliver: https://loom.ly/f1wjDcs
A rare pause at the end of the year. Defenders deserve that quiet. You faced faster threats and wider surfaces across cloud, SaaS, identity, and AI. You stayed steady. Wishing you calm, joy, and real rest as the year winds down.
December 24, 2025 at 3:04 PM
A rare pause at the end of the year. Defenders deserve that quiet. You faced faster threats and wider surfaces across cloud, SaaS, identity, and AI. You stayed steady. Wishing you calm, joy, and real rest as the year winds down.
In 2026, SecOps faces a new reality. Get used to it, folks: it's AI vs AI.
Ariel Parnes tells this emerging tale, from supply chain weak links to deepfakes and the shifting focuses of threat hunting, in CPO Magazine. https://loom.ly/lkguSzU
Ariel Parnes tells this emerging tale, from supply chain weak links to deepfakes and the shifting focuses of threat hunting, in CPO Magazine. https://loom.ly/lkguSzU
The 2026 Cyber Risk Forecast: Entering the AI-Versus-AI Battlefield - CPO Magazine
Next year, cybersecurity becomes an AI-driven battleground where trust erodes, deception scales, and the speed of intelligent machines determines who stays secure and who gets left behind.
www.cpomagazine.com
December 23, 2025 at 6:15 PM
In 2026, SecOps faces a new reality. Get used to it, folks: it's AI vs AI.
Ariel Parnes tells this emerging tale, from supply chain weak links to deepfakes and the shifting focuses of threat hunting, in CPO Magazine. https://loom.ly/lkguSzU
Ariel Parnes tells this emerging tale, from supply chain weak links to deepfakes and the shifting focuses of threat hunting, in CPO Magazine. https://loom.ly/lkguSzU
Why wouldn't you have a CDR? PO spells out why you need Cloud Detection & Response clear as day.
Finding real cloud expertise inside a SOC is tough. Even strong teams struggle to make sense of cloud logs, identity patterns, and SaaS behavior. That gap gives attackers room to move.
Finding real cloud expertise inside a SOC is tough. Even strong teams struggle to make sense of cloud logs, identity patterns, and SaaS behavior. That gap gives attackers room to move.
December 22, 2025 at 3:06 PM
Why wouldn't you have a CDR? PO spells out why you need Cloud Detection & Response clear as day.
Finding real cloud expertise inside a SOC is tough. Even strong teams struggle to make sense of cloud logs, identity patterns, and SaaS behavior. That gap gives attackers room to move.
Finding real cloud expertise inside a SOC is tough. Even strong teams struggle to make sense of cloud logs, identity patterns, and SaaS behavior. That gap gives attackers room to move.
AI is removing the barrier to entry for targeted phishing. Tim Chase explains that a simple prompt can do the heavy lifting.
This shift changes the game for attackers and raises the stakes for cloud and identity security.
This shift changes the game for attackers and raises the stakes for cloud and identity security.
December 19, 2025 at 3:07 PM
AI is removing the barrier to entry for targeted phishing. Tim Chase explains that a simple prompt can do the heavy lifting.
This shift changes the game for attackers and raises the stakes for cloud and identity security.
This shift changes the game for attackers and raises the stakes for cloud and identity security.
GitHub is a goldmine for developers and attackers.
Our second Now You See Me post breaks down what GitHub logs reveal, where blind spots hide, and how to hunt smarter.
Catch what others miss. https://loom.ly/Nt6uABY
Our second Now You See Me post breaks down what GitHub logs reveal, where blind spots hide, and how to hunt smarter.
Catch what others miss. https://loom.ly/Nt6uABY
December 18, 2025 at 7:03 PM
GitHub is a goldmine for developers and attackers.
Our second Now You See Me post breaks down what GitHub logs reveal, where blind spots hide, and how to hunt smarter.
Catch what others miss. https://loom.ly/Nt6uABY
Our second Now You See Me post breaks down what GitHub logs reveal, where blind spots hide, and how to hunt smarter.
Catch what others miss. https://loom.ly/Nt6uABY
Doing some New Year's shopping? Listen up: We broke down the ten capabilities that define the CDR you actually need.
Let them come. Just select a CDR platform that makes sure they get nothing. www.mitiga.io/blog/cloud-detection-response-buyers-guide-10-capabilities
Let them come. Just select a CDR platform that makes sure they get nothing. www.mitiga.io/blog/cloud-detection-response-buyers-guide-10-capabilities
December 17, 2025 at 6:15 PM
Doing some New Year's shopping? Listen up: We broke down the ten capabilities that define the CDR you actually need.
Let them come. Just select a CDR platform that makes sure they get nothing. www.mitiga.io/blog/cloud-detection-response-buyers-guide-10-capabilities
Let them come. Just select a CDR platform that makes sure they get nothing. www.mitiga.io/blog/cloud-detection-response-buyers-guide-10-capabilities
Cloud attacks are changing faster than most SOCs can react. Multi-cloud complexity, identity abuse, and AI-driven threat velocity are raising the stakes for everyone.
On Mitiga Mic, these folks share how AI-driven processes help teams stay ahead. https://loom.ly/uUzY7a8
On Mitiga Mic, these folks share how AI-driven processes help teams stay ahead. https://loom.ly/uUzY7a8
December 16, 2025 at 5:47 PM
Cloud attacks are changing faster than most SOCs can react. Multi-cloud complexity, identity abuse, and AI-driven threat velocity are raising the stakes for everyone.
On Mitiga Mic, these folks share how AI-driven processes help teams stay ahead. https://loom.ly/uUzY7a8
On Mitiga Mic, these folks share how AI-driven processes help teams stay ahead. https://loom.ly/uUzY7a8
Attackers are already using misconfigured integrations, over-permissive roles, and stolen tokens to move laterally through your SaaS environment. Most teams don’t see it until the damage is done.
Mitiga is your SaaS safety net. Starting with Salesforce. https://loom.ly/YHHGQ-A
Mitiga is your SaaS safety net. Starting with Salesforce. https://loom.ly/YHHGQ-A
December 15, 2025 at 5:05 PM
Attackers are already using misconfigured integrations, over-permissive roles, and stolen tokens to move laterally through your SaaS environment. Most teams don’t see it until the damage is done.
Mitiga is your SaaS safety net. Starting with Salesforce. https://loom.ly/YHHGQ-A
Mitiga is your SaaS safety net. Starting with Salesforce. https://loom.ly/YHHGQ-A
Attackers keep getting in. Noise keeps rising.
And SOC teams are asked to somehow move faster with less clarity.
Brian Contos takes a walk with Patrick “PO” Orzechowski to discuss what is actually happening inside modern SOCs and why AI isn't optional these days. https://loom.ly/SIAoxaU
And SOC teams are asked to somehow move faster with less clarity.
Brian Contos takes a walk with Patrick “PO” Orzechowski to discuss what is actually happening inside modern SOCs and why AI isn't optional these days. https://loom.ly/SIAoxaU
December 11, 2025 at 6:23 PM
Attackers keep getting in. Noise keeps rising.
And SOC teams are asked to somehow move faster with less clarity.
Brian Contos takes a walk with Patrick “PO” Orzechowski to discuss what is actually happening inside modern SOCs and why AI isn't optional these days. https://loom.ly/SIAoxaU
And SOC teams are asked to somehow move faster with less clarity.
Brian Contos takes a walk with Patrick “PO” Orzechowski to discuss what is actually happening inside modern SOCs and why AI isn't optional these days. https://loom.ly/SIAoxaU
Proactive hunting is a must for resilience.
Attackers use AI to move more rapidly and quietly and get closer to your crown jewels. Anyone who has worked a cloud investigation knows how fast that early activity can disappear into normal noise.
More AIDR best practices: https://loom.ly/SkfW9Mc
Attackers use AI to move more rapidly and quietly and get closer to your crown jewels. Anyone who has worked a cloud investigation knows how fast that early activity can disappear into normal noise.
More AIDR best practices: https://loom.ly/SkfW9Mc
December 10, 2025 at 7:33 PM
Proactive hunting is a must for resilience.
Attackers use AI to move more rapidly and quietly and get closer to your crown jewels. Anyone who has worked a cloud investigation knows how fast that early activity can disappear into normal noise.
More AIDR best practices: https://loom.ly/SkfW9Mc
Attackers use AI to move more rapidly and quietly and get closer to your crown jewels. Anyone who has worked a cloud investigation knows how fast that early activity can disappear into normal noise.
More AIDR best practices: https://loom.ly/SkfW9Mc
We looked at 10,000 open-source AI/ML repos.
70% had critical or high-severity vulnerabilities in GitHub Actions workflows.
This research breaks down the most prevalent vulnerabilities, how attackers exploit them, and what to fix before it matters.
🔗 https://loom.ly/4EF7bPs
70% had critical or high-severity vulnerabilities in GitHub Actions workflows.
This research breaks down the most prevalent vulnerabilities, how attackers exploit them, and what to fix before it matters.
🔗 https://loom.ly/4EF7bPs
Inside the AI Supply Chain: Security Lessons from 10,000 Open-Source ML Projects
Analysis of 10,000 open-source AI/ML repositories reveals 70% have critical or high-severity vulnerabilities in GitHub Actions workflows, making them prone to attacks like code injection, credential theft, or repo takeover via malicious PRs.
www.mitiga.io
December 9, 2025 at 3:06 PM
We looked at 10,000 open-source AI/ML repos.
70% had critical or high-severity vulnerabilities in GitHub Actions workflows.
This research breaks down the most prevalent vulnerabilities, how attackers exploit them, and what to fix before it matters.
🔗 https://loom.ly/4EF7bPs
70% had critical or high-severity vulnerabilities in GitHub Actions workflows.
This research breaks down the most prevalent vulnerabilities, how attackers exploit them, and what to fix before it matters.
🔗 https://loom.ly/4EF7bPs
The call is coming from inside the Salesforce ecosystem.
Attackers are entering through connected apps. Once inside, they move fast.
See the offer. Read the breakdowns. Start preventing.
https://loom.ly/YHHGQ-A
Attackers are entering through connected apps. Once inside, they move fast.
See the offer. Read the breakdowns. Start preventing.
https://loom.ly/YHHGQ-A
December 8, 2025 at 9:26 PM
The call is coming from inside the Salesforce ecosystem.
Attackers are entering through connected apps. Once inside, they move fast.
See the offer. Read the breakdowns. Start preventing.
https://loom.ly/YHHGQ-A
Attackers are entering through connected apps. Once inside, they move fast.
See the offer. Read the breakdowns. Start preventing.
https://loom.ly/YHHGQ-A
Mitiga has been named one of CRN’s 10 Hottest Cybersecurity Startups of 2025. It’s a powerful recognition, but not a surprise to the people building with us.
To every employee pushing the limits. To every partner extending our reach. This is your win.
Let them come.
https://loom.ly/X795lbc
To every employee pushing the limits. To every partner extending our reach. This is your win.
Let them come.
https://loom.ly/X795lbc
December 5, 2025 at 3:24 PM
Mitiga has been named one of CRN’s 10 Hottest Cybersecurity Startups of 2025. It’s a powerful recognition, but not a surprise to the people building with us.
To every employee pushing the limits. To every partner extending our reach. This is your win.
Let them come.
https://loom.ly/X795lbc
To every employee pushing the limits. To every partner extending our reach. This is your win.
Let them come.
https://loom.ly/X795lbc