This week in the AppSec News: Visual Studio Code’s Workplace Trust, Injured Android an insecure mobile app, Microsoft accidentally signed driver with rootkits, The NSA funds a new sister Matrix to ATT&CK: D3FEND, & “Ransomware: maybe it’s you, not them?”, and more! Visit for all the latest episodes!

Full Episode Show Notes

Semgrep, Microsoft Signs With Rootkits, ATT&CK/D3FEND, & Injured Android


Adrian Sanabria

Adrian Sanabria - Senior Research Engineer at CyberRisk Alliance


Adrian is an outspoken researcher that doesn't shy away from uncomfortable truths. He loves to write about the security industry, tell stories, and still sees the glass as half full.

John Kinsella

John Kinsella - Chief Architect at Accurics


John Kinsella is the Chief Architect for Accurics


  • Do you want to stay in the loop on all things Security Weekly? Visit to subscribe on your favorite podcast catcher or our Youtube channel, sign up for our mailing list, join our Discord Server, and follow us on our newest live-streaming platform, Twitch!