Decipher Podcast: Reddit’s Matt Johansen on Identity Attacks, Enterprise Security, and Burnout
Reddit's head of application security Matt Johansen joins Dennis Fisher to talk about the highlights of Black Hat USA, the
SEARCH
Dennis Fisher
Editor in ChiefDennis Fisher is an award-winning journalist who has been covering information security and privacy since 2000.
He is one of the co-founders of Threatpost and previously wrote for TechTarget and eWeek, when magazines were still a thing that existed. Dennis enjoys finding the stories behind the headlines and digging into the motivations and thinking of both defenders and attackers. His work has appeared in The Boston Globe, The Improper Bostonian, Harvard Business School’s Working Knowledge, and most of his kids’ English papers.
- dennis@decipher.sc
- @dennisf
Featured Articles
Humans Are Bad at Risk Assessment, and Other Stories
Risk management is not one of humanity's strong points, but we can learn some lessons from our own real life experiences to apply
Software Has Eaten the World But There’s Still Hope
As software systems have become ever more complex, the opportunity for security researchers to show their value has grown, as
Russian Attackers Target COVID-19 Vaccine Research
US and UK intelligence agencies say a Russian attack group known as APT29 is targeting organizations associated with COVID-19 vaccine research.
Google Debuts Confidential VMs to Protect Cloud Data in Use
Google Cloud Confidential VMs, now in beta, allows customers to run workloads in the cloud on data that is encrypted while it's in use.
SAP Patches Critical Flaw Across Product Line
A vulnerability in a NetWeaver component (CVE-2020-6287) that can be exploited by a remote unauthenticated attacker has been patched by SAP.
Mozilla to Cut TLS Certificate Lifespan Nearly in Half
Mozilla will reduce the valid lifespan of TLS certificates in its root store to 398 days in a move to limit exposure for keys and certificates.
Google Releases Tsunami Vulnerability Scanner
Google's Tsunami scanner is designed specifically to find critical vulnerabilities in large-scale enterprise networks.