In this episode, Omar Rao breaks down how attackers are no longer limited to targeting companies directly. Instead, they are compromising the software, tools, vendors, and automation workflows organizations already trust. Using real-world style examples, this episode explains how supply chain attacks happen, why they are difficult to detect, and what security teams, leaders, and developers need to do before trusted software becomes the path to a serious breach.

This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit omarrao.substack.com