Cloud Chronicles

Introducing SandyClaw - The First Dynamic Sandbox for AI Agent Skills and Prompts

Aditya Vats — Thu, 02 Apr 2026 12:47:41 GMT

TL;DR

AI agent skill marketplaces are the new software supply chain, and attackers are already exploiting them.
The current generation of skill scanners relies on static code checks or LLM-based evaluation. Neither executes the skill, which means neither detects malicious behavior that only reveals itself at runtime.
SandyClaw is the first platform to apply dynamic sandbox detonation to AI agent skills.
It runs the skill in a controlled environment, records every action at the LLM and OS level, and delivers a verdict backed by behavioral evidence rather than inference.
Available now at sandyclaw.permiso.io.

The supply chain nobody is securing

AI agents need skills to do useful work. Skills are downloadable capability packages that teach agents how to interact with tools, APIs, and services. They are distributed through open marketplaces, installed with a single command, and executed with whatever permissions the agent's identity already has.

Permiso Security Wins 2026 SC Award for Best Threat Detection Technology

Aditya Vats — Wed, 25 Mar 2026 13:27:10 GMT

Permiso Security has won the 2026 SC Award for Best Threat Detection Technology, announced on March 24 during
RSAC 2026 in San Francisco.

This marks the second consecutive year Permiso has been recognized at the SC Awards. In 2025, the company won Most Promising Early-Stage Startup. This year, the recognition moved from the company's promise to its product: the identity security platform that detects and responds to threats across human, non-human, and AI identities in cloud, SaaS, CI/CD, and on-premises environments.

CO-PILOT, DISENGAGE AUTOPHISH: The New Phishing Surface Hiding Inside AI Email Summaries

andi.ahmeti@permiso.io (Andi Ahmeti) — Thu, 12 Mar 2026 13:00:33 GMT

AI assistants have genuinely improved day-to-day operations for teams buried in inbox triage, client support, customer success, sales follow-ups, incident response, and everything in between. Microsoft Copilot sits right in the flow: it can summarize emails and meetings, and in some experiences it can also pull context from other Microsoft 365 sources.

Permiso Expands AI Agent Security Coverage with 35+ Exposures Mapped to Both OWASP Top 10 Frameworks

Aditya Vats — Wed, 11 Mar 2026 17:58:35 GMT

The question facing security teams is no longer whether AI agents introduce risk. It is what specifically to look for.

Permiso Security Named 2026 SC Awards Finalist for Best Threat Detection Technology

Aditya Vats — Tue, 03 Mar 2026 15:04:52 GMT

Permiso Security has been named a finalist for Best Threat Detection Technology in the 2026 SC Awards. This is the second consecutive year Permiso has been recognized in this category, and follows the company's win for Most Promising Early-Stage Startup at the 2025 SC Awards. Winners will be announced on March 24 during RSAC 2026 in San Francisco.

Can an AI Agent Run a Purple Team Exercise?

The Permiso Team — Wed, 11 Feb 2026 18:54:31 GMT

Two weeks ago, we deployed an AI agent to hunt malicious skills in the OpenClaw ecosystem. The agent, Rufio, found credential stealers, documented threat actors, and built detection rules. It accomplished its mission.

Inside the OpenClaw Ecosystem: What Happens When AI Agents Get Credentials to Everything

Ian Ahl — Mon, 02 Feb 2026 17:55:22 GMT

We spun up an AI agent, gave it a mission to hunt threats, and watched it discover a credential stealer disguised as a weather app within minutes. That was just the beginning.

Permiso Research Finds Up to 75% of Security Incidents Are Identity-Related, Highlighting New AI-Driven Risk

The Permiso Team — Wed, 21 Jan 2026 12:12:10 GMT

Survey of 500+ Security & Identity Professionals Shows Dramatic 47-Point Drop in Visibility Confidence as 91% Expect Explosive Growth in AI-Generated Identities in 2026

Permiso State of Identity Security Report 2026: From False Confidence to True Visibility

Aditya Vats — Wed, 21 Jan 2026 12:11:10 GMT

Permiso Security today released its 2026 State of Identity Security Report, the third annual benchmark examining how organizations manage, secure, and gain visibility into identities across cloud environments. Based on responses from over 500 security and identity professionals worldwide, this year's findings reveal a sobering reality: the gap between what organizations believe they can see and what they actually control has never been wider.

How to Choose the Best ITDR Solution for Your Organization

Aditya Vats — Tue, 06 Jan 2026 21:20:43 GMT

The best ITDR solution for your organization depends on measurable criteria rather than vendor claims: Can it track identities across authentication boundaries from your IdP through cloud infrastructure to SaaS applications? Does it generate high-fidelity alerts that your team actually investigates, or does it add to alert fatigue? Can it attribute activity when multiple users share service accounts? Does it draw on real-world threat intelligence or theoretical attack models? The vendor landscape ranges from established IAM providers adding detection capabilities to purpose-built platforms designed specifically for identity threat response, and choosing wrong means continuing to miss the attack technique behind the majority of successful breaches.