The Everything Feed - All Packet Pushers Pods PP066: News Roundup – NIST’s New Exploit Metric, Windows RDP Issues, Compromised Routers, and More
Jun 10, 2025
This discussion highlights the alarming compromise of thousands of ASUS routers, necessitating a full factory reset to erase malware. It also reveals vulnerabilities in Microsoft RDP that allow logins with revoked passwords. The serious implications of a massive data breach affecting 70 million educational records are examined, alongside emerging risks from rogue components in U.S. infrastructure. Additionally, NIST introduces a new exploit metric to enhance cybersecurity predictions, urging a data-driven approach to address real threats.
AI Snips
Chapters
Transcript
Episode notes
ASUS Router Backdoor Persistence
- Thousands of ASUS routers remain backdoored due to a persistent command injection exploit since March 2023.
- Removing the malware requires a full factory reset and patch, as it survives firmware and rebooting attempts.
Microsoft RDP Uses Cached Passwords
- Microsoft allows RDP login with revoked or old passwords using cached credentials.
- This is a deliberate design to prevent lockouts, but it creates a silent backdoor without alerts.
Unexplained Chinese Hardware Risks
- Chinese-made power inverters connected to U.S. grids contain undocumented communication equipment.
- This raises fears they could bypass controls and disrupt electric grids, echoing previous risks with Chinese port cranes.