Dark mode: ON

Infosec Decoded Season 5 #94: AI Wearables

With sambowne@infosec.exchange and Doug Spindler

Recorded Fri, Nov 28, 2025

AI

The hottest AI wearables and gadgets you can buy right now
Malicious LLMs empower inexperienced hackers with advanced tools
Unrestricted large language models (LLMs) like WormGPT 4 and KawaiiGPT are improving their capabilities to generate malicious code, delivering functional scripts for ransomware encryptors and lateral movement.

Politics

Solar’s growth in US almost enough to offset rising energy use
The Destruction of a Notorious Myanmar Scam Compound Appears to Have Been ‘Performative’
The VPN panic is only getting started
The UK government is facing calls to restrict children’s access to VPNs
“We’re Broken”: As Federal Prisons Run Low on Food and Toilet Paper, Corrections Officers Are Leaving in Droves for ICE
Trump tried to interfere in 2020 — and he just got away with it
Trump demanded "11,000 votes" to change Georgia's election results. To pretend otherwise whitewashes history.

Peter Skandalakis’ decision not only lets the president get away with his outrageous effort at election interference in a critical swing state, but his rendition of what Trump did and why he did it muddies the historical record.

When Is It Time to Flee?
Trans people and their families are facing hard questions and choices as threats to their safety and rights proliferate.
Trump pauses immigration from ‘Third World’ countries: What that means
The US president’s announcement comes after two National Guard members were shot in Washington, DC, and an Afghan national was named a suspect.

“I will permanently pause migration from all Third World Countries to allow the US system to fully recover, terminate all of the millions of Biden illegal admissions,” Trump wrote in a post on his Truth Social platform.

Infosec

GreyNoise launches free scanner to check if you're part of a botnet
Critical Vulnerability in Azure Bastion Let Attackers Bypass Authentication and Escalate privileges
The vulnerability stems from improper handling of authentication tokens within the Bastion service.

Attackers can intercept and replay valid authentication credentials to bypass security controls and assume administrative privileges.

With a CVSS score of 10.0, this vulnerability represents the highest severity classification, indicating it is remotely exploitable, requires no user interaction, and demands no prior authentication.

An attacker anywhere on the network can compromise the entire Bastion infrastructure and the virtual machines connected to it.