Jon Callas, director of technology projects with EFF, talks about invasive data tracking and surveillance during the pandemic.

Welcome back to Source Code, Decipher’s weekly news podcast with input from our sources. Topping the news this week, president Joe Biden signed a new National Security Memorandum that aims to better secure national security systems. Also this week, Europol announced that several law enforcement authorities dismantled a VPN service that was being utilized by cybercriminals in order to deploy ransomware. 

Welcome to Source Code: Decipher’s behind the scenes look at the weekly news with input from our sources.  Topping the headlines this week, Microsoft researchers released details for a recently patched vulnerability in macOS. Also in the news, U.S. Cyber Command exposed a number of open-source tools that it said are being used by the MuddyWater APT.  And, researchers with Cisco Talos highlighted a phishing campaign that relied on "complex" obfuscation tactics in order to deliver three different RATs.

Robert Hansen (aka RSnake) joins Dennis Fisher to talk about his new research on NaN injection in Python and the issues with the software supply chain.

In a podcast discussion with Lindsey O'Donnell-Welch, Crane Hassold with Abnormal Security discusses how business email compromise attackers are getting savvier and best practices to defend against BEC attacks.

Lindsey O'Donnell-Welch and Dennis Fisher look back on a wild year in cybersecurity and discuss the ongoing ransomware problem, the increase in zero days used in the wild, our favorite stories and podcasts of the year, and more.

Zoe Lindsey, Pete Baker, and Dennis Fisher sit down to talk about Die Hard 2, the forgotten member of the Die Hard series, which is not a Christmas movie. It is, however, a movie with a lot of great hacking and social engineering scenes, and Bruce Willis spewing one-liners like a 1950s standup comic.

Sherrod DeGrippo, vice president of threat research and detection at Proofpoint, talks about Emotet's return; how attackers are fine tuning their malware campaigns to be more targeted; and why "your point of view is the most valuable thing that you bring" in cybersecurity.

Welcome to Source Code: Decipher’s behind the scenes look at the weekly news with input from our sources.  The Log4j flaw - and its impact on millions of third-party applications and services - dominated this week's security news, with researchers pointing to challenges in deploying fixes and exploitation attempts from nation-state actors.  Also this week, Microsoft issued its Patch Tuesday security updates, which included a fix for a flaw that was being exploited in Emotet malware attacks. 

John Hammond of Huntress joins Dennis Fisher to discuss the critical Log4j vulnerability, the community response, and the potential long-term effects of the bug.