Apple Lockdown Mode ‘First Step Toward Mainstreaming Better Protections’
The new Lockdown Mode that will be in iOS 16 this fall will disable many features used to target at-risk users with commercial...
SEARCH
Dennis Fisher
Editor in ChiefDennis Fisher is an award-winning journalist who has been covering information security and privacy since 2000.
He is one of the co-founders of Threatpost and previously wrote for TechTarget and eWeek, when magazines were still a thing that existed. Dennis enjoys finding the stories behind the headlines and digging into the motivations and thinking of both defenders and attackers. His work has appeared in The Boston Globe, The Improper Bostonian, Harvard Business School’s Working Knowledge, and most of his kids’ English papers.
- dennis@decipher.sc
- @dennisf
Featured Articles
Java Crypto Bug Allows Forging of Signatures, Certificates
A critical bug in Java's implementation of ECDSA (CVE-2022-21449) can allow an attacker to forge a signature or certificate to...
Government Needs to be ‘Postured for the Future’ of Cyber Threats
The U.S. government and military is looking to attract and retain more talented cyber operators to keep pace with the evolving...
For Bug Bounties, ‘Knowing is Less Than Half the Battle’
Bug bounty programs can be invaluable, but without the proper resources in place, they will fail hard.
Krebs: ‘We’ve Over-Fetishized the APT Threat’
Former CISA director Chris Krebs said at Black Hat that the community may have focused too much on APT groups in recent years.
Exploit Available for Critical VMware Bug CVE-2022-31656
A researchers has released a proof-of-concept exploit for CVE-2022-31656, a critical authentication bypass in VMware ONE Access.
Twilio Customer, Employee Accounts Compromised In Text Phishing Attack
Attackers compromised some customer and employee accounts at Twilio through a text-based phishing campaign.
Slack Reset Some Users’ Passwords Due to Bug in Invite Links
Slack has automatically reset the passwords of a small number of users after discovering a bug in invitation links that sent hashed passwords to other users.