Public Exploits Give Attackers a Head Start
The latest research out of Kenna Security and Cyentia Institute compared how quickly defenders could remediate vulnerabilities...
SEARCH
Fahmida Y. Rashid
Senior Managing EditorFahmida brings over a decade of IT security news reporting along with ten years of network administration and software development to Decipher.
Every security story has a human face, and her goal is to bring those stories to light. As the senior managing editor of Decipher, she will focus on ways security can impact how people live, work, and play. She enjoys working on stories that speak to those outside the security industry, highlighting the intersection of security and other technology areas. Over the years, she has seen enough to make her overzealous about her personal threat-model, but she doesn’t hold it against anyone for having a more relaxed worldview.
- fahmida@decipher.sc
- @FYRashid
- 3DF6 3FDA FACC 7BC6
Featured Articles
Attacks Based on Credential Theft On The Rise, DBIR Says
In the 13th Data Breach Investigations Report, Verizon researchers found that attackers are relying less on malware and more on...
Decipher Library: First Edition
We've put together a list of security and privacy related book recommendations from people across the industry, from technical...
Researchers Develop Attacks Targeting End-to-End Encryption in Emails
A group of academic researchers have developed practical attacks targeting two widely used end-to-end encryption schemes for email, which could lead to man-in-the-middle decryption attacks and exfiltration of private keys.
Cryptomining Botnet Steals AWS Credentials
TeamTNT, a crypto-mining botnet, is stealing Amazon Web Services credentials from infected Docker and Kubernetes servers.
US and EU May Try for Another Privacy Shield
The United States is trying to hammer out another data transfer agreement with the European Union after the EU Court of Justice struck down the EU-US Privacy Shield framework last month for “inadequate” privacy protections.
Google Rolls Out SameSite Cookie Changes to Chrome
Google has finished its rollout of the changes to the SameSite cookie in its Chrome web browser. Site owners need to explicitly label third-party cookies with `SameSite=None; Secure` in order to use them on other sites.
Facebook Releases Static Code Analysis Tool for Python
Facebook has open-sourced Python Static Analyzer, an internally-developed static code analyzer for finding and fixing flaws in Python code. Pysa analyzes how data flows through the application to identify security issues that result when data winds up in an area of the application is shouldn't be able to reach.