Security news that informs and inspires
scrambled headshot of Lindsey O’Donnell-Welch

Lindsey O’Donnell-Welch

Executive Editor

Lindsey O’Donnell-Welch is an award-winning journalist who strives to shed light on how security issues impact not only businesses and defenders on the front line, but also the daily lives of consumers.

In her previous position at Threatpost, Lindsey covered all aspects of the cybersecurity industry - from data privacy regulatory efforts to the evolution of underground cybercriminal marketplaces. Prior to that, Lindsey specialized in writing about microprocessors, enterprise business technology and the Internet of Things at CRN. In Lindsey’s spare time, she enjoys playing tennis and traveling.


Featured Articles

700 articles by Lindsey O’Donnell-Welch

Decipher Podcast: The Microsoft Recall Recall

A few days after Microsoft announced the new AI-enabled Recall feature--generating tremendous concerns and pushback from the security and privacy communities--the company had decided to disable it by default, but many concerns still remain. A month after the company's CEO proclaimed that it would be "prioritizing security above all else", how did this happen?

Podcast, Microsoft

Mandiant: 165 Snowflake Customers ‘Potentially Exposed’ in Campaign

Researchers with Mandiant said that since at least April 14, the threat group behind the attack has used stolen credentials to access over 100 customer tenants. Some of the credentials were stolen via infostealer malware as early as 2020.


The Emerging Ecosystem Dedicated to AI Accountability

A new ecosystem of security researchers is emerging, looking to sniff out data security and privacy issues in AI systems and grappling with issues like a lack of transparency into and understanding of LLMs.


After Backlash, Microsoft Recall Will be Disabled by Default

Microsoft said the controversial Copilot Plus PC Recall feature will no longer be enabled by default after backlash from security and privacy experts.


Wyden Pushes HHS to Mandate Healthcare Cybersecurity Standards

Wyden said the Change Healthcare ransomware attack demonstrates how the HHS’ current self-regulatory approach to cybersecurity is “insufficient.”