On this week’s show Patrick Gray talks to former NSA Cybersecurity Director Rob Joyce about Donald Trump’s unprecedented, unwarranted and completely bonkers political persecution of Chris Krebs and his employer SentineOne.

They also talk through the week’s cybersecurity news, covering:

• Mitre’s stewardship of the CVE database gets its funding DOGE’d
• The US signs on to the Pall Mall anti-spyware agreement
• China tries to play the nationstate cyber-attribution game, but comedically badly
• Hackers run their malware inside the Windows sandbox, for security against EDR

This week’s episode is sponsored by open source identity provider Authentik. CEO Fletcher Heisler joins to talk through the increasing sprawl of the identity ecosystem.

Show notes:

Cybersecurity industry falls silent as Trump turns ire on SentinelOne | Reuters https://www.reuters.com/world/us/cybersecurity-industry-falls-silent-trump-turns-ire-sentinelone-2025-04-10/

U.S. cyber defenders shaken by Trump’s attack on their former boss https://www.nbcnews.com/tech/security/us-cyber-defenders-shaken-trumps-attack-former-boss-rcna200597

Trump Revenge Tour Targets Cyber Leaders, Elections – Krebs on Security https://krebsonsecurity.com/2025/04/trump-revenge-tour-targets-cyber-leaders-elections/

Wyden to block Trump’s CISA nominee until agency releases report on telecoms’ ‘negligent cybersecurity’ | The Record from Recorded Future News https://therecord.media/wyden-blocks-plankey-nomination-cisa

Gabbard sets up DOGE-style team to cut costs, uncover intel ‘weaponization’ https://www.dni.gov/index.php/newsroom/press-releases/press-releases-2025/4063-pr-05-25

MITRE Warns CVE Program Faces Disruption Amid US Funding Uncertainty https://www.securityweek.com/mitre-signals-potential-cve-program-deterioration-as-us-gov-funding-expires/

US to sign Pall Mall pact aimed at countering spyware abuses | The Record from Recorded Future News https://therecord.media/us-to-sign-pall-mall-process-code-of-practice-spyware

Court document reveals locations of WhatsApp victims targeted by NSO spyware | TechCrunch https://techcrunch.com/2025/04/09/court-document-reveals-locations-of-whatsapp-victims-targeted-by-nso-spyware/

Spyware Maker NSO Group Is Paving a Path Back Into Trump’s America | WIRED https://www.wired.com/story/nso-group-the-vogel-group-lobbying-trump-administration/

NCSC shares technical details of spyware targeting Uyghur, Tibetan and Taiwanese groups | The Record from Recorded Future News https://therecord.media/ncsc-shares-details-on-spyware-targeting-uyghur-tiben-taiwanese-groups

Risky Bulletin: Chinese APT abuses Windows Sandbox to go invisible on infected hosts https://risky.biz/risky-bulletin-chinese-apt-abuses-windows-sandbox-to-go-invisible-on-infected-hosts/

China escalates cyber fight with U.S., names alleged NSA hackers https://www.nbcnews.com/tech/security/china-escalates-cyber-fight-us-names-alleged-nsa-hackers-rcna201286

Researcher uncovers dozens of sketchy Chrome extensions with 4 million installs - Ars Technica https://arstechnica.com/security/2025/04/researcher-uncovers-dozens-of-sketchy-chrome-extensions-with-4-million-installs/

China-based SMS Phishing Triad Pivots to Banks – Krebs on Security https://krebsonsecurity.com/2025/04/china-based-sms-phishing-triad-pivots-to-banks/

Risky Bulletin: CA/B Forum approves 47-days TLS certs https://risky.biz/risky-bulletin-ca-b-forum-approves-47-day-tls-certs/

Ransomware in het mkb: Cybercriminelen verhogen losgeld bij cyberverzekering https://www.digitaltrustcenter.nl/nieuws/ransomware-in-het-mkb-cybercriminelen-verhogen-losgeld-bij-cyberverzekering

4chan Is Down Following What Looks to Be a Major Hack Spurred By Meme War https://www.404media.co/4chan-is-down-following-what-looks-to-be-a-major-hack-spurred-by-meme-war/