If you're a part of the cybersecurity ecosystem, you know that it’s a rapidly evolving and challenging work environment. Fortunately for us there are experienced professionals out there who keep an eye on developments and share their knowledge. We’ve asked leading cybersecurity experts who they turn to for their news and inspiration and compiled a list of the best of the best cybersecurity resources. Check them out!
Sophos are cybersecurity veterans, involved in the industry since 1985. Their blog keeps on top of the latest news in information security, looking at new threats and vectors. They have some great insights into privacy and surveillance as well. The Sophos blog covers areas as diverse as law, privacy, data loss, and government security. It’s a very interesting read, and one to keep you on top of what’s going on across the cyber threat landscape.
Twitter: @nakedsecurity
Post frequency: Daily
2. Infospectives by Sarah Clarke
This multi-award winning blog brings you up to date info not just on cybersecurity, but privacy and data protection as well. The blog takes a business perspective and runs posts on current issues such as GDPR and other regulations that hit close to home in the business world. Infospectives has two blog sections, one on business focussed privacy and security, and another on a more personal security perspective.
Twitter: @TrialByTruth
Post frequency: Irregular, sometimes monthly
Javvad Malik, as well as being a security Advocate for AlienVault, is a well-known cybersecurity evangelist and broadcaster across social media on security industry news. His blog is a mix of cybersecurity insights, threat analysis, and personal musings. Javvad also offers a video playlist with educational discussion on ransomware, encryption, and social engineering. The news section is a great way to stay on top of breaking cybersecurity news items.
Twitter: @J4vv4D
Post frequency: Every few days
Brian Krebs’ blog on cybersecurity is famous for not just breaking the news but making it too. Last year's massive DDoS attack against the Dyn DNS servers was first broadcast on Krebs' blog - Krebs himself being a victim of the DDoS attack. Krebs started his career as a reporter and his style is newsy and easy to read. He blogs about cybersecurity news and often gives highly informative analysis pieces about the specifics of attacks.
Twitter: @briankrebs
Post frequency: Every few days
5. Dark Reading
Dark reading is a magazine style blog covering the whole gamut of cybersecurity. It is a feast for the information security specialist. It covers diverse topics, including, IoT, perimeter, breaches and analytics. It offers excellent advisory posts from security professionals that give you references to use in your own organization. The blog is literally awash with news items, opinions, and guides. It is worth signing up for the daily or weekly digests.
Twitter: @DarkReading
Post frequency: Often, several times a day
Bruce Schneier is the name behind a number of important books on cryptography and gives regular talks on security matters across the world. Bruce’s blog not only discusses topical news items, but gives great advise on all things security. He also offers views on the use of government surveillance and encryption. It is worth signing up to his Crypto-Gram newsletter for topical security related discussions and news.
Twitter: @schneierblog
Post frequency: Often daily, but sometimes less frequent
7. SC Magazine
SC Magazine is a long standing cybersecurity industry standard magazine, going back to the formative years of cybersecurity. The magazine breaks headline news and has a number of regular columns, including, product reviews and events. The section on Cybercrime has a wealth of information about all manner of hacks and threats. The posts cover in-depth analysis of the type of cyber attacks we are facing in modern cybersecurity. The news section has a dedicated area to the monthly focus of the magazine, for example, ‘Women in IT Security’.
Twitter: @SCMagazine
Post frequency: Often, several times a day
IT Security Guru is all about breaking news stories in the world of information security. The site is run by security experts and often features guest contributions from the IT security community. The Top Ten Stories section is one to watch to keep up to date with cybersecurity events.
Twitter: @IT_SecGuru
Post frequency: Often, several times a day
The Threat Level blog is brought to you by Wired.com, and provides breaking news in the fast-paced format that Wired is renowned for. The blog gives you a mix of business news and threat analysis on a wide-array of cybersecurity issues.
@ThreatLevel
Post frequency: Often, several times a day
Fifth Domain Cyber is another general cybersecurity news site with up to the minute blog posts on breaking cybersecurity incidents and related items. The blog has some wide ranging content and includes a section on career-related information for the industry professionals with education and training resources. Fifth Domain Cyber brings together info and news on government, civilian, private sector, and critical infrastructure security issues.
Twitter: @theFifthDomain
Post frequency: Often, several times a day
11. The Cyber Feed
The Cyber Feed is a security blog by security specialists CyberInt. It covers a mix of news items on cybersecurity as well as great advisories on issues such as security awareness training and incident response how to’s. The blog is a great place to learn about the latest industry methodologies and approaches to security intelligence.
Twitter: @cyber_int
Post frequency: Once every few weeks
12. AquaSec Blog
AquaSec’s blog is run by virtual container security specialists. Containers have seen a massive growth in in the past few years, with a Docker usage rising an astounding 40% year over year. As more organisations move to virtualized container tech for application development, their security is an increasingly hot area, and AquaSec blog is the perfect place for updates in the field..
Twitter: @AquaSecTeam
Post frequency: Once every few weeks
13. Gartner
Gartner analysts are a revered bunch, and for a good reason. Gartner is the world’s leading research and advisory company. When the yearly reports such as Hype Cycle or Cool Vendor reports are released, everyone listens.
Gartner Blog Network is an outlet for the analysts to express their personal opinions. While Gartner analysts have the freedom to blog about any topic, they mostly write about their respective areas of expertise. Influential security analysts such as Anton Chuvakin, Aviva Litan, Andrew White post regular updates on Gartner’s blog. So if there is a single blog you should subscribe to- this is it.
Twitter: @Gartner_inc
Post frequency: Once every few days
Together, these resources cover a lot of ground when it comes to the complex cybersecurity landscape.
Check out our ultimate guide to cyber security marketing here
That’s all for now. Sign up and enjoy!
