Hacked and Unfiltered

Omar Rao | Cybersecurity Expert

Omar Rao tears down cybersecurity myths, revealing hilarious and hair-raising real-world hacking stories. Get the secrets behind everyday digital slipups and simple ways to avoid becoming the next data breach headline. omarrao.substack.com

  1. Episode 12 - Browser Warfare

    7 MAY

    Episode 12 - Browser Warfare

    In Episode 12, Omar Rao breaks down why the browser has become one of the most important and least understood attack surfaces in modern enterprise security. From session hijacking and token theft to browser extensions, OAuth abuse, SaaS trust, AI workflows, and QR-based browser bypasses, this episode explains how attackers use the browser to move quietly through enterprises and what teams should do right now to close the gap. A lot of enterprises still treat the browser like it is just a window to the internet. That is outdated. Today, the browser is where identity lives, sessions persist, SaaS trust accumulates, extensions operate, and real business gets done. Which also means it is where quiet compromise can move without always looking like the malware teams were trained to catch. In this episode, I break down:• Why the browser has become a major enterprise attack surface• How session hijacking, token theft, and OAuth abuse really work• Why browser extensions and SaaS trust create hidden risk• What security teams should do now to reduce browser-based exposure If you work in security, IAM, endpoint, SaaS, cloud, or enterprise operations, this one is worth your time. Listen, share with like-minded people, and let me know your thoughts. This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit omarrao.substack.com

    36 min
  2. Episode 11 - The New Ransomware Playbook

    27 APR

    Episode 11 - The New Ransomware Playbook

    In Episode 11, Omar Rao breaks down why ransomware in 2026 is no longer just about encryption. It is about leverage. From active groups like Qilin, Akira, Play, Cl0p, Medusa, DragonForce, and LockBit 5.0 to the newer tactics built around identity abuse, SaaS pressure, backup targeting, and AI-assisted tradecraft, this episode explains how modern ransomware crews really operate and what enterprises need to understand before access turns into business disruption. A lot of people still think ransomware starts when the ransom note appears. That is already too late. In this episode, I break down how ransomware in 2026 really works. It is no longer just about encrypting files. It is about leverage, identity abuse, stolen access, SaaS pressure, backup targeting, and recovery denial. I also cover the groups making the most noise right now, including Qilin, Akira, Play, Cl0p, Medusa, DragonForce, and LockBit 5.0, along with the newer tactics shaping modern ransomware operations. We cover:• How ransomware groups are getting in now• Why identity and SaaS matter more than ever• How AI is speeding up attacker tradecraft• What enterprises should do before access turns into pressure If you work in security, incident response, IAM, cloud, backup, or executive leadership, this one is worth your time. Listen, share with like-minded people, and let me know your thoughts. This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit omarrao.substack.com

    28 min
  3. Episode 10 - SaaS Sprawl, Shadow IT, and the Trust You Already Gave Away

    23 APR

    Episode 10 - SaaS Sprawl, Shadow IT, and the Trust You Already Gave Away

    In Episode 10, Omar Rao breaks down why SaaS sprawl is one of the biggest hidden risks in modern enterprise security. With direct ethical hacker advice, technical references, real SaaS examples, and practical controls like CASB, SSPM, OAuth governance, shadow IT discovery, and identity hygiene, this episode explains how convenience-driven app growth quietly turns into serious attack surface. A lot of enterprises think their environment is only what IT approved. That is not reality. The real environment also includes the apps marketing connected, the tools sales adopted, the integrations product enabled, the SaaS platforms HR uses, and the third-party apps nobody reviewed closely enough. In this episode, I break down why SaaS sprawl has become one of the biggest hidden risks in modern cybersecurity and how attackers use app-to-app trust, OAuth grants, service accounts, and shadow IT to move quietly through enterprises. We cover:• Why SaaS sprawl is more than an IT hygiene problem• How shadow IT expands the attack surface• Where OAuth, service accounts, and delegated permissions become dangerous• What teams can do right now with tools like CASB, SSPM, app governance, and stronger identity control If you work in security, IAM, cloud, SaaS, or enterprise operations, this episode is worth your time. This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit omarrao.substack.com

    35 min

  4. 21 APR

    Episode 9: Identity, the Modern Battlefield of Cybersecurity

    In Episode 9, Omar Rao breaks down why identity is no longer just a login issue. It has become one of the biggest battlefields in modern cybersecurity. From compromised accounts and mailbox abuse to OAuth risk, service accounts, and lateral movement, this episode explains how attackers use trusted identities to move quietly through enterprises and why organizations need to rethink identity as a full compromise path, not just an access control feature. A lot of organizations still treat identity like a login problem. That is old thinking. In this episode, I break down why identity is now one of the biggest battlefields in cybersecurity and how one compromised account can quietly turn into privilege abuse, SaaS exposure, lateral movement, and enterprise-wide risk. We cover:• Why identity is more than authentication• How attackers use trust to move through enterprises• Where OAuth, service accounts, and mailbox access become dangerous• What enterprises should focus on right now to reduce identity risk If you work in security, IAM, cloud, SaaS, help desk, or leadership, this episode is worth your time. This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit omarrao.substack.com

    30 min
  5. Episode 8 - Cyber Fatigue, Alert Overload

    20 APR

    Episode 8 - Cyber Fatigue, Alert Overload

    In this episode, Omar Rao breaks down one of the least discussed but most damaging issues in cybersecurity today: overload. Security teams are flooded with alerts, dashboards, tools, tickets, pressure, and constant urgency. Even good teams can start making bad decisions when the volume gets too high and the workflow gets too messy. This episode explains why cyber fatigue is becoming a real security risk, how alert overload breaks defenders down, and what leaders need to do if they want stronger security operations instead of just noisier ones. We break down how alert overload, constant urgency, weak workflows, and analyst fatigue create real security risk. Even strong teams can start missing things when the environment becomes too noisy and too fragmented. We cover:• Why alert overload is dangerous, not just annoying• How fatigue changes security outcomes• What attackers understand about defender overload• What leaders should do to build stronger security operations A strong listen for security leaders, SOC teams, founders, CISOs, operators, and anyone responsible for building resilient cyber defense. This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit omarrao.substack.com

    29 min
  6. Episode 7 - Cyber Resilience in the Boardroom

    17 APR

    Episode 7 - Cyber Resilience in the Boardroom

    In this episode, Omar Rao breaks down why cyber resilience is no longer only a security team issue. It is a leadership issue. When a serious cyber incident happens, the quality of executive thinking, communication, and decision-making can shape the outcome as much as the tools on the screen. This episode explains what leaders often get wrong during cyber crises, how strong organizations respond under pressure, and what real cyber resilience looks like when the goal is not only to detect the threat, but to keep the business moving. We break down how executives, boards, and business leaders should think during a live cyber event, where decision-making often goes wrong, and what real cyber resilience looks like when the goal is not just to detect the threat, but to keep the business moving. We cover:• Why cyber incidents are leadership events, not just technical events• What executives still get wrong under pressure• What strong decision-making looks like during crisis• How boards should think about cyber resilience in a more useful way A strong listen for founders, executives, CISOs, operators, board members, and teams focused on resilience and real-world security leadership. This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit omarrao.substack.com

    34 min
  7. Episode 6 - Deepfakes and Deceptions

    16 APR

    Episode 6 - Deepfakes and Deceptions

    In this episode, Omar Rao breaks down one of the fastest-growing problems in cybersecurity today: attackers are no longer just targeting systems, they are targeting trust. From cloned voices and fake executive messages to AI-enhanced impersonation and pressure-based fraud, this episode explains how deepfakes and social engineering are evolving, why businesses are more exposed than they realize, and what security teams and leaders need to do before the next attack sounds exactly like someone they trust. We break down how deepfakes, cloned voices, executive impersonation, and AI-enhanced deception are changing the way attackers target businesses. The real risk is no longer just technical compromise. It is pressure, urgency, authority, and human decision-making under stress. We cover:• Why the human attack surface is growing fast• How executive impersonation and deepfake-style attacks work• Where businesses are most exposed• What leaders, finance teams, help desks, and security teams should do now If your organization still thinks social engineering starts and ends with phishing emails, this episode will change the way you look at cyber risk. Listen, share with like-minded people, and let me know your thoughts. This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit omarrao.substack.com

    35 min
  8. Episode 5 - AI and the Acceleration of Adversaries

    15 APR

    Episode 5 - AI and the Acceleration of Adversaries

    In this episode, Omar Rao breaks down how AI is changing cybersecurity on both sides of the fight. Attackers are using it to move faster, scale phishing, improve reconnaissance, and create more convincing deception. Defenders can use it too, but only if they stop treating AI like a buzzword and start using it as an operational advantage. This episode covers how AI is accelerating threats, where DSPM fits into modern defense, and what real security teams should do now to reduce exposure before speed becomes the attacker’s biggest advantage. Attackers are using it to scale phishing, improve reconnaissance, and move faster through noisy environments. Defenders can use it too, but only if AI is tied to real operational value. We cover:• How AI helps attackers move faster• Good AI use cases for defenders• Why DSPM matters in the AI era• What leaders and security teams should do now A strong listen for security leaders, engineers, founders, analysts, and teams focused on cyber resilience. This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit omarrao.substack.com

    41 min
See All (13)

About

Omar Rao tears down cybersecurity myths, revealing hilarious and hair-raising real-world hacking stories. Get the secrets behind everyday digital slipups and simple ways to avoid becoming the next data breach headline. omarrao.substack.com

Information

  • Creator
    Omar Rao | Cybersecurity Expert
  • Years Active
    2k
  • Episodes
    13
  • Rating
    Clean
  • Copyright
    © Omar Rao | Cybersecurity
  • Show Website
    Hacked and Unfiltered