MITIGA LABS

Cutting-Edge Cloud Research.
Real-World Cloud Defense.

Welcome to Mitiga Labs, our research and innovation arm built to expose how modern attackers operate in Cloud and SaaS. We break down real campaigns and publish practical guidance tohelp security teams stop cloud attacks from having impact. Our research powers the Zero-Impact Breach Prevention approach at the core of the Mitiga platform.

Explore Our Research

What We Saw in 2025. What Comes Next.

The Cloud Attack Campaigns and Research that Defined a Year.

2025 was the year the threat got smarter. Attackers skipped zero-days and walked in through trusted identities, OAuth links, API chains, and lateral SaaS paths.

Read Full Report

LET THEM COME

What We Saw
in 2025. The Year the Threat Got Smarter

A Threat Intelligence Report from Mitiga Labs

Purposeful Insights on the Cloud Security Frontier

Mitiga Labs is where we tear into the latest Cloud, SaaS, AI, and Identity attacks. Our researchers decode how adversaries operate and turn that knowledge into defense strategies that stop cloud attacks from having impact. Every discovery fuels Mitiga’s Zero-Impact Breach Prevention.

Meet the Team

Latest from the Labs

Explore the latest discoveries, deep dives, and technical how-tos from the Mitiga Labs team. Our research is dedicated to informing defenders and disrupting attackers.

What Supply Chain Attacks Teach Incident Responders

Supply chain attacks hide behind trusted vendors. Learn how incident responders detect, scope, and contain vendor compromise in cloud and SaaS environments.

Read More

RESEARCHERS

Jed Morley

AI Agent Supply Chain Risk: Silent Codebase Exfiltration via Skills

Mitiga Labs shows how a malicious AI agent skill can silently exfiltrate an entire codebase, exposing a new supply chain risk in agentic AI environments.

Read More

RESEARCHERS

Idan Cohen

Brainjacked: Planting a False Reality in the AI Training Pipeline

A real-world AI supply chain attack shows how path traversal enabled training data poisoning, embedding a persistent backdoor in a production ML model.

Read More

RESEARCHERS

Ucha Gobejishvili

ConsentFix OAuth Phishing Explained: How Token-Based Attacks Bypass MFA in Microsoft Entra ID

ConsentFix is a new OAuth phishing technique abusing Microsoft Entra ID to steal tokens without MFA. Learn how it works and how to protect against it.

Read More

RESEARCHERS

Ucha Gobejishvili

Inside the AI Supply Chain: Security Lessons from 10,000 Open-Source ML Projects

Analysis of 10,000 open-source AI/ML repositories reveals 70% have critical or high-severity vulnerabilities in GitHub Actions workflows, making them prone to attacks like code injection, credential theft, or repo takeover via malicious PRs.

Read More

RESEARCHERS

Ucha Gobejishvili
View More

Research Team

Austin Bollinger

Principal Incident Responder

Ariel Ainhoren

Head of Cloud Security Research

Ucha Gobejishvili

Senior Incident Responder

Roei Sherman

Senior Director | Mitiga Research

Idan Cohen

Cloud Researcher

Jed Morley

Senior Incident Responder

Yael Ben Yair

Cloud Security Researcher

Asad Saffoury

Cloud Security Researcher

Nir Varon

Security analyst

Mitiga Helios AIDR

The next critical capability for Mitiga's Al-native CDR platform is here.
Explore our solution that empowers and automates SecOps, protects AI infrastructure, and defends against AI-sclaed attacks.

Learn More

Featured Videos

Cloud, Identity & SaaS Forensic, Investigation-Not What You Think!

RSA CONFERENCE
Learn More
From Snowflake to Snowstorm: Navigating Breaches and Detections

RSA CONFERENCE
Learn More
Getting Real & Hitting the Fan 2025: Think You See Me? No You Don't!

RSA CONFERENCE
Learn More

Get resilient

Get a demo

Get a Demo

Copyright © Mitiga Security Inc. All rights reserved | Terms of Use | Privacy Policy