Dark mode: ON

Infosec Decoded Season 5 #48: Rogue Nation

With Doug Spindler and sambowne@infosec.exchange

Recorded Fri, June 20, 2025

Politics

MAHA

After RFK Jr. overhauls CDC panel, measles and flu vaccines are up for debate
Use of a long-approved vaccine against measles, mumps, rubella, and varicella/chickenpox (MMRV) as well as flu shots that include the preservative thimerosal will now be reevaluated, putting their future availability and use in question. The development seemingly continues to vindicate health experts' worst fears that, as health secretary, Kennedy would attack and dismantle the federal government's scientifically rigorous, evidence-based vaccine recommendations.
Twice-a-year shot to prevent HIV approved in U.S.
Trump quietly shutters the only federal agency that investigates industrial chemical explosions
Hazardous chemical accidents happen in the U.S. about every other day. Who will investigate them now?
The Trump Environmental Protection Agency is telling staff to stop policing the oil and gas industry
White House proposes axing 988 suicide hotline services for LGBTQ youth
The specialized suicide-prevention counseling service for LGBTQ youth and young adults received more than 1.3 million contacts since it started in 2022.
Trump’s EPA to “reconsider” ban on cancer-causing asbestos
Trump has supported use of asbestos and blamed the mob for its bad reputation.

MAGA

Via the False Claims Act, NIH puts universities on edge
Universities have put grant funding on hold, because there are new terms in the Notice of Award: universities will be subject to liability under a Civil War-era statute called the False Claims Act if they fail to abide by civil rights laws and a January 20 executive order related to gender.
UAE Recruiting US Personnel Displaced by DOGE to Work on AI for its Military
A UAE brigadier general received permission from the Pentagon to recruit former members of the Defense Digital Service to work on artificial intelligence for the UAE military — despite past warnings from US spy agencies and federal lawmakers that UAE could share AI technologies with China
The immigrants caring for the nation's elderly are losing their jobs
Foreign-born workers make up 30% of the nursing home housekeeping and maintenance workforce. That's compared to 19% of the overall workforce.
U.S. Image Declines in Many Nations Amid Low Confidence in Trump
Amazing charts, showing that the USA is under water in every nation except India, Hungary, Israel, Nigeria, and Kenya. In the last year, favorability has declined in almost every nation, by double digits.

Resistance

Good Trouble Lives On: July 17 Rallies

Infosec

Windows 11 user has 30 years of 'irreplaceable photos and work' locked away in OneDrive - and Microsoft's silence is deafening
The Redditor was suddenly locked out of their Microsoft account (and therefore OneDrive, and all Microsoft services). They can't reach Microsoft's support staff about how to resolve this.
Microsoft testing PC-to-Cloud-PC failover for those times your machine dies or disappears
‘Windows 365 Reserve’ will be usable ten days a year for undisclosed fee. The service seems to involve frequent data syncing.
Sneaky Serpentine#Cloud slithers through Cloudflare tunnels to inject orgs with Python-based malware
A sneaky malware campaign slithers through Cloudflare tunnel subdomains to execute in-memory malicious code and give unknown attackers long-term access to pwned machines.
TryCloudflare: your project online. For free.
Any user, even those without a Cloudflare account, can connect their server to the Internet with Argo Tunnel for free.
Donut packer: enables in-memory execution of VBScript, JScript, EXE, DLL files and dotNET assemblies.
Everything you need to know about NIST’s new guidance in “SP 1800-35: Implementing a Zero Trust Architecture”
The reference architecture is complex, with many components. I guess we all need to learn about it.
runZero: See & secure your total attack surface.
A new product from H D Moore, who will be on Paul's Security Weekly next week.
BMW ConnectedDrive lets me control my returned rental car (Sixt)
I rented a BMW. I created my own BMW ID and] paired it with the car. When returning the car, I told the Sixt representative that I had linked my BMW ID — they assured me that the vehicle would be reset. But later I still had full remote access:
  • live location tracking
  • remote lock/unlock
  • honking (hehe)
  • turn lights on/off
Giving an LLM command line access to Nmap
You can use commands like "what services are running on 192.168.8.3. gather as much information as you can and identify any security issues or items of interest to a security analyst"
Exploiting the Tesla Wall connector from its charge port connector
We used the charging connector as the entry point. We exploited a logic flaw to install vulnerable firmware on the device, gaining access to connected network.
AWS locks down cloud security, hits 100% MFA enforcement for root users
Amazon Web Services hit a major multi-factor authentication milestone, achieving 100 percent MFA enforcement for root users across all types of AWS accounts.
MiniMax M1 model claims Chinese LLM crown from DeepSeek – plus it's true open source
It's an open source reasoning model that challenges Chinese rival DeepSeek and US-based Anthropic, OpenAI, and Google in terms of performance and cost.