Dennis Fisher

Editor in Chief

Dennis Fisher is an award-winning journalist who has been covering information security and privacy since 2000.

He is one of the co-founders of Threatpost and previously wrote for TechTarget and eWeek, when magazines were still a thing that existed. Dennis enjoys finding the stories behind the headlines and digging into the motivations and thinking of both defenders and attackers. His work has appeared in The Boston Globe, The Improper Bostonian, Harvard Business School’s Working Knowledge, and most of his kids’ English papers.

dennis@decipher.sc
@dennisf

Featured Articles

Podcast Black Hat

Decipher Podcast: Reddit’s Matt Johansen on Identity Attacks, Enterprise Security, and Burnout

Reddit's head of application security Matt Johansen joins Dennis Fisher to talk about the highlights of Black Hat USA, the

Risk Management

Humans Are Bad at Risk Assessment, and Other Stories

Risk management is not one of humanity's strong points, but we can learn some lessons from our own real life experiences to apply

Black Hat Software Security

Software Has Eaten the World But There’s Still Hope

As software systems have become ever more complex, the opportunity for security researchers to show their value has grown, as

1182 articles by Dennis Fisher

Critical ScreenConnect Flaw Under Active Exploitation

The ConnectWise ScreeConnect authentication vulnerability disclosed this week is now under active exploitation and there is proof-of-concept exploit code available.

Attacks

Decipher Podcast: Jennifer Leggio Returns

Jennifer Leggio, a longtime security industry executive who has served in many different roles, joins Dennis Fisher to talk about the shift in thinking among those in the security community, technical gatekeeping in security, her new consulting venture Moveable Feast, and finding your niche.

Podcast

Decipher Podcast: LockBit Takedown

Dennis Fisher and Lindsey O'Donnell-Welch discuss the disruption of the LockBit ransomware operation by the FBI, Europol, and UK authorities, what it means for victims, and how it fits into the government's larger strategy to target cybercrime groups.

Podcast

The Creeping Threat of Security Debt

A new study shows that more than 70 percent of organizations have applications with vulnerabilities that are more than a year old, and nearly 50 percent have critical bugs that old.

Software Security

QNAP Fixes Pair of Command Injection Flaws

QNAP has patched two command injection flaws in several versions of its QTS and QuTS hero firmware.

Storage