Episode Details

CannCon and Ashe in America bring on cybersecurity expert Clay Parikh and retired Col. Shawn Smith to break down the CISA GitHub credential leak, in which AWS GovCloud server access keys and workspace passwords were stored in plain text in a CSV file and left exposed for up to six months. Col. Smith explains why CISA has never had the cyber talent or leadership to secure critical infrastructure, and why the damage from a breach like this is almost certainly unknowable and irreversible without burning the systems entirely. Clay Parikh walks through how credential exposure at the cloud level branches into full network access, compares the failure to the Colorado BIOS password scandal, and explains why Jenna Griswold's office violated CISA's own remediation guidelines after that breach. The conversation expands to Albert Sensors, the CIS public-private partnership backdoor, and how local election officials are given infrastructure far beyond their ability to secure or audit. Parikh also responds to The Atlantic hit piece targeting him, noting that his technical claims have never been technically refuted and that the pressure campaign against him escalated precisely as federal election investigations intensified.