Upload
others
View
2
Download
0
Embed Size (px)
Citation preview
41AmazingInternetSecurityBlogsYouShouldBeReadingAuthor:MMubashar1.KrebsonSecurityBrianKrebsisthemanbehindKrebsonSecurity.Beinghackedhimselfin2001,hetakesapersonalinterestinonlinesecurityandisoneofthewell-knownnamesintoday’ssecuritylandscape.Hecoverstopicsfromlatestthreats,privacybreachesandcyber-criminalstomajorsecuritynews.
2.SchneieronSecurityBruceSchneiderisprobablythemostwell-knownnamethatyoucanrecognizeinourlist,andwasevencalleda“securityguru”byTheEconomist.Hewrotebooks,hundredsofarticles,essaysandsecuritypapersonsecuritymatters.Atthesametime,heisaknownfigureinthemediaenvironmentwhichrecognizehimasanimportantvoicefortheonlinesecurity,notonlyforhisknowledgeonthematter,butalsobecauseheknowshowtoexpresshisopinions.
3.TaoSecurityThissecurityblogisrunbyRichardBejtlich,ChiefSecurityOfficeratMandiantandauthorofmanybooksonsecurity.Withanextensivebackgroundoncyber-criminalworldandmaliciousattacksonenterprisenetworks,heshareshisexperienceondigitaldefense,networkmonitoringanddetectiononhissecurityblog.SinceagreatnumberofnetworkattackscomefromChina,heisspecializedonChineseonlinecriminals.
4.US-CERTThisistheofficialwebsiteoftheDepartmentofHomelandSecurity,fromUSA.
Thoughitisnotaclassicalsecurityblog,itspurposeistoimproveInternetsecuritybyprovidingspecializedandwelldetailedinformationoncyber-criminalactivities,malware,phishingattemptsandonlinethreats.Tousetheirownwords:“US-CERTstrivesforasafer,strongerInternetforallAmericansbyrespondingtomajorincidents,analyzingthreats,andexchangingcriticalcyber-securityinformationwithtrustedpartnersaroundtheworld.”
5.DarkReadingDarkReadingisawidely-readcybersecuritysitethataddressesprofessionalsfromtheITenvironment,securityresearchersandtechnologyspecialists.Theyusetheirexperienceandknowledgetoprovidearticles,recommendations,newsandinformationonITsecurity.
6.CIO
CIOistheplacewhereyoufindnews,informationtechnologyarticles,insightandanalysisonmajordatabreachesandonlinethreats.Coveringmultipleaspectsofworldwideweb,itprovidesin-depth,contentrichinformationforITprofessionalsandnormalusers.
7.NetworkSecurityBlogMartinMcKeayisthevoiceofthissecurityblog,whereyoucanfindinformationandnewsonprivacyandsecurityissues.AsMartinsays:“Itookupbloggingasameanstoextendmyknowledgeandtestmyideasaboutsecurity…”.
8.SecurityWatchwithNeilRubenkingKnownforhisdirectandwittystyle,NeilRubenkingisthemanyouhavetolistenifyousearchfortechnicaladviceonthemainsecuritysolutions,fromfirewalls,antivirusandantispamproductstofullsecuritysuites.Detailedreportsandsharpanalysisofsecurityprogramsplacehimbeonyourfollowlistifyoulookforthistypeifinformation.
9.Paul’sSecurityWeeklyPaul’sSecurityWeekly,foundedbyPaulAsadoorian,bringsyousecuritynews,usefultechnicalarticles,researchstudiesandvaluableinformationonhackingandcyber-crimethroughvariouschannels,fromblogposts,videostopodcasts.
10.PCMag.comOneofthemostpopularsitesinthesoftwareindustry,PCMagazinecomeswithreviewsandstudiesonthelatestproductsforonlinesecurity.Foranobjectiveanalysisofaproductyoumaybelooking,don’tforgettolookforthededicatedarticleonthiswebsite.
11.WiredOneoftheclassicalNorthAmericanpublicationsreportingontechnologyanditsroleinculture,economyandpolitics,Wiredapproachestopicsononlineprivacy,cybercriminalthreats,systemssecurityandthelatestalerts.
12.Forbe’sFirewallForbe’sFirewallcomesfromoneoftheleadingmediacompanyintheonlineenvironmentandprovidesstronganalysis,reliabletoolsandreal-timereportsforcyber-securitynewsandinformationonthelatestonlinethreats.
13.TechRepublicTechRepublicprovideslargeresourcesfortheonlineindustry,suchasblogarticles,forums,technicalpapersandsecuritydata.AllthevaluableinformationavailablehelpsITprofessionalsandtechnologyleaderstocomewiththebestdecissionsontheirbusinessprocesses.
14.ZeroDayTheZeroDaysecurityblogisimportantforallthepeoplewhicharepartoftheIT
industryandyoushouldfollowittostayup-to-datewiththelatestsecurityanalysis,softwarevulnerabilities,malwareattacksandnetworkthreats.
15.SecurosisSecurosisisasecurityresearchandadvisorycompanythatofferssecurityservicesforcompaniesandorganizations.Atthesametime,youcanfindontheirsecurityblogsomeusefularticlesandinsightonmanagingandprotectingonlinedata.
16.TheGuardianInformationSecurityHubKnownforitsqualityarticlesonworldnews,Guardianoffersasectiondedicatedtoinformationsecurityforcompaniesandindividuals.Tostayup-to-datewiththelatestarticlesandnewsoncybersecurity,makesureyoufollowthissite.
17.HelpNetSecurityThissecuritysiteisapopularplacefordataandsecuritynewsandyoucanfindherethelatestinformationandarticlesrelatedtotheITindustry.18.TechworldSecurityThesectiondedicatedtosecurityonthissiteanalyzesthelatestmalwarethreatsandzero-dayexploits.Youcanfindhereotherimportanttopicsandsubjects,suchassecurityarticles,how-todocumentsandsoftwarereviews.
19.FoxITSecurityBlogThissecurityblogisaverygoodsourceofinformationononlinesecurity,technologynewsandcybercrimedefense.20.SCMagazineSCMagazinecomesintheITenvironmentwithtechnicalinformationanddataanalysistofightthepresentonlinesecuritythreats.Theirsiteprovidestestingresultsfore-mailsecurity,mobiledevices,cloudandwebsecurity.
21.NetworkComputingThecontentofthissecurityblogfocusesoncloudtechnologyandenterpriseinfrastructuresystems.Itspublishedarticlescoversecuritysolutionsonhowtodeliverapplicationsandservicesforanincreasinglylargethreatenvironmentinthebusinessworld,newsandexpertadvice.
22.InfosecurityMagazineInfosecurityMagazineisanonlinemagazinewhichcoversnotonlysecurityarticlesonpopulartopics,butisalsodedicatedtosecuritystrategy,valuableinsightsandtechnicalapproachesfortheonlineindustry.
23.SANSInstituteAppSecBlogThissecuritysiteaddressesthegrowingmalwarethreatsintheonlineworldbyprovidingtraining,research,certificationandeducationalresourcesforITspecialists.
24.ThreatTrackSecurityThissecurityblogkeepsyouup-to-datewiththelatestinnovationsanddevelopmentsintheITindustry,fromsecurityexploitstosoftwarevulnerabilitiesandcybercriminalattempts.
25.CSOOnlineCSOfocusesoninformationtechnology,accessmanagementforenterpriseservers,lossprevention,cybercriminalthreatsandsoftwarevulnerabilities.SecurityblogsfromsoftwareprovidersintheITindustry26.SophossecurityblogNakedSecurityisSophos’saward-winningthreatnewsroom,givingyounews,opinion,adviceandresearchoncomputersecurityissuesandthelatestinternetthreats.NakedSecurityistheblogofsecuritycompanySOPHOSandtheplacewhereyoucanfindnews,researchstudies,advicesandopinions.Categoriesrangefrommobilesecuritythreatstooperatingsystemsandmalwarearticles.NakedSecurityisupdatedmultipletimesperdayandreceivesaround1.5millionpageviewspermonth.Ithaswonnumerousawardsanditisconsideredoneofthebestsecurityblogs.
27.KasperskyLab’sThreatPostThreatpostistheleadingsecuritynewswebsitethatispartofTheKasperskyLab.Theirarticlescoverimportantstoriesandrelevantsecuritynewsfortheonlineworld.Theyarerecognizedasanimportantsourceofnewsforonlinesecurityinimportantnewspapersandpublications,suchasNewYorkTimes,USATodayorTheWallStreetJournal.
28.KasperskyLab’sSecurelistSecurelistisasecurityblogrunbyKasperskyLabanditaddressesalargeaudience,providingsomeofthebestsecuritysubjectsoncybercriminalactivitiesanddatastealingmalware.Youcanfindheresecurityinformationthatfocusesonmalware,phishingandotherthreatsfromthecybersecurityworld.
29.SymantecWeblogSymantecWeblogisasecurityblogfromoneofthebiggestprovidersofsecuritysolutionsworldwide,Symantec.Usingtheirtechnicalknowledgeanddatacollectedalongtheyears,theycomewithstronganalysisreportsandarticlesonsecuritythreats,onlinecriminals,datastealingmalware,systemvulnerbilitiesandmanyothers.
30.GoogleOnlineSecurityBlogWearesurroundedbyGoogleproductsandservices,fromtheirsearchenginetotheirwebbrowser,soitisnormaltoincludetheirsecuritybloginourlist.Itisareliablesecurityblogandevenmore,areferencepointononlinesecurityandprivacyweneedtoacknowledge.
31.ZoneAlarmCyberSecurityBlog
ThesecurityblogfromZoneAlarm,oneofthewell-knownvendorsofsecurityproducts,providesvaluableinformationonmalwaredefenseandonlinesecurity.Usingtheirexperienceonmalware,thissecuritybloggeneratesmalwarealerts,practicalsecuritytipsandthelatestnewsintheITindustry.
32.F-SecureSafe&SavvyBlogAsecurityblogfromF-Secure,acompanydedicatedtoonlinecontentandprivacyprotection.Onthissecurityblogyouwillfindhelpfultipsandadvisesonsecurityissues,fromprotectingyourpersonalidentitytokeepingyoursystemsafe.
33.HotforSecurityThesecurityblogfromBITDEFENDER–oneoftheleadingcompaniesononlinesecuritysolutions,coversvarioussubjectsfromtheITworld,fromInternetscams,onlinespamandphishingtomalwareanddatastealingsoftware.
34.McAfeesecurityblogMcAfeesecurityblogprovidesthelatesttipsandtechniquesfromsecurityexpertstokeepyouup-to-datewiththelatestmalwaretrendsintheonlineenvironment.35.MicrosoftMalwareProtectionCenterTheMicrosoftMalwareProtectionCenteranalyzesdatafromallovertheworldtoprovideinsightandvaluableinformationonfightingonlinethreatsinordertoprotectusersfrommalwareattacksandonlinecrime.
36.SpiderLabsSecurityBlogInvestigatorsandresearchersatTrustwavecoverthelatesttechnologynewsonthissecurityblog.Gatheringinformationfromresearchandtesting,theypublisharticlesandsecuritystudiestofightonlinehackersandcyber-criminalthreats.
37.DellSecureWorksThesecurityblogfromDellSecureWorksprovidesthelatestnewsandinformationforITprofessionalsandusersthatneedtostayup-to-datewithonlinethreatsandmalwareattacks.
38.MalwarebytesSecurityBlogTheMalwarebytessecurityblogarticlescoverthelatestmalwarethreatsandcybercriminalattemptsfromtheonlineworld.Youcanfindtheirarticlesoncategories,fromcyber-crime,exploits,hackingandmalwareanalysis.
39.TrendMicroSimplySecurityTrendMicroSimplySecuritysiteoffersexpertinsightsoncloudsecurity,datasafety,privacyprotectionandthreatintelligence.40.WeLiveSecurityWeLiveSecurity,theEsetblog,isanonlineresourceforcybersecurityarticlesandthis
blogcoversalargenetworkofsecuritytopicsfromemergingonlinethreatstozero-dayexploits.
41.CSISSecurityGroupBlogThesecurityblogfromCSISSecurityGroupprovidesvaluableinformationonmalwareattacksandonlinethreats.Usingtheinternalresearchdatafromtheirownsecuritylabs,theirstudieshelpusersfightcyber-criminalthreats.
15ofthebestInternetsecurityblogsInordertokeepuptodate,IscandailyacrossanincrediblenumberofInternetorsecurityfocussednewssitesandblogs.IuseGoogleReadertoaggregatethepostsandfacilitateeasyaccesstothemallinoneplace.Itseems,however,thatthearticlesIdigintoarealwaysfromthesamesites.I’dliketoshareahandfulofthosesiteswithyoutoday.Mostyouwillprobablybefamiliarwith,thoughsomemaybeunknown.I’dhighlyrecommendaddingthemalltoyourRSSreaderifyouhaveone.
Thesitesarepresentedinalphabeticalorder.I’vechosen15intotal.Darknet–TheDarksideDarknetwaslaunchedin2006butitsoriginslieinanetworkoffriendsthatfirstformedonEFNetIRCin1999.Withthetagline“Don’tlearntoHACK,hacktoLEARN”,thesiteisnowablogthatcoversEthicalHacking,PenetrationTestingandComputerSecurity.Itfeaturesexcellenttoolreviews,analysisofnewvulnerabilitiesandcommentontopicsinthepress.
DarkReadingDarkReadingisa“securitydashboardforITprofessionalswhodon’thavethetimeortheluxuryofcombingwirefeeds,multiplebugfeeds,orvendorWebsitestofindoutwhat’sneworhowwellitworks”.ItcombinesuptotheminutenewsfromavarietyofsourceswithexcellentanalysisfromaseriesofblogsliketheexcellentEvilBytesbyJohnSawyer.
DanchoDanchevDanchoDanchev’sblogcontainsindepthtechnicalanalysisofthelatesttechnicalsecuritytrendsandmalwarethreats.Danchevisaspecialistinopen-sourceintelligence(OSINT),gatheringintelligencefromthewebonthepersonalitiesbehindcurrentthreats.Healsospecialisesinsarcasm.DanchevalsocontributestoZDNet’sZeroDayblogwithRyanNarainefromThreatpost(seebelow).
TheFirewallatForbesWe’vebeenfollowingOpenSourceIntelligence(OSINT)expertJeffreyCarrthroughanumberofhisproject.Heauthoredanextremelyinsightfulblog–IntelFusion–beforelaunchingtheGreyGooseProject,aninitiativethatinvestigatedinstancesofstate-on-statecyberwarfarebyfusingallavailableopensourceintelligence.Wiredcoveredthelaunchofthereport.Havinglaunchedacommercialconsultancyoffthatbackofthatwork,he
hasswitchedhisbloggingeffortstoTheFirewallblogatForbes,wherehejoins54othercontributors.Theblogisanewsservicewithastrongfocusongovernment,particularlycybersecurityasatoolofforeignpolicy.
F-SecureWeblogMikkoH.HyppönenistheChiefResearchOfficeratInternetsecurityfirmF-Secure.Histeamofsecurityresearchers–personnelresponsibleforanalyzingvirus,phishing,spyware,andspamattacks–contributetotheF-SecureWeblog.Thetopicscoveredarebroad–tools,techniques,botnetanalysis,comment–andallthepostsareeasilyaccessiblefornon-technicalreaders.
JeremiahGrossmanJeremiahGrossman,aformerITSecurityOfficeratYahoo!,istheFounderandChiefTechnologyOfficerofspecialistwebsitesecurityconsultancyWhiteHatSecurity.Grossman,atechnicalresearchanddevelopmentspecialist,isaregularspeakeratindustryeventsandisaleadingcommentatorinthemainstreammedia.Hisblogarticlesarebasedonhiscutting-edgetechnicalanalysisofwebbrowserandwebsitevulnerabilities.
PaulDotComNoreadinglistwouldbecompletewithoutreferencetoPaulAsadoorianandcompanyoveratpauldotcom.com.Aweeklypodcastratherthanablog,PaulDotComfeaturesthelatestnews,indepthtechnicalsegmentsandplentyofhumour(andbeer).HeisjoinedbyLarryPesce,JohnStrand,MickDouglasandCarlosPerez.
RationalSurvivabilityAregularkeynotespeakerandindustrycommentator,ChrisHoffspecialisesin“emerginganddisruptiveinnovationandwhatitmeanstosecurity”.AtthemomentthatmeansCloudSecurityandVirtualisation.Infact,HoffiscurrentlyDirectorofCloud&VirtualizationSolutionsoftheSecurityTechnologyBusinessUnitatCiscoSystems.RationalSurvivabilityisessentialreadingforanyteammakinguseofemergingtechnologiesintheenterpriseandwhowantstounderstandtherisksassociatedwiththem.
Hisbioisworthareadtoo.SANSInternetStormCenterTheInternetStormCenterisaSANSprojectthathasbeenrunningsince2001havingbeenformalisedfollowingthesuccessfuldetection,bySANSIncidentHandlers,oftheLi0nworm.Thehandlershadisolatedthewormandbegunanalysiswithin3hoursoftheoutbreak,andhadreleasedadiagnostictoolandinformedtheFBIwithin14hours.Withthissuccessasitsjustification,theISCwascreatedwitharemittospotsimilarattacksandprovideaglobalwarningservice.TheISCDiaryispopulatedwiththereal-timeanalysisofthevolunteerduty“handlers”whomonitorfeedscominginfromSANS’DShieldworldwidesensornetwork.
SchneieronSecurity
BruceSchneieristheauthorofAppliedCryptography(and10otherinternationallybestsellingbooks),creatoroftheBlowfishencryptionalgorithm(whichhasneverbeenbroken),authoroftheCrypto-gramnewsletter(with150,000subscribers),aregularcontributortoWiredMagazineand,ifallthatisnotenough,isalsoChiefSecurityTechnologyOfficerforBritishTelecom.Schneierdescribeshisinterestsasanevolvingseriesofgeneralisations–frommathematicalsecuritytocomputersecurity,fromcomputersecuritytogeneralsecurityandnowtothepsychologyofsecurity.SchneieronSecuritycontainsessays,commentandlinkstointerestingarticleselsewhereontheweb.Itshouldbeatthetopofyourlist,withnoexceptions.
SecurelistSecurelist(formerlyviruslist)isawebsitemanagedbyanti-virusvendorKaspersky.Itcontainsarticlesoutliningcommonthreats,indepthanalysisofmalware,viruses,theundergroundeconomyandtrends,andaregularlyupdatedblog.Anybodycancontributetotheblog,butyouhavetohaveover100points,gainedthroughsubmittingcommentsthatarevotedforbyreaders.ThereisalsoarefreshinglytechnicalPDFmagazine–SecureView–thatcanbedownloadedfromthesite.
SecurosisSecureosisisacommercialconsultancyspecialisingininformationsecurityresearchandstrategy.TheirblogcoversabroadrangeofsecuritytopicsandfeaturesareallyusefulFridaysummarywithlinkstofavouritewebcasts,podcasts,blogarticles,researchreportsandnewsarticlesfromthepreviousweek.
TAOSecurityRichardBejtlichistheauthorof‘TheTAOofNetworkSecurityMonitoring’,wherehelaysoutaholisticapproachtomonitoringanetworkforsecurity.Hisblogspecialisesinincidentresponseandnetworkforensics,thoughhealsowritesregularlyoncyberweaponsandcyberwarfare.
ThreatpostThreatpostisanewsserviceofferedbyKasperskyandismanagedbyDennisFisherandPaulRoberts,ablyassistedbyRyanNaraine.TheThreatpostteamscourthewebforthelateststoriesandaggregatethemintoasinglefeedofnewsandexpertcommentary.ThesiteoffersserviceinEnglish,SpanishandPortugese.
ZeroInABitZeroInABitistheZeroDayLabsBlogfromVeracode,anInternetRiskManagementconsultancy.Itisn’tupdatedveryregularly,butwhenitis,thearticlescoverabroadrangefromlegalandcomplianceissuestomobilemalware.
Top100+CyberSecurityBlogs&InfosecResources#1CIOResourcesrelatedtoinformationsecurity,includingnewsandopinionandmoreon
softwareandapplicationflawsandfixes,databreaches,theinsidethreatthelatesthackerattacks.
#2TechRepublic–SecurityTechRepublichelpsITdecision-makersidentifytechnologiesandstrategiestoempowerworkersandstreamlinebusinessprocesses.Theirsecuritysectiondivesintothelatestthreatssurroundingcybersecurity.
#3USCertUS-CERT’smissionistoimprovethenation’scybersecurityposture,coordinatecyberinformationsharing,andproactivelymanagecyberrisks.#4Wired’sThreatLevelPrivacy,crime,andonlinesecurityarethetopicsthatcarrytheheadlineshere.You’llfindeverythingfromopinionatedpieces,tothelatestthreatalerts.#5ZeroDayfromZDNetStayingontopofthelatestinsoftware/hardwaresecurityresearch,vulnerabilities,threatsandcomputerattacks.TheZeroDayblogonZDNetisamustforanyonekeepingtrackoftheindustry.
#6CERIASSecurityBlog
TheCenterforEducationandResearchinInformationAssuranceandSecurityblogiswhereGeneSpaffordshareshisexpertise.It’scalledthecenterformultidisciplinaryresearchforareason.
#7CSOOnline
Areasoffocusincludeinformationsecurity,physicalsecurity,businesscontinuity,identityandaccessmanagement,losspreventionandmore.
#8DarkReading
DarkReadingisacomprehensivenewsandinformationportalthatfocusesonITsecurity,helpinginformationsecurityprofessionalsmanagethebalancebetweendataprotectionanduseraccess.
#9GoogleOnlineSecurityBlog
ThisisGoogle’sownsecurityblog,whichfocusesonallofthelatestdevelopmentsinthesecurityworld.GetthelatestnewsandinsightsfromGoogleonsecurityandsafetyontheInternet.
#10RedTapeChronicles
NBCNewsRedTapeChroniclesbringsyounewsstoriesandinformationonthelatestdevelopmentsinthecybersecurityspace.Findtopicsthatrangefromprivacytosecurity.
#11InformationWeekSecurityYoucanexpectallofthelatestnewsandzerodayalertsfromthisITsecuritynewssite.Thecontentisupdateddailyandisamajornewssourceforeverythingtodowithcybersecurity.
#12InternetStormCenterTheInternetStormCentergathersmillionsofintrusiondetectionlogentrieseveryday,fromsensorscoveringover500,000IPaddressesinover50countries.#13SchneierOnSecurityBruceSchneierisaninternationallyrenownedsecuritytechnologist,andcalleda“securityguru”byTheEconomist.Heknowshisstuffandisavoiceinthecybersecurityindustry.
#14SecurelistCyberSecurityBlogThisisanotherKasperskyLabwebpropertythatfocusesonmalware,phishing,andthecybersecurityindustry.Thereisnoshortageofinformationandnewsonwhat’shappeninginthecyberworld.
#15SymantecWeblogTheSymantecWeblogusesglobalresearchtoprovideunparalleledanalysisofandprotectionfrommalware,securityrisks,vulnerabilities,andspam.#16TheGuardian’sInformationSecurityHubTheGuardianisarespectful,globalmediacompanythathighlightsissuesacrossmanyareas.TheirInformationSecurityHublivesuptothecoveragetheyofferinotherareasandfocusesonsecurity.
#17ZoneAlarmCyberSecurityBlogInformationonmalwareandprotectingyourselfonline.Frommalwarealertstopracticalonlinesecuritytips,theZoneAlarmblogwillkeepyoubriefedonthelatestindustrynews.
#18BHConsulting’sSecurityWatchBlogBHConsulting’sSecurityWatchBlogwasformedtoregular,informedwithcontentdetailingeverythingyouwouldwanttoknowaboutinformationsecurityandwebthreats.
#19ContagioMalwareDumpContagioisacollectionofthelatestmalwaresamples,threats,observations,andanalyses.Getinformed,technicaleducationonthenewestformsofmalware.#20CyberCrime&DoingTimeCyberCrime&DoingTimeiaablogaboutcybercrimeandjusticerelatedissues.GaryWarnerfromMalcoveryownsthisblogandoffersupeducationalandengagingpostson
thelatestthreats.
#21DavidLacey’sITSecurityBlogDavidLacey’sITSecurityBlogoffersthelatestideas,bestpractices,andbusinessissuesassociatedwithmanagingsecurity.TheblogishostedonComputerWeekly.com.
#22DellSecureWorksDellSecurework’sSecurity&Complianceblogisdedicatedtoprovidingup-to-datenewsandinformationtohelpITprofessionalsandotherskeeptheirbusinesssecureonline.
#23F-SecureSafe&SavvyBlogSafeandSavvyblogsabouthowtoprotectyouronlinelifeandtheirreplaceablecontentonyourcomputer.Theywriteaboutreal-lifeexperienceswhileprovidinghelpfultipsonsecurityissues.
#24FoxITSecurityBlogInformationtechnologyisthemaintopicontheFoxITsecurityblog.Fromnewstoopinions,FoxITprovidesexcellentcontentforanyoneinterestedintechnologyandsecurity.
#25FortinetBlogTheFortinetcybersecuritybloghassomethingforeveryone.Therearearticlesonsecurityresearchandindustrytrends,aswellas,ahealthysectionfocusingentirelyonSecurity101.
#26HelpNetSecurityHelpNetSecurityhasbeenaprimeresourceforinformationsecuritynewssince1998.Thesitealwayshostsfreshcontentincludingarticles,newproductreleases,latestindustrynews,podcastsandmore.
#28InfosecurityMagazineWhatmorecanyouaskfor?It’sanonlinemagazinededicatedentirelytothestrategy,insight,andtechniquesthatareadailypartofthecybersecurityindustry.#29KrebsOnSecurityBrianKrebsisthefaceofcybersecurityjournalism.AsaformerwriterfortheWashingtonPost,Krebsisabletotakeisskillsasaninvestigativejournalisttothetaskandprovidethemostin-depthcoverageofsecurity.
#30MalwarebytesMalwarebytesisattheforefrontofmalwareprotection,whichmakesthistheperfectblogtostayup-to-datewiththelatestzerodaythreatsandcybersecuritynews.#31McAfeeSecurityBlog
TheMcAfeesecurityblogtalksaboutresearchandthreatanalysis,aswellas,providesknowledgeableinsightintomalwareandzerodaythreatsthatplaguebusinessesandconsumers.
#32MicrosoftMalwareProtectionCenterTheMicrosoftMalwareProtectionCenter(MMPC)iscommittedtohelpingMicrosoftcustomerskeeptheircomputerssecure.TheMMPCstaysagiletocombatevolvingthreats.
#32NakedSecurityNakedSecurityisSophos’saward-winningthreatnewsroom,givingyounews,opinion,adviceandresearchoncomputersecurityissuesandthelatestinternetthreats.
#33NetworkComputingNetworkComputing’scontentadherestothevaluable“ForIT,ByIT”methodology,deliveringtimelystrategy&tactics,news,in-depthfeatures,expertreviews,andopinionatedblogs.
#34SANSInstituteAppSecBlogSANSSoftwareSecurityfocusesthedeepresourcesofSANSonthegrowingthreatstotheapplicationlayerbyprovidingtraining,certification,research,andcommunityinitiatives.
#35SCMagazineSCMagazinearmsinformationsecurityprofessionalswiththein-depth,unbiasedbusinessandtechnicalinformationtheyneedtotacklethecountlesssecuritychallengestheyface.
#36SearchSecuritySearchSecurityprovidesimmediateaccesstobreakingindustrynews,virusalerts,newhackerthreatsandattacks,securityandcertificationtrainingresources.#37SecuringTheHumanSANSisthemosttrustedandbyfarthelargestsourceforinformationsecuritytrainingandsecuritycertificationintheworld,whichmakestheirblogamustreadforsecurityprofessionals.
#38SecurityWatchNeilRubenkingheadsthechargeonPCMag’sSecurityWatch.Hisstyleiswittyandhepostfrequently,soyou’llalwaysfindsomethingworthwhiletoread.#39StopBadwareBlogStopBadwareisanonprofitanti-malwareorganizationwhoseworkmakestheWebsaferthroughtheprevention,mitigation,andremediationofbadwarewebsites.#40SucuriBlogSucuriknowsallaboutmalwareandWordPresssecurity.It’swhattheydo.You’llfindno
shortageofexpertadviseonhowtosecureyourWordPresssiteandkeepitmalware-free.
#41TaoSecurityRichardBejtlich’sblogondigitalsecurity,concentratingonglobalchallengesposedbyChinaandothertargetedadversaries.Definitelyablogthathasbeenafixtureinthesecuritycommunity.
#42TechworldSecurityThecybersecuritysectiononTechworld.comcoversnewsonthelatestthreatsandzero-dayexploits.Theyalsoofferanabundanceoftopicsrangingfromsecuritytohow-tos,aswellas,technologyreviews.
#43TheHoneynetProjectTheHoneynetProjectmembersengagethebroadersecuritycommunityandeducatethepublicaboutthreatstosystemsandinformation.#44ThreatpostThreatpost,TheKasperskyLabsecuritynewsservice,isanindependentnewssitewhichisaleadingsourceofinformationaboutITandbusinesssecurityforhundredsofthousandsofprofessionalsworldwide.
#45ThreatTrackSecurityThreatTrackSecurity’sITbloghasitsthumbonthepulseoftheindustry.WhetheryouareintheITindustryornot,ifyouareinterestedinsecurity,thisblogisforyou.#46TrendMicroSimplySecurityTrendMicroSimplySecurityoffersindependentnewsandviewsaswellasexpertinsightfromTrend’ssecurityexperts.Thesitecoverstopicsrangingfromcloudsecurity,dataprotection,securityandprivacy.
#47VeracodeBlogVeracodeSecurityBlog:Applicationsecurityresearch,securitytrendsandopinions.Everythingyouwanttoknowaboutifyouworkininfosecoronline.#48UnmaskParasitesBlogUnmaskParasitesfocusesonreviewingthelatestsecuritythreats,zerodays,andexploits.Thereiseverythingfromsecurity-relatednews,toinformationonkeepingyoursitesecureandmalware-free.
#49WeLiveSecurityWeLiveSecurityisasiteaboutresearchandinformation,notproducts.WeLiveSecurity’swritersrepresentthecreamofESET’sresearchersandwriters.Theydeliverin-depthresearchandanalysisonsecurity.
#50XyliboxSecurityBlogTrackinganddemystifyingcybercrimeiswhathappenshere.Theauthorneverfailsto
produceconsistent,detailedbreakdownsofthelatestmalwareandsecuritytools.PR5#51BankInfoSecurityBankInfoSecurityisamulti-mediawebsitepublishedbyInformationSecurityMediaGroup,Corp.(ISMG),acompanyspecializingincoverageofinformationsecurity,riskmanagement,privacyandfraud.
#52CyveillanceBlogFromsophisticatedDDoSbotnetattackstophishing,theCyveillanceblogwillkeepyouup-to-datewithbreakingcybersecuritynewsandinformationoneverythingrelatedtowebthreats,malwareandsecurity.#53Forbe’sFirewallForbe’sFirewallcoverscybersecuritynewsandinformationonthelatestexploitsandtrendsaffectingtheindustry.Thearticlesareonpointandinformative,withthequalityyoucanexpectfromForbes.
#54GovInfoSecurityGovInfoSecurityisamulti-mediawebsitepublishedbyInformationSecurityMediaGroup,Corp.(ISMG),acompanyspecializingincoverageofinformationsecurity,riskmanagement,privacyandfraud.
#55GrahamCluley’sSecurityBlogGrahamCluleyisanawardwinningcybersecuritybloggerandindependentcomputersecurityanalyst.Hisblogreflectshisknowledgeandexperienceintheindustry.
#56GRC’sSecurityNowPodcastSecurityNowisaweeklypodcasthostedbySteveGibsonandLeoLaporte.TheshowissponsoredbyGibsonResearchCorporation,acompanyspecializingindatarecoveryandsecurity.
#57HotforSecurityThisblogcoversthesizzlingworldofcomputersecurity.You’llfindplentyofsteamystoriesfromthedynamicworldofinternetfraud,scams,andmalware.#58ImpervaBlogFromanalystreportstocasestudies,toblogpostsandwhitepapers,theImpervablogkeepsstepwiththelatestmalwareandsecuritythreats.You’llfindinformationonDDoS,malware,andzerodaythreats.
#59ITKnowledgeExchange–SecurityBytesWrittenbythestaffofSearchSecurity.comandInformationSecuritymagazine,SecurityBytescoverstopicsacrossthespectrumofsecurity,privacyandcompliance.#60ItProPortal.comITProPortal.comwasoneoftheveryfirsttechnologywebsitestolaunchintheUKbackin
1999andhasgrowntobecomeoneoftheUK’sleadingandmostrespectedtechnologyinformationresources.
#61LennyZeltserOnInformationSecurityThisblogbyLennyZeltserfocusesoninformationsecurity.Lennyisabusinessandtechleaderwithextensivehands-onexperienceinITandinformationsecurity.#62NetworkSecurityBlogwithMartinMcKeayOneman’sviewsonsecurity,privacy–andanythingelseforthatmatter.Trends,information,news:you’llfinditallontheNetworkSecurityblog,andwhat’smoreisit’sdeliveredwithstyle.
#63PandaLabsCyberSecurityBlogThisblogcoverseverythingyouneedtoknowaboutinternetthreats.ThePandaLabsblogkeepsyouabreastofthelatestdevelopmentsincybersecurity.#64PaulDotComPaulDotComSecurityweekly’smissionistoprovidefreecontentwithinthesubjectmatterofITsecuritynews,vulnerabilities,hacking,andresearch.#65Privacy&InformationSecurityLawBlogTheviewsofonemanonsecurity,privacyandanythingelsethatcatcheshisattention.SecurityexpertMartinMcKeaytalksaboutmalware,privacyandsecurityonthisblog.
#66RationalSurvivabilityHoff’sramblingsaboutinformationsurvivability,informationcentricity,riskmanagementanddisruptiveinnovation.HoffwasaCISSP,CISA,CISMandNSAIAM,henowspendstheAMFmoneyoncoffee.
#67RiskyBusinessRisky.bizisanothersecuritypodcastthatfocusesoncoveringrecentdevelopmentsincybersecurityandthethreatlandscape.Theshowhasbeenaroundsince2007,andtakesalightapproachtosecuritynews.
#68RootLabsRDISTTheirresearchprovidescutting-edgeinsightintosolvingtoughsecurityproblems.Therearecountlessarticlesonthelatestcybersecuritytrendsandthreats.#69SeculertBlogTheSeculertblogisasecurityblogwithafocusonAdvancedPersistentThreatsandmalware.Thereisnoshortageofnetworksecuritytipsandinsiderinformationonthelatestzerodays.
#70SecurityStreetbyRapid7Rapid7providesvulnerabilitymanagement,complianceandpenetrationtestingsolutionsforwebapplications,networkanddatabasesecurity.Theircommunity,SecurityStreetcoversalloftheseissues.
#71SecurosisBlogSecurosisistheworld’sleadingindependentsecurityresearchandadvisoryfirm,offeringunparalleledinsightanduniquevaluetomeetthechallengesofmanagingsecurityandcomplianceinaWeb2.0world.
#72SilverSkyAltitudeBlogSilverSkyisacloudsecurityservicesproviderwithalotofknowledgeintheindustry.Theirblog,theAltitudeblog,isupdatedregularlywithnewsandinformationeverysecurityprofessionalshouldbeawareof.
#73SpiberLabsSecurityBlogSpiderLabsisaneliteteamofethicalhackers,investigatorsandresearchersatTrustwaveadvancingthesecuritycapabilitiesofleadingbusinessesandorganizationsthroughouttheworld.Thesitecoversthelatestsecuritynews.
#74Social-Engineering.orgSocial-Engineering.orgisacybersecurityblogthatcoversawiderangeofsecurityrelatedtopics.Thesiteisalsohometoapodcastandateamofsecurityprofessionalswhosharetheirexpertiseonallthingssecurity.
#75TheSecuritySkepticTheSecuritySkepticblogsaboutallmattersrelatedtoInternetSecurity,fromdomainnames(DNS),firewallsandnetworksecuritytophishing,malwareandsocialengineering.
#76ThoughtCrimeCyberSecurityBlogMoxieMarlinspike’sblogcoverscomputersecurityandsoftwaredevelopment,particularlyintheareasofsecureprotocols,cryptography,privacy,andanonymity.#77TroyHunt’sBlogSoftwarearchitectandMicrosoftMVP,you’llfindTroyHuntwritingaboutsecurityconceptsandprocessimprovementinsoftwaredelivery.Thequalityofcontentfoundheremakesthisblogworthvisiting.
#781RaindropGunnarPetersonweaveshisthoughtsondistributedsystems,security,andsoftwaretogetheronhisblog1Raindrop.Theblogisbothinformativeandinsightful,andthecoverageisonpoint.
#79AndrewHay’sCyberSecurityBlogAndrewHayistheDirectorofAppliedSecurityResearchandChiefEvangelistatCloudPassage,Inc.Thisishispersonalblogwherehetalksaboutsecurityandothernews.
#80CarnalOwnage
CarnalOwnageisamuststopforsecurityresearchersandhackersalike.Thiscybersecuritybloggoesintoexcruciatingdetailonattackmethodologyandhighlightsthethreatsyourorganizationshouldbeawareof.
#81CommandLineKungFuThisblogcoversfun,useful,interesting,securityrelated(andnon-securityrelated)tipsandtricksassociatedwiththecommandline.FindtipsonOSX,LinuxandWindows.
#82DanchoDanchev’sBlogThisblogcoverstrendsandfads,tacticsandstrategies,intersectingwiththird-partyresearch,speculationsandreal-timeCYBERINTassessments,allpackedwithsarcasticattitude.
#83DarknetDon’tLearntoHACK–HacktoLEARN.That`sthemottoatDarknet.Thesitecoversethicalhacking,penetrationtesting,andcomputersecurity.Learnaboutinterestinginfosecrelatednews,toolsandmore.
#84ErrataSecurityErrataSecurityisateamofdedicatedsecurityresearchersthatpracticeoffensivesecurity.Theinsightgainedfromresearchisdeliveredontheblog,whichcoversavarietyoftopicsandrealworldscenarios.
#85ExoticLiabilityChrisNickersonandRyanJonestakeitupanotchintheircybersecuritypodcast.Theyroutinelythumbtheirnoseatthetypicalindustryrhetoricandofferinsightandcommentaryyouwon’thearanywhereelse.
#86HackSurferHackSurferwasformedbyagroupofbusinessmenandwomen,engineers,mathematicians,linguistsandinformationanalystswithapassionformakingsimple,powerfuluseofbigdata.
#87InfoSecInstituteResourcesTheInfoSecInstituteresourcessectionhasabroadselectionofcontentandresearchoncybersecurity,threats,andofcourse,infosec.You’llalsofindtutorials,trainingvideosandmore.
#88J4vv4DSecurityBlogJavvadMalikhasworkedininformationsecurityforhisentirecareerandcoversdifferentaspectsofsecurityonhisblog,J4vv4D.HealsoregularlyoffershisinsightthroughentertainingandinformativeYouTubevideos.
#89LiquidMatrix
Inaworldthatseemstobelosingthenotionofjournalism,LiquidmatrixSecurityDigestremainscommittedtolongformarticlesthatdigintothemajorissuesaffectingtheindustrywithFeaturearticles.
#90MalcoverySecurityBlogThisisMalcoverySecurity’scontributiontotheknowledgebaseofinformationsecurityissues.Theyproviderelevantinsightandopinionsonallofthenewestthreatsfacedbytheindustry.
#91MalwareDon’tNeedCoffeeMalwareDon’tNeedCoffeeisacybersecurityblogthatfocusesonmalwareresearchandprovideseducatedcommentaryonallthelatestexploitsandsecuritybugs.Thesitecoversresearchinallareasofnetworksecurity.
#92McGrewSecurityBlogWesleyMcGrewunderstandssecurityandthenatureoftoday’sdigitallandscape,especiallyitsimpactoninfrastructureandbusinesssecurity.Hisblogcoversalloftheimportantcybersecuritystuff.
#93NetworkSecurityPodcastSince2007,theNetworkSecurityPodcasthasbeendishingoutthedirtoncyberthreatsandsecurityissuesfacedbytheindustry.It’sagreatresourceifyouwanttohearadiscussiononwhat’shappeningininfosec.
#94NewSchoolSecurityThisblogisinspiredbythebookandthemovementtowardsaNewSchool.TheNewSchoolofInformationSecurityisabookbyAdamShostackandAndrewStewart,publishedin2008.
#95NoVAInfosecFoundedinJanuaryof2008onaSaturdayevening,NovaInfosec.comisdedicatedtothecommunityofNorthernVirginia-,Washington,DC-,andsouthernMarylandbasedsecurityprofessionals.
#96PacketPushersPodcastThePacketPushersPodcastoffersdeeplytechnical,hardcorediscussionsonthelatestsecuritytrends.Co-hostsGregFerroandEthanBanksleadtheshowwiththeirmanyyearsofnetworkengineering.
#97SecurityAffairsPierluigiPaganiniisacompanydirector,researcher,securityevangelist,securityanalystandfreelancewriter.HisblogSecurityAffairsstaysabreastofallthelatestincybersecurity.
#98SecurityBistroSecurityBistroiswheresecurityexpertscometogetherforgoodtalk,informationonthelatestingeniousthreatsand,onehopes,thelatestcleverwaystocounterthem.#99SecurityGeeksFindtipsoncomputersecurity,choosingapasswordproperly,andotherpracticalonlinesecuritytips.Noshortageofinterestingcontentcirclingthetechnologyspacehere.#100SecurityMusingsGeminiSecuritySolutions,Inc.isaninformationsecurityconsultingfirmthatappliescreativity,passion,andinsighttodefendagainsttoday’sgrowingthreats.Theirblog,SecurityMusings,coverseverythingsecurity.
#101SecurityUncorkedJennifer(Jabbusch)MinellaakaJJisanetworksecurityengineerandconsultantwith15yearsofexperience.Shesharesherknowledgeoninfoseconherblogandoffersplentyofinformationonthelatestsecuritytrends.
#102S!Ri.URZThisbloghasbeenonthecybersecurityscenesinceasfarbackas2006.Theblogcoversmalware,rogues,ransomewareandeverythingelserelatedtocybersecurity.#103TheAShimmyBlogStillSecureAfterAllTheseYears.com(yes,areallylongdomain!)istheAShimmyBlog,AlanShimel’spersonalbloggerblogonsecurity,work,andfamilylife.#104TheFalcon’sViewBenTomhaveisasecurityprofessionalthathasservedtheindustryinavarietyofrolesandsecuritypositions.Thisisreflectedinhiswritingandtheknowledgesharedonhiscybersecurityblog.
#105TheHarmonyGuyYou’llfindlinksandcommentaryrelatedmostlytoonlineprivacyandsecurity,particularlywithsocialnetworking.Theblogstartedbackin2007andhasbeengoingeversince.#106TheSouthernFriedSecurityPodcastTheSFSPodcastisdesignedtobeaninformationsecuritypodcastthatfillsthegapbetweentechnicalsecuritypodcastsandSecurityNow.Thispodcastoffersrespectfulinsightonthestateofsecurity.
#107UncommonSenseSecuritySmallbusinessinformationsecurityhasbeenanoxymoronfortoolong.UncommonSenseSecurityisattemptingtochangethat.Theblogisentertaining,andinformativeatthesametime.
#108AndyEllis—ProtectingABetterInternet
AndyEllisistheChiefSecurityOfficerofAkamaiTechnologies.Opinionsherearemostlyhisown.Hisblogdivesintotheissuescenteredaroundcybersecurityandtechnology.
#109DHSDailyReportAU.S.ArmyRetiredChiefWarrantOfficerwithmorethan40yearsininformationtechnologyand35yearsininformationsecurityleadsthechargeonthisblog,offeringdailynewsontheindustry.
#110ITSecurityExpertbyDaveWhiteleggTheUKbasedITSecurityExpertblogbyDaveWhiteleggCISSPCCSPprovidinggeneralInformationSecurityadvice&helpinsecuringthehomePC&homecomputeruser,aswellasbusinessITsystems.
#111ITSpecialistAvirtualcommunityofsocialnetworksforITprofessionalslocatedthroughouttheworld.Agreatwaytoconnectandcollaboratewithothersinthecybersecurityindustry.
#112MichaelPeters.orgMichaelD.Petershasbeenanindependentinformationsecurityconsultant,executive,researcher,author,andcatalystwithmanyyearsofinformationtechnologyandsharesthatinformationonhissite.
#113RivalhostSecurityBlogRivalhostisaDDOSmitigationcompanyandwebhostthattakesanactivestanceonupdatingtheircustomersandcommunitywithamixoftopicsontechnology,cybersecurity,andDDOS.
#114Rud.isSecurityBlogThisisaplacetocatchsomeopinesonaprettyweirdcombinationoftopics.You’lllikelyseetopicsrangingfromIT/InformationRiskManagementtoiOS,Node.js,andeverythingin-between.
#115SecurityXplodedBlogSecurityXploded–thecommunitydivisionofXenArmor–isapopularInfosecResearch&Developmentorganizationofferingfreesecuritysoftware,latestresearcharticlesandfreecybersecuritytraining.
#116ThomLangford’sPersonalSecurityBlogAninformationsecurityprofessional,awardwinningblogger,andindustrycommentator.ThomLangfordtalksabouttopicsrelatingtoinformationsecurity,riskmanagementandcompliance.
#117W.MarkBrooksITSecurityBlog
OnhiscybersecurityblogBrookstalksaboutmitigatingrisksandbusinessstrategiesastheyrelatetoIT.Thereisneveradullpostandtheauthorfindsplentyofinterestingsecuritytopicstodissect.
#118EthicalHackingEhacking.netexploresethicalhacking,penetrationtesting,andhacking.You’llalsofindawealthoftutorialsonBackTrackandotherpenetrationtestingtips.Anidealsiteforinformationsecurityresearchers.
#119ITSecurityColumnAnITsecurityblogthatfeaturesgeneralknowledgeofITsecurity,onlinecrimenews,andtipsonhowtodealwithonlineandcomputerthreats.Plus,listingsofinformationsecuritythreatsanddefenses.
#120KevinTownsend’sCyberSecurityBlogThissiteisaboutcomputerandinformationsecurity.ItismaintainedbyKevinTownsend,theoriginalfounderofITsecurity.comandafreelancejournalistandwriterwithmorethan10yearsexperience.
#121Psilva’sPropheciesPeterSilvacoverssecurityforF5NetworksTechnicalMarketingTeam.Withhistheatrebackgroundandknowledgeofsecurityhisblogmakesforaninterestingpitstopforsecuritynews.
#122WebsenseSecurityLabsWebsenseSecurityLabsdoesagreatjobofsharinginformationandinsightonthelatestcybersecuritynews.Theirbloghasbeenaroundsince’07.Thereisplentyofmaterialtodigthroughforresearch.
#123DDoSProtection&CyberSecurityBlogAblogthatcentersaroundthethreatposedbydistributeddenialofservice(DDoS)attacks.You’llfindanewssectionthatoffersasnapshotofthelatestsecuritytrends,aswellas,epicpostshighlightingtheindustry.
#124DaveWatersononSecurityDaveWatersonisanexperiencedITsecuritytechnologist,inventorofpatentedandpatent-pendingsecuritytechnologyintheanti-keyloggingandanti-phishingfields.#125FollowingTheWh1t3RabbitRafalLoshasbeenworkinginthedefensivesideofsecurityforover10years.Hisblog,FollowingTheWh1t3Rabbit,focusesonclearingtheconfusionaroundsecurityandofferingtoolstoimprovesecurity.
#126FireEyeBlog
FireEyehasinventedapurpose-built,virtualmachine-basedsecurityplatformthatprovidesreal-timethreatprotection.FireEyehasbeencalleda“hotsecurityfirm”—theirblogbacksthatup.
#127HowTheyHackHowTheyHackisageneraltechblogsurroundingthemesrelatedtohackingandnetworksecurity.Mostofthepostsarecenteredaroundtutorials,hackingnews,securityexploitsandtheauthor’sopinions.
#128Technology.infoTechnology.infocombinesthebestofITProPortal.comandIPEXPO,offeringaresourceforITprofessionalsandthoseinterestedinsecurity.Theboastsawidevarietyofinformationsecurityresearchandtopics.