Ahl About Identity
by Permiso Security
Ahl About Identity isn’t your typical cybersecurity podcast. Each episode unpacks how attackers move through cloud and SaaS environments, exposing the overlooked gaps that make identity the new perimeter.
Through real breach stories and insightful discussions, we examine attacker behavior, identity misuse, and the subtle signals defenders often miss. We put identity at the center of every conversation, connecting attacker tradecraft to practical defense strategies.
If you care about what’s really happening behind the buzzwords, this is where the identity conversation gets real.
Permiso 2025
Apr 17, 2026Episodes (9)
Episode 09 | Mythos, GPT-5.4 Cyber, and Opus 4.7
Apr 17, 202627m#9
In this episode of All About Identity , Ian Ahl breaks down the latest wave of AI-for-cyber news, from the hype and skepticism around Anthropic’s Mythos to OpenAI’s GPT-5.4 Cyber access program and the reality of what us
Episode 08 | Introducing SandyClaw: Dynamic Analysis for Malicious Skills and Prompts
Apr 2, 202621m#8
AI agent skill marketplaces are the new software supply chain, and attackers are already exploiting them. In this episode of All About Identity, Ian Ahl walks through real examples of credential-stealing and deceptive sk
Episode 07 | Hidden Prompts, Trusted Output: Inside Copilot Summary Abuse
Mar 30, 202615m#7
In this episode, Ian Ahl (Permiso CTO) and Andi Ahmeti (Permiso Threat Researcher) walk through new research on how Microsoft Copilot email summaries can be manipulated by attacker-controlled content inside a message. Th
Episode 6 | Can an AI Agent Run a Purple Team Exercise in AWS?
Feb 11, 202627m#6
In the latest episode of Ahl About Identity , Ian Ahl revisits OpenClaw and shows how his agent, Rufio, has evolved beyond hunting malicious skills into broader security workflows. He breaks down the Rufio Evolution Repo
Episode 05 | OpenClaw, MoltBook, and the Rise of Agent Identity Abuse
Feb 3, 202622m
Our CTO, Ian Ahl, deployed an AI agent to investigate the OpenClaw ecosystem and it immediately uncovered malicious skills stealing credentials in the wild. We break down how these campaigns work, why skills marketplaces
Episode 04 | Gainsight -> Salesforce: Another OAuth Supply-Chain Scare?
Nov 20, 202514m
Salesforce says it saw unusual activity from a Gainsight app and revoked access. We don’t have technical details yet. In this episode Ian covers what’s confirmed, what’s speculation, how this differs from SalesLoft, and
Episode 03 | AI Security Is Identity Security: What to Fix First
Oct 14, 202532m#3
AI security can feel chaotic, but it makes more sense when you look at it through identity. In this episode, Ian Ahl explains why most "AI incidents" today come down to stolen credentials, abused OAuth tokens, and over-p
Episode 02 | Worms in the NPM Supply Chain: Singularity, Phished Maintainers, and Shai-Hulud
Sep 18, 202524m#2
Over just a few weeks, the NPM ecosystem was hit by three major security incidents: the Singularity campaign exploiting GitHub Actions for token theft, a phishing attack on a package maintainer, and Shai-Hulud, the first
Episode 01: Tokens, Trust, and Takeovers: Inside the Salesloft Breach
Sep 10, 202529m#1
In our first episode of the Permiso Podcast, Our CTO Ian Ahl unpacks the Salesloft breach. This supply chain attack leveraged OAuth tokens to access Salesforce, Google Workspace, and other integrations. We cover: How att