Decipher
@deciphersec.bsky.social
Security without fear since 2018.
https://decipher.sc
https://www.youtube.com/@DecipherSec
https://www.buzzsprout.com/228511/supporters/new
https://decipher.sc
https://www.youtube.com/@DecipherSec
https://www.buzzsprout.com/228511/supporters/new
Pinned
Decipher
@deciphersec.bsky.social
· Dec 16
Deciphering Heat
YouTube video by Decipher
youtu.be
Yesterday was the 30th anniversary of the release of Michael Mann's HEAT, a hacker movie classic. (Shoutout Kelso.) We did an episode on HEAT last year with the great @meggardiner.bsky.social (co-author of HEAT 2) and our friend @cje.io.
The podcast IS the juice!
youtu.be/b2cfEXeWSn0?...
The podcast IS the juice!
youtu.be/b2cfEXeWSn0?...
🚨 This week's podcast is up now! In this episode we break down:
✅ The RedVDS cybercrime platform takedown by
@security.microsoft.com
✅ New @talosintelligence.com research on UAT-8837 Chinese APT activity
✅ The very cool StackWarp bug by @rayiizzz.bsky.social and team
decipher.sc/podcasts/the...
✅ The RedVDS cybercrime platform takedown by
@security.microsoft.com
✅ New @talosintelligence.com research on UAT-8837 Chinese APT activity
✅ The very cool StackWarp bug by @rayiizzz.bsky.social and team
decipher.sc/podcasts/the...
The RedVDS Takedown, Yet Another Chinese APT Emerges, and the StackWarp AMD Bug
This week, we talk about how Microsoft disrupted a long-running, large-scale cybercrime-as-a-service platform called RedVDS that has been active since 2019 and was used in high-volume phishing and BEC...
decipher.sc
January 16, 2026 at 6:24 PM
🚨 This week's podcast is up now! In this episode we break down:
✅ The RedVDS cybercrime platform takedown by
@security.microsoft.com
✅ New @talosintelligence.com research on UAT-8837 Chinese APT activity
✅ The very cool StackWarp bug by @rayiizzz.bsky.social and team
decipher.sc/podcasts/the...
✅ The RedVDS cybercrime platform takedown by
@security.microsoft.com
✅ New @talosintelligence.com research on UAT-8837 Chinese APT activity
✅ The very cool StackWarp bug by @rayiizzz.bsky.social and team
decipher.sc/podcasts/the...
Reposted by Decipher
A Chinese APT group has focused last year on compromising critical infrastructure across North America.
Cisco has linked multiple intrusions to a group it tracks as UAT-8837.
blog.talosintelligence.com/uat-8837/
Cisco has linked multiple intrusions to a group it tracks as UAT-8837.
blog.talosintelligence.com/uat-8837/
UAT-8837 targets critical infrastructure sectors in North America
Cisco Talos is closely tracking UAT-8837, a threat actor we assess with medium confidence is a China-nexus advanced persistent threat (APT) actor.
blog.talosintelligence.com
January 15, 2026 at 2:06 PM
A Chinese APT group has focused last year on compromising critical infrastructure across North America.
Cisco has linked multiple intrusions to a group it tracks as UAT-8837.
blog.talosintelligence.com/uat-8837/
Cisco has linked multiple intrusions to a group it tracks as UAT-8837.
blog.talosintelligence.com/uat-8837/
“Microsoft tracks the threat actor who develops and operates RedVDS as Storm-2470. We have observed multiple cybercriminal actors, including Storm-0259, Storm-2227, Storm-1575, Storm-1747."
decipher.sc/2026/01/14/m...
decipher.sc/2026/01/14/m...
Microsoft Disrupts RedVDS Cybercrime Platform - Decipher
The takedown marks a significant blow to the cybercrime-as-a-service ecosystem, which fuels large-scale, automated fraud.
decipher.sc
January 14, 2026 at 5:50 PM
“Microsoft tracks the threat actor who develops and operates RedVDS as Storm-2470. We have observed multiple cybercriminal actors, including Storm-0259, Storm-2227, Storm-1575, Storm-1747."
decipher.sc/2026/01/14/m...
decipher.sc/2026/01/14/m...
Our latest podcast is out and it's a very fun and insightful conversation with Jeremiah Grossman and Robert Hansen on vulnerability management, building a new platform from scratch at Root Evidence, and very fast cars 🏎️
youtu.be/5eSgyYSEP0s?...
youtu.be/5eSgyYSEP0s?...
The Future of Vulnerability Management With Jeremiah Grossman and Robert "RSnake" Hansen
YouTube video by Decipher
youtu.be
January 13, 2026 at 3:05 PM
Our latest podcast is out and it's a very fun and insightful conversation with Jeremiah Grossman and Robert Hansen on vulnerability management, building a new platform from scratch at Root Evidence, and very fast cars 🏎️
youtu.be/5eSgyYSEP0s?...
youtu.be/5eSgyYSEP0s?...
Coming up tomorrow on the podcast: Jeremiah Grossman
and Robert Hansen join @dennisf.bsky.social to talk about Jeremiah's car collection. Oh, and some vulnerability management stuff they're building at Root Evidence. Subscribe here: www.youtube.com/@DecipherSec
and Robert Hansen join @dennisf.bsky.social to talk about Jeremiah's car collection. Oh, and some vulnerability management stuff they're building at Root Evidence. Subscribe here: www.youtube.com/@DecipherSec
January 12, 2026 at 4:43 PM
Coming up tomorrow on the podcast: Jeremiah Grossman
and Robert Hansen join @dennisf.bsky.social to talk about Jeremiah's car collection. Oh, and some vulnerability management stuff they're building at Root Evidence. Subscribe here: www.youtube.com/@DecipherSec
and Robert Hansen join @dennisf.bsky.social to talk about Jeremiah's car collection. Oh, and some vulnerability management stuff they're building at Root Evidence. Subscribe here: www.youtube.com/@DecipherSec
First podcast of 2026 is up! 🎙️
✅ New Chinese APT UAT-7290 gets busy
✅ Attacks against CVE-2025-55182 React2Shell 📈
✅ News about upcoming podcast guests (spoiler alert!)
decipher.sc/podcasts/a-n...
✅ New Chinese APT UAT-7290 gets busy
✅ Attacks against CVE-2025-55182 React2Shell 📈
✅ News about upcoming podcast guests (spoiler alert!)
decipher.sc/podcasts/a-n...
A New Chinese APT Debuts and React2Shell Attacks Spike
Security Without Fear
decipher.sc
January 9, 2026 at 3:42 PM
First podcast of 2026 is up! 🎙️
✅ New Chinese APT UAT-7290 gets busy
✅ Attacks against CVE-2025-55182 React2Shell 📈
✅ News about upcoming podcast guests (spoiler alert!)
decipher.sc/podcasts/a-n...
✅ New Chinese APT UAT-7290 gets busy
✅ Attacks against CVE-2025-55182 React2Shell 📈
✅ News about upcoming podcast guests (spoiler alert!)
decipher.sc/podcasts/a-n...
Research from @greynoise.io shows a sustained attack volume in the 300k-400k per day range against CVE-2025-55182 React2Shell bug.
decipher.sc/2026/01/07/r...
decipher.sc/2026/01/07/r...
React2Shell Attacks Continue to Build - Decipher
After a peak of more than 430,000 attack sessions in late December, daily volumes targeting React2Shell have stabilized in the 300,000 to 400,000 range.
decipher.sc
January 8, 2026 at 3:12 PM
Research from @greynoise.io shows a sustained attack volume in the 300k-400k per day range against CVE-2025-55182 React2Shell bug.
decipher.sc/2026/01/07/r...
decipher.sc/2026/01/07/r...
Listen to our buddies. (They actually are our buddies, which is cool, right??)
Three Buddy Problem A new show, every weekend. Sub and listen on all platforms.
@craiu.bsky.social @jags.bsky.social
pod.link/1414525622
@craiu.bsky.social @jags.bsky.social
pod.link/1414525622
January 6, 2026 at 6:31 PM
Listen to our buddies. (They actually are our buddies, which is cool, right??)
We approve of the fashion choice!
This week's Three Buddy Problem show is presented by Material Security and includes book-reading recommendations from @craiu.bsky.social and @jags.bsky.social
WATCH youtu.be/mY9rRd1Wm_I?...
WATCH youtu.be/mY9rRd1Wm_I?...
A special mailbag episode with book recommendations
YouTube video by Three Buddy Problem
youtu.be
January 5, 2026 at 6:57 PM
We approve of the fashion choice!
Reposted by Decipher
Is Kevin McCallister the Greatest Hacker in Movie History?
YouTube video by Decipher
youtu.be
December 23, 2025 at 2:05 PM
Bless this highly nutritious microwavable macaroni and cheese dinner and the people who sold it on sale. Amen.
youtu.be/9lCl5Cqsh0s?...
youtu.be/9lCl5Cqsh0s?...
Is Kevin McCallister the Greatest Hacker in Movie History?
YouTube video by Decipher
youtu.be
December 22, 2025 at 4:42 PM
Bless this highly nutritious microwavable macaroni and cheese dinner and the people who sold it on sale. Amen.
youtu.be/9lCl5Cqsh0s?...
youtu.be/9lCl5Cqsh0s?...
Russian Targeting of Edge Devices. Cisco AsyncOS Zero Day, and React2Shell Won't Go Away
open.spotify.com
December 19, 2025 at 9:42 PM
🚨 New hacker movie 📽️ podcast episode is out!! 🚨
It's an all-time classic action movie that's seasonally appropriate. (But NOT a Christmas movie.)
youtu.be/TJBN4oRe3Tk?...
It's an all-time classic action movie that's seasonally appropriate. (But NOT a Christmas movie.)
youtu.be/TJBN4oRe3Tk?...
The Hacker Movie Canon: DIE HARD
YouTube video by Decipher
youtu.be
December 17, 2025 at 5:21 PM
🚨 New hacker movie 📽️ podcast episode is out!! 🚨
It's an all-time classic action movie that's seasonally appropriate. (But NOT a Christmas movie.)
youtu.be/TJBN4oRe3Tk?...
It's an all-time classic action movie that's seasonally appropriate. (But NOT a Christmas movie.)
youtu.be/TJBN4oRe3Tk?...
Yesterday was the 30th anniversary of the release of Michael Mann's HEAT, a hacker movie classic. (Shoutout Kelso.) We did an episode on HEAT last year with the great @meggardiner.bsky.social (co-author of HEAT 2) and our friend @cje.io.
The podcast IS the juice!
youtu.be/b2cfEXeWSn0?...
The podcast IS the juice!
youtu.be/b2cfEXeWSn0?...
Deciphering Heat
YouTube video by Decipher
youtu.be
December 16, 2025 at 2:46 PM
Yesterday was the 30th anniversary of the release of Michael Mann's HEAT, a hacker movie classic. (Shoutout Kelso.) We did an episode on HEAT last year with the great @meggardiner.bsky.social (co-author of HEAT 2) and our friend @cje.io.
The podcast IS the juice!
youtu.be/b2cfEXeWSn0?...
The podcast IS the juice!
youtu.be/b2cfEXeWSn0?...
New podcast is up!
✅ More React bugs and expanded exploitation activity
✅ A new CISA warning on Russian CI attacks
✅ Holiday hacker movie plans!
open.spotify.com/episode/4zJ7...
✅ More React bugs and expanded exploitation activity
✅ A new CISA warning on Russian CI attacks
✅ Holiday hacker movie plans!
open.spotify.com/episode/4zJ7...
More React Bugs Reaction, the Challenge of Vulnerability Management, and CI Attacks
open.spotify.com
December 13, 2025 at 4:31 PM
New podcast is up!
✅ More React bugs and expanded exploitation activity
✅ A new CISA warning on Russian CI attacks
✅ Holiday hacker movie plans!
open.spotify.com/episode/4zJ7...
✅ More React bugs and expanded exploitation activity
✅ A new CISA warning on Russian CI attacks
✅ Holiday hacker movie plans!
open.spotify.com/episode/4zJ7...
🚨 New podcast alert! 🚨
We have a fascinating new conversation by @dennisf.bsky.social with Erin Whitmore of CYPFER, a former CIA officer and cybersecurity official at @odnigov.bsky.social. Erin has a unique story and her insights on threats, AI, & risk are great.
youtu.be/u9pMZrMOW-E?...
We have a fascinating new conversation by @dennisf.bsky.social with Erin Whitmore of CYPFER, a former CIA officer and cybersecurity official at @odnigov.bsky.social. Erin has a unique story and her insights on threats, AI, & risk are great.
youtu.be/u9pMZrMOW-E?...
From CIA Officer to a Career in Cybersecurity With Erin Whitmore
YouTube video by Decipher
youtu.be
December 10, 2025 at 3:57 PM
🚨 New podcast alert! 🚨
We have a fascinating new conversation by @dennisf.bsky.social with Erin Whitmore of CYPFER, a former CIA officer and cybersecurity official at @odnigov.bsky.social. Erin has a unique story and her insights on threats, AI, & risk are great.
youtu.be/u9pMZrMOW-E?...
We have a fascinating new conversation by @dennisf.bsky.social with Erin Whitmore of CYPFER, a former CIA officer and cybersecurity official at @odnigov.bsky.social. Erin has a unique story and her insights on threats, AI, & risk are great.
youtu.be/u9pMZrMOW-E?...
UPDATED with some new info from @vulncheck.bsky.social on exploit activity.
decipher.sc/2025/12/08/b...
decipher.sc/2025/12/08/b...
Broad Exploit Activity Targets React2Shell Flaw - Decipher
The vulnerability was disclosed publicly on Dec. 3 and researchers and threat intelligence teams immediately began seeing opportunistic and targeted exploita...
decipher.sc
December 9, 2025 at 4:33 PM
UPDATED with some new info from @vulncheck.bsky.social on exploit activity.
decipher.sc/2025/12/08/b...
decipher.sc/2025/12/08/b...
"Communications networks are large, complex, and they require significant measures to be taken to secure them. So without some sort of accountability regime, we don’t really know what they’re doing, how effective it is, or how widespread those measures will be.”
decipher.sc/2025/12/04/g...
decipher.sc/2025/12/04/g...
Government, Private Sector Officials Mull Telecom Security Woes - Decipher
A year after Salt Typhoon's telecom hack, private and public sector officials discussed next steps.
decipher.sc
December 5, 2025 at 9:17 PM
"Communications networks are large, complex, and they require significant measures to be taken to secure them. So without some sort of accountability regime, we don’t really know what they’re doing, how effective it is, or how widespread those measures will be.”
decipher.sc/2025/12/04/g...
decipher.sc/2025/12/04/g...
Happy Friday, podcast friends! New episode is out, with all kinds of goodies.
✅ The React2shell bug and exploitation activity
✅ Salt Typhoon targeting of telecom networks
✅ New hacker movie episodes on the way!
open.spotify.com/episode/5pJE...
✅ The React2shell bug and exploitation activity
✅ Salt Typhoon targeting of telecom networks
✅ New hacker movie episodes on the way!
open.spotify.com/episode/5pJE...
React2Shell, Typhoon Attacks, and Why Our Infrastructure is So Vulnerable
open.spotify.com
December 5, 2025 at 6:13 PM
Happy Friday, podcast friends! New episode is out, with all kinds of goodies.
✅ The React2shell bug and exploitation activity
✅ Salt Typhoon targeting of telecom networks
✅ New hacker movie episodes on the way!
open.spotify.com/episode/5pJE...
✅ The React2shell bug and exploitation activity
✅ Salt Typhoon targeting of telecom networks
✅ New hacker movie episodes on the way!
open.spotify.com/episode/5pJE...