Fahmida Y. Rashid

Senior Writer

Fahmida Y. Rashid is a senior writer at InfoWorld, focused on the information security beat. Before joining InfoWorld, she wrote about networking and security for various technology publications, including eWeek, PC Magazine, Dark Reading, and CRN. She also spent years as an IT administrator, software developer, and data analyst. "I, for one, welcome our new computer overlords."

Devops embraces security measures to build safer software

Leading Linux distros dawdle as kernel flaw persists

Leading Linux distros dawdle as kernel flaw persists

A race condition flaw has been fixed in the mainline Linux kernel, but some Red Hat, Canonical, and Debian distributions don't yet have patches

Warning: Your networking tools are weakening your web security

Warning: Your networking tools are weakening your web security

US-CERT says SSL inspection tools, which let enterprise administrators examine encrypted traffic to find and block malicious activity, actually hinder HTTPS

Yahoo breach lessons IT can't ignore

Yahoo breach lessons IT can't ignore

The indictment against the attackers behind the Yahoo breach shows just how vulnerable corporate networks are when thieves get their hands on employees' personal information

Facebook bars developers from using data feeds for spying tools

Facebook bars developers from using data feeds for spying tools

Facebook and Instagram have publicly changed their terms and conditions to tell developers they can't use public user data feeds to develop tools that can be used for surveillance

How Android and iOS devices really get hacked

How Android and iOS devices really get hacked

There are many ways to hack mobile devices, but the method people worry about is hard and relatively uncommon. You're more likely to get phished first

Google tries to beat AWS at cloud security

Google tries to beat AWS at cloud security

New tools that protect enterprise applications running on Google Cloud Platform may help take the spotlight away from AWS and Microsoft Azure

Apache Struts bug is under attack, patch now

Apache Struts bug is under attack, patch now

Due to the Jakarta Multipart parser in Apache Struts mishandling Content-Type headers, an attacker can remotely execute code on vulnerable systems

WordPress fixes XSS, CSRF flaws in latest core update

WordPress fixes XSS, CSRF flaws in latest core update

WordPress has a new security update for its content management platform. Don't wait for attackers to launch attacks before updating to version 4.7.3

HackerOne opens up bug bounties to open source

HackerOne opens up bug bounties to open source

The platform helps teams handle vulnerability submissions, coordinate communications, identify duplicate reports, and run bug bounty programs

Bitbucket tightens security on private code

Bitbucket tightens security on private code

Administrators can use IP whitelisting and two-step verification to have full control over who can view or work with private code repositories

Chrome extension brings encryption to Gmail

Chrome extension brings encryption to Gmail

E2Email, Google's latest open source project, wants to bring encrypted email to the masses, but without strong leadership, this project may wind up going nowhere

Load More