Dark mode: ON

Infosec Decoded Season 5 #42: US Halts Student Visas

With sambowne@infosec.exchange

Recorded Fri, May 30, 2025

Politics

The MAHA Report Cites Studies That Don’t Exist

The Trump administration’s “Make America Healthy Again” report misinterprets some studies and cites others that don’t exist, according to the listed authors.

The Trump Presidency’s World-Historical Heist

The brazenness of the self-enrichment resembles nothing seen in any earlier White House. This is American corruption on the scale of a post-Soviet republic or a postcolonial African dictatorship.

The plan for nationwide fiber internet might be upended for Starlink / What’s really happening with BEAD.

The US Broadband Equity Access and Deployment (BEAD) program, aimed to connect everyone in the US to high-quality, mostly fiber-based internet. This is important for 15% of households, especially in rural areas. But US Commerce Secretary Howard Lutnick says it's too "woke" and may switch it to Starlink, which will be slower, less reliable, and more expensive.

Elon Musk Tried to Block Sam Altman’s Big AI Deal in the Middle East

Musk warned that Trump wouldn’t bless OpenAI data-center project unless his xAI company was added

US halts student visa appointments and plans expanded social media vetting

US President Donald Trump's administration has ordered US embassies around the world to stop scheduling appointments for student visas as it prepares to expand social media vetting of such applicants.

Inside the Discord Community Developing Its Own Hair Loss Drugs

HairDAO is a “decentralized autonomous organization” trying to cure hair loss.

Infosec

CISA loses nearly all top officials as purge continues

Virtually all of the top officials at the Cybersecurity and Infrastructure Security Agency (CISA) have departed the agency or will do so this month. "There’s a lot of anxiety around when the cuts and departures will finally stop and we can move forward as an agency."

Study looking at AI chatbots in 7,000 workplaces finds ‘no significant impact on earnings or recorded hours in any occupation’

Nobel laureate Daron Acemoglu estimates AI’s productivity boost at approximately 1.1% to 1.6% of GDP in the next decade.

A Texas Cop Searched License Plate Cameras Nationwide for a Woman Who Got an Abortion

The sheriff said the woman self-administered the abortion and her family were concerned for her safety, so authorities searched through Flock cameras. Experts are still concerned that a cop in a state where abortion is illegal can search cameras in others where it's a human right.

Thousands of Asus routers are being hit with stealthy, persistent backdoors

The backdoor can survive reboots and firmware updates in an attack by a nation-state or another well-resourced threat actor. The attacker maintains long-term access without dropping malware or leaving obvious traces by chaining authentication bypasses, exploiting a known vulnerability, and abusing legitimate configuration features. It adds a trusted SSH key to the router's configuration.

BPFDoor’s Hidden Controller Used Against Asia, Middle East Targets

BPFDoor is a state-sponsored backdoor designed for cyberespionage activities, and uses stealthy defense evasion techniques. It uses Berkeley Packet Filtering (BPF) to inspect network packets in the upper layers of the operating system stack for packets containing "magic sequences." The magic packet triggers the backdoor despite being blocked by a firewall.

H 20: NotebookLM

NotebookLM is a useful study assistant using AI to process reference materials, search them, and explain them.

US will ban foreign officials to punish countries for social media rules

The State Department will restrict visas for foreign officials that support content moderation ‘censorship,’ an apparent response to the DSA and other laws.

CVE-2025-47241: 'allowed_domains' can be bypassed by putting a decoy domain in http auth username portion of a URL

It's a parsing issue; adding a whitelisted domain as the username followed by a colon gets through.

More than 1,500 AI projects are now vulnerable to a silent exploit: CVE-2025-47241

The projects include AI agents.

Gamma is your AI design partner for effortless presentations, websites, social media posts, and more

RANSOMWARE.LIVE

Contains actual negotiation chats and their results for known ransomware groups

Hacking My Car, and probably yours— Security Flaws in Volkswagen’s App

He was able to brute-force the 4-digit PIN, and found unprotected API endpoints exposing passwords and other confidential data.

Serious Discussion Some guy asks if Windows Defender/Microsoft Defender is enough and this is the amazing answer he got back

He says antivirus companies gather and sell your private data, and people should just trust Defender.

Developer Builds Tool That Scrapes YouTube Comments, Uses AI to Predict Where Users Live

It finds every comment you’ve ever left on any video, builds a profile of you and guesses where you live, what languages you speak, and what your politics might be.

If you use OneDrive to upload files to ChatGPT or Zoom, don’t

The core issue here is with Microsoft’s OneDrive File Picker, which requests broad access to a user’s entire OneDrive--even when the user is just trying to upload a single file. The user experience makes it seem like only the selected file is being shared, but in reality, the app often gets full read (and sometimes write) access to everything.

Major cybersecurity conference in San Antonio shelved due to ‘challenging’ U.S. policy climate

T​he InCyber Forum has made the difficult decision to postpone the San Antonio conference that had been scheduled for June 17-18. The decision to pause the San Antonio conference is consistent with similar decisions made by several other U.S. conferences whose success is impacted by the broader geopolitical and policy landscape.