NSA director fired, Ivanti's 0day screw-up, backdoor in robot dogs

Three Buddy Problem - Episode 41: Costin and Juanito join the show from Black Hat Asia in Singapore. We discuss Bunnie Huang's keynote on hardware supply chains and a classification system to establish a grounded perspective on trust in hardware, Ivanti's misdiagnosis of a critical VPN applicance flaw and Mandiant reporting on a Chinese APT exploiting Ivanti devices. Plus, breaking news on the sudden firing of NSA director and head of Cyber Command Tim Haugh. We also discuss Microsoft touting AI's value in finding open-source bootloader bugs, Silent Push report on a RUssian APT impersonating the CIA, a backdoor in a popular Chinese robot dog, and Chinese dominance of the robotics market. Cast: Juan Andres Guerrero-Saade, Costin Raiu and Ryan Naraine.Links:Transcript (unedited, AI-generated)National Security Agency chief ousted after far-right activist urged his removalMandiant: China-Nexus Threat Actor Actively Exploiting Critical Ivanti Connect Secure Vulnerability Ivanti security bulletin (CVE-2025-22457)Chinese APT exploits misdiagnosed RCE in Ivanti VPNsAnother exploited 0day in Apple iOS Android version of Lockdown Mode comingMicrosoft: Using AI to find open-source bootloader flawsIndiana University cybersecurity "safe" after FBI home searchesSilent Push: Russians impersonate CIA to target Ukraine sympathizersUnitree Go1 robot dog backdoor documentationAmerica is missing in the robotics raceAutomated AI Reverse Engineering with MCP for IDA and GhidraBunny Huang: Perspectives on trust in hardware supply chains