Security news that informs and inspires

SEARCH

headshot of Fahmida Y. Rashid with teal overlay

Fahmida Y. Rashid

Contributor

Fahmida brings over a decade of IT security news reporting along with ten years of network administration and software development to Decipher. Every security story has a human face, and her goal is to bring those stories to light. As the senior managing editor of Decipher, she will focus on ways security can impact how people live, work, and play. She enjoys working on stories that speak to those outside the security industry, highlighting the intersection of security and other technology areas. Over the years, she has seen enough to make her overzealous about her personal threat-model, but she doesn’t hold it against anyone for having a more relaxed worldview.

  • fahmida@decipher.sc
  • @FYRashid
  • 3DF6 3FDA FACC 7BC6
352 articles by Fahmida Y. Rashid

Government Shutdown Highlights Importance of Planning Ahead

Parts of the government is still spinning back up after spending 35 days offline as part of the recent partial government shutdown. For security teams with long to-do lists, that's a lot of time they need to regain.

Government, Incident Response

Google Password Checkup Checks For Already Compromised Passwords

Google's Password Checkup Chrome extension tackles the big problem of password reuse by checking what passwords users are using against a database of compromised credentials.

Passwords, Google, Data Breaches

Severity of FaceTime Bug Depends on Threat Model

Apple is fixing the FaceTime bug, so it is clearly serious. But how bad it will impact users depend on their personal threat models.

Privacy, Vulnerability, Apple, Ios

Police Shut Down xDedic Marketplace for Hacked Servers

European law enforcement and the US Department of Justice took the xDedic marketplace, a hotspot for cybercriminals on the dark web, sells access to compromised RDP servers belonging to universities, governments, and private enterprises, offline as part of a joint operation.

Hackers, Government

Microsoft Exchange Users Get Admin Rights in Privilege Escalation Attack

A privilege escalation attack that is the combination of known issues and weaknesses with Microsoft Exchange will let users become Domain Administrators. No compromised credentials required.

Microsoft, Security Research, Least Privilege