AI security can feel chaotic, but it makes more sense when you look at it through identity. In this episode, Ian Ahl explains why most "AI incidents" today come down to stolen credentials, abused OAuth tokens, and over-privileged accounts. He compares what's useful right now from NIST's AI RMF, Google's Secure AI Framework, and MITRE ATLAS, and points out what's still mostly theory.

Ian also shares a practical way to get started: Discover, Protect, Defend. We spend most of the time on discovery, on how to see real AI use across users, builders, and agents by watching runtime activity instead of just scanning configs. Think Slack or Teams events, Okta or Entra logs, and MCP user agents.

You'll hear real cases, including the Salesloft/Drift token theft and LM-jacking on AWS Bedrock. If your "AI security" sounds like old CSPM with a new label, this episode will help you reframe the problem and focus on what actually breaks.

Over just a few weeks, the NPM ecosystem was hit by three major security incidents: the Singularity campaign exploiting GitHub Actions for token theft, a phishing attack on a package maintainer, and Shai-Hulud, the first worm-like malware propagation in NPM. In this episode of The Permiso Podcast, our CTO Ian Ahl, breaks down how each event unfolded, the role of stolen credentials, and what these attacks mean for developers and security teams navigating modern supply chain risks.

In our first episode of the Permiso Podcast, Our CTO Ian Ahl unpacks the Salesloft breach. This supply chain attack leveraged OAuth tokens to access Salesforce, Google Workspace, and other integrations.

We cover:

• How attackers moved from GitHub into AWS and SaaS platforms
• Why Salesforce data became a key enabler for deeper compromises
• The challenges defenders face with SaaS logging and visibility
• Practical detection strategies to identify and stop attacks like this

This episode goes beyond a simple recap. It’s a playbook for understanding how modern SaaS compromises unfold and what you can do about it.