Security news that informs and inspires
scrambled headshot of Thu Pham

Thu Pham

Information Security Journalist

Thu has been covering information security news for seven years.

As contributing information security journalist for Decipher, she will focus on providing clarity on timely news events and comprehensive, easy-to-understand security information for the non-security-elite.

Featured Articles

35 articles by Thu Pham

Exposed AWS Resources Leaked Sensitive Data

Amazon S3 buckets aren't the only data repositories that can leak data because of the organization's configuration errors. Other cloud services on the AWS platform are often found accessible by anyone on the Internet.

Aws Security, Cloud Security

Updated NIST Cybersecurity Framework Emphasizes Access Control & Supply Chain Risk

The National Institute of Standards and Technology (NIST) released its version 1.1 update to the 1.0 version of their Framework for Improving Critical Infrastructure Cybersecurity, last updated in 2014.

NIST, Cybersecurity, Access Controls, Access Control Security, Supply Chain

UK Government Proposes Secure by Design Guidelines for IoT

The UK government has published a Secure by Design report on improving the cybersecurity of consumer Internet of Things (IoT) devices such as smart TVs and wearables, urging manufacturers to follow common security guidelines and help protect consumers.

Internet of Things, Iot Security

Two-Step Verification or Two Factor: 90% Don't Use it to Protect Gmail

Less than 10 percent of active Google accounts use two-step verification (2SV) to secure access to their services, like Gmail. While experts commonly favor using two-factor authentication or password managers, these tools are virtually absent from the security posture of regular users.

Two Step Verification, Two Factor Authentication

Phishing Campaign Targets U.S. Senators & Political Organizations

Pawn Storm (aka Fancy Bear) has been attempting to phish webmail accounts for many years now, targeting U.S. senators and political organizations across the world, according to a recent Trend Micro report.

Phishing, 2fa, Biometrics, Mfa