Enterprises Are Patching Faster, Reducing Vulnerability Debt
Enterprises are patching more high-risk vulnerabilities faster now than just a year ago, new data from Kenna Security shows.
SEARCH
Dennis Fisher
Editor in ChiefDennis Fisher is an award-winning journalist who has been covering information security and privacy since 2000.
He is one of the co-founders of Threatpost and previously wrote for TechTarget and eWeek, when magazines were still a thing that existed. Dennis enjoys finding the stories behind the headlines and digging into the motivations and thinking of both defenders and attackers. His work has appeared in The Boston Globe, The Improper Bostonian, Harvard Business School’s Working Knowledge, and most of his kids’ English papers.
- dennis@decipher.sc
- @dennisf
Featured Articles
In Wake of SolarWinds Breach, the Challenge of Building Secure Software Remains
SolarWinds is testing a system of parallel build servers to help prevent a future supply chain attack on its infrastructure.
SolarWinds Attackers Accessed Mimecast Source Code
The attackers behind the SolarWinds breach also gained access to and downloaded some Mimecast source code repositories.
IcedID Trojan Finding New Ways to Slip Past Defenses
The IcedID trojan is taking up come of the slack left behind when the Emotet botnet was taken down, with new evasion and infection flows.
Decipher Podcast: Charles Shirer
Charles Shirer, a red teamer, hacker, and FreeBSD enthusiast, joins Dennis Fisher to talk about his path to working in security, learning to hack, and his motivational videos.
Q&A: Idan Plotnik
Idan Plotnik of Apiiro Security discusses the value of a risk-based approach to software development and deployment.
EtterSilent Builder Gains Momentum in Malware Campaigns
The EtterSilent builder has been used in campaigns alongside Ryuk ransomware, the Gozi banking trojan, and BazarLoader.
Decipher Podcast: Idan Plotnik
Idan Plotnik, CEO of Apiiro, joins Dennis Fisher to talk about taking a risk-based approach to code and securing the software development lifecycle.