Verizon DBIR: Enterprises Know the Pain of Zero Day Exploits All Too Well
The Verizon 2024 Data Breach Investigations Report shows a 180 percent increase in the use of vulnerability exploits in breaches
SEARCH
Dennis Fisher
Editor in ChiefDennis Fisher is an award-winning journalist who has been covering information security and privacy since 2000.
He is one of the co-founders of Threatpost and previously wrote for TechTarget and eWeek, when magazines were still a thing that existed. Dennis enjoys finding the stories behind the headlines and digging into the motivations and thinking of both defenders and attackers. His work has appeared in The Boston Globe, The Improper Bostonian, Harvard Business School’s Working Knowledge, and most of his kids’ English papers.
- dennis@decipher.sc
- @dennisf
Featured Articles
Cactus Ransomware Group Targets Qlik Sense Servers
Cactus ransomware actors are targeting Qlik Sense servers with exploits for three separate vulnerabilities in an ongoing campaign.
Russian Group Forest Blizzard Deploying GooseEgg Tool to Exploit CVE-2022-38028
A Russian threat group known as Forest Blizzard has been using a custom tool called GooseEgg to exploit a Windows Print Spooler
Decipher Podcast: Andrew Morris Returns
Andrew Morris, the founder and CEO of GreyNoise, joins Dennis Fisher to talk about software liability, the evolution of the security industry, and why we're not getting better at securing our systems.
LastPass Attacker Compromised Employee’s Personal Machine
An attacker who stole corporate and customer data from LastPass in 2022 gained initial access by compromising an engineer's personal computer.
CISA Director: ‘Strong Security Has to Be a Standard Feature’
CISA Director Jen Easterly called on technology companies to focus on building products more securely and to stop shifting the burden for safety to customers.
Possible New Lazarus Group Backdoor Found
A new backdoor called WinorDLL that is potentially the work of the Lazarus Group has been found onn victim machines in several countries.
New Attack Group Focuses on Asian Medical and Shipping Companies
A newly identified attack group known as Hydrochasma has targted medical and shipping companies in Asia with spear phishing campaigns that use freely available tools.