Asad Saffoury

Cloud Security Researcher

Asad Saffoury is a Cloud Security Researcher at Mitiga focused on cloud security and AI agent ecosystems, exploring emerging attack vectors across modern cloud and SaaS platforms. With a research-driven mindset, Asad specializes in authentication flows, identity abuse patterns, and detection engineering. He spends his days analyzing edge cases others overlook… and his nights thinking about how the next cloud primitive might become tomorrow’s attack surface.

Inside AWS Login: Exploring a New Phishing Method

In November 2025, AWS introduced AWS Login. Within weeks, we built a fully AWS-hosted phishing kit that abuses it.In this blog, we'll walk through how the feature works under the hood, how we turned it into a reliable phishing primitive, and what you can do to detect and mitigate similar abuse in your own environment.

March 16, 2026

AI Agent Supply Chain Risk: Silent Codebase Exfiltration via Skills

Mitiga Labs shows how a malicious AI agent skill can silently exfiltrate an entire codebase, exposing a new supply chain risk in agentic AI environments.

February 17, 2026

Get a Demo

Copyright © Mitiga Security Inc. All rights reserved | Terms of Use | Privacy Policy