Fahmida Y. Rashid

Senior Managing Editor

Fahmida brings over a decade of IT security news reporting along with ten years of network administration and software development to Decipher.

Every security story has a human face, and her goal is to bring those stories to light. As the senior managing editor of Decipher, she will focus on ways security can impact how people live, work, and play. She enjoys working on stories that speak to those outside the security industry, highlighting the intersection of security and other technology areas. Over the years, she has seen enough to make her overzealous about her personal threat-model, but she doesn’t hold it against anyone for having a more relaxed worldview.

fahmida@decipher.sc
@FYRashid
3DF6 3FDA FACC 7BC6

Featured Articles

Andy Ellis standing on stage against a black curtain and a RSAC 2019 purple banner

Risk

Improve Risk Perception, Get Better Decisions

Humans are fundamentally wired to take risks, and their decisions are all about taking risks in order to gain some kind of a...

Privacy

Severity of FaceTime Bug Depends on Threat Model

Apple is fixing the FaceTime bug, so it is clearly serious. But how bad it will impact users depend on their personal threat...

Government

Government Shutdown Impacts Enterprise Security

The government shutdown isn't impacting just security professionals working for the federal government. Corporate security...

197 articles by Fahmida Y. Rashid

Enterprises Lack Clear Security Guidance for 5G

Enterprises need guidance on how to get ready for 5G networks, but the current fear-mongering about Huawei doesn't give enterprises the information they need to make sure the applications are secure.

Networking, Wireless Security, Internet, 5G, Critical Infrastructure Security

GitHub Beefs Up Code Scanning With Semmle

Keeping software secure isn't just the developer's job. GitHub is strengthening its ecosystem with tools for developers, researchers, and project maintainers to identify and fix software vulnerabilities.

Application Security, Open Source, Vulnerability

Tortoiseshell Targets IT Providers in Supply Chain Attack

Supply chain attacks violate the trust organizations have in their suppliers and providers. A newly discovered attack group is brazen, compromising IT providers in order to get to their final targets.

Supply Chain, Attacker

Working Group Attempts Consensus on Encryption, Lawful Access

The "debate" over how law enforcement can have lawful access to encrypted messages is anything but civil. The Encryption Working Group attempted to find common ground and made some proposals, but no agreement on how messages can be viewed without undermining encryption.

Encryption, Government

Attack on Power Utility Highlights Need for Layered Defense

The key takeaway from the NERC report about the attack against a US electric utility isn't that companies need to be patching, but that layered defense is still the best approach for keeping systems and networks safe.

Critical Infrastructure Security