Cybersecurity Resources That Help Me Stay Ahead
How to keep up with and stay informed about cybersecurity news and emerging threats
Greetings, Cyber Mavericks!
Welcome back! Today’s article is a continuation of a recent post I shared titled: ‘3 Mistakes Every Beginner Ethical Hacker Makes’.
In that piece, I emphasized the importance of continuous learning, self-development, and staying abreast of cybersecurity news and emerging threats.
Following the positive feedback from many of you expressing interest in the resources I use to stay updated, I’ve curated this list to share some of my top favorites.
Disclaimer: This post shares my go-to resources for staying updated on cybersecurity news, ethical hacking, and emerging threats. It’s not meant to be a comprehensive list, but a selection of my frequently used resources to keep up with the latest cybersecurity developments. Feel free to share your favorites if they’re not already on my radar!
Without further ado, here are my favorite cybersecurity news sources.
Cyber & Hacking News
THN is one of the favorite resources for the latest cybersecurity news and in-depth coverage of the latest trends. It is the top publication for breaking cybersecurity and hacking news, insights, and analysis for information security professionals.
Bleeping Computer is a large information security and technology news publication with millions of readers. It covers the latest security threats, technology news, online safety and privacy.
Security Week was created by industry professionals and a seasoned news team. It covers a wide portfolio of cybersecurity news such as malware, emerging threats, incident response, threat intelligence, cloud security, application security, IoT security, CISO insights, industry trends and analytics.
Dark Reading is one of the most widely read cybersecurity news platforms, providing comprehensive coverage of diverse topics such as IoT, cloud security, application security, threat intelligence, breaches, and analytics.
Blogs
Brian Krebs’ blog on cybersecurity is famous for not just breaking the news but making it as well. Krebs started his career as a reporter and his style is newsy and easy to read. Brian blogs about cybersecurity news and often gives highly informative analysis pieces about the specifics of attacks.
Post frequency: Every few days
Bruce Schneier is a renowned cybersecurity figure who made his name as an author and an expert in cryptography. His book ‘Applied Cryptography’ is considered a bible on the subject. Bruce shares invaluable insights on security matters on his blog, covering current events and offering valuable advice on various security topics, particularly government surveillance and encryption.
Post frequency: Often daily but not always
Graham Cluley is a respected cybersecurity expert, author, and speaker known for his insightful commentary. Graham is an Anti-Virus veteran who worked for the likes of Sophos and McAfee. Graham’s blog provides expert analysis, practical tips, and commentary on emerging threats, making it a valuable resource for cybersecurity professionals and enthusiasts alike.
Post frequency: Every few days
Emerging Threats
CrowdStrike needs no introduction. It is one of the top cybersecurity vendors known not only for its products but also for its thorough investigative research into all security trends, emerging threats, cyber breaches, as well as APT groups and tactics. This is a must-follow blog if you want to keep up with cutting-edge cyber and APT threats.
Naked Security was created by Sophos, the cybersecurity veteran involved in the industry since 1985. Their blog keeps on top of the latest news in information security, looking at new threats and vectors. They have some great insights into privacy and surveillance as well. The Sophos blog covers areas as diverse as law, privacy, data loss, and government security. It’s a very interesting read, and one to keep you on top of what’s going on across the cyber threat landscape.
YouTube
Hak5 is one of my favorite hacking gadgets vendors as well as YouTube content creators. ThreatWire is their “cyber and hacking news” publication. It is a weekly source of security, privacy, and internet freedom news. They often cover the latest threats or breaches.
🎥 Seytonic
Seytonic is my favorite channel for in-depth security and hacking news analysis. The presenter is highly knowledgeable and adept at dissecting cybersecurity-related tech news. Instead of offering soundbites, he dives into specific news events or cyberattacks, providing thorough analysis and insights.
CyberNews is an independent cybersecurity news provider. Their channel is dedicated to catching you up on all the recent cybersecurity topics and threats. A useful bonus is their “Explainer” playlist which gives you in-depth coverage and analysis of key cybersecurity topics.
David Bombal, a former Cisco instructor and networking expert, has transitioned into a popular YouTube content creator. His YouTube show and podcasts boast a large audience with content that covers Cybersecurity, Careers, Networking, Artificial Intelligence, and various other topics.
One standout aspect of his show is the insightful interviews with cybersecurity industry experts and authors, sharing their wisdom for beginners and professionals alike.
John Hammond stands out as one of the most passionate cybersecurity experts I’ve come across. He simply exudes genuine enthusiasm for both defensive and offensive cybersecurity, along with CTF challenges. His channel offers a treasure trove of knowledge spanning beginner to advanced topics in defensive, offensive, and CTF play. Truly an invaluable resource for cybersecurity enthusiasts at all levels.
X (Twitter)
🐤 Ken Munro — @TheKenMunroShow
Ken Munro, known as a car hacker, IoT destroyer, sock purveyor, and EV bore, is a cybersecurity maverick, genius hacker, and captivating showman. I’ve had the pleasure of attending some of his guest-speaking lectures at my university. Ken’s Pentest Partners exhibition stand at the InfoSec Europe expo is a must-visit, where he showcases his latest cool hacks and, of course, distributes his famous Pentest Partners socks. Who needs a free pen when you can have stylish pentester socks? 😆
🐤 Amanda Rousseau — @malwareunicorn
Amanda (a.k.a MalwareUnicorn) is an Offensive Security Engineer for the Microsoft Offensive Research and Security Engineering Team. She is a highly skilled Malware expert and a Reverse Engineer who presented at conferences such as BlackHat.
🐤 InfoSec Community — @InfoSecComm
InfoSec Community is the Twitter account of InfoSecWriteups.com, the largest InfoSec publication with 33k+ followers and 1M+ monthly views.
I spend hours on this resource every week, discovering content from cybersecurity professionals and Red Teamers.
Troy Hunt is a well-known and well-respected security researcher, the creator of the popular HaveIBeenPwned, a Microsoft Regional Director, and a Pluralsight author who often tweets about online security and technology. His tweets about recent breaches are not to be missed.
Gabrielle is a pentester, cybersecurity blogger, and podcaster who’s been named one of the top 20 women in cybersecurity in Canada in 2020.
Gabrielle focuses her efforts on democratizing information security for all, and frequently shares free resources for most cybersecurity disciplines.
I have certainly found many of her “free resources” posts very useful.
Elli Shlomo is a cloud security researcher, threat hunter, IR expert and a Microsoft Security MVP who regularly shares very useful Azure and cloud security resources.
Burcu Yarar is a Cybersecurity expert and a SynACK Red Team member who is passionate about offensive security. She frequently shares penetration testing, red teaming and blue teaming resources on her LinkedIn page.
John Strand is the owner of Black Hills Information Security (BHIS) and a Senior Instructor at the SANS Institute. Among instructors, John stands out as a true infosec superstar. Having personally participated in many of his online courses, I can attest to his passion for educating the masses and his ability to keep things authentic.
Joas A. Santos is an expert Red Teamer, author, exploit developer and educator. He frequently shares valuable resources as well as insightful articles on his LinkedIn.
💎 Daily REDTeam
Daily RedTeam shares a wealth of valuable insights and cybersecurity resources for Red Teamers and Penetration Testers.
Podcasts
Average episode length: 40 to 70 minutes
Host: Jack Rhysider
Frequency: 1 to 2 episodes per month
Darknet Diaries is based on true stories from the dark web. Stories revolve around hacking, data breaches and cybercrime, and the narrative is easy to follow for both technology experts and novices alike. This podcast has received a lot of acclaim due to its investigative nature and currently has more than 200,000 listeners.
Average episode length: 100 minutes
Hosts: Steve Gibson and Leo Laporte
Frequency: Weekly
Tech experts Steve Gibson and Leo Laporte keep listeners up to date on cybersecurity and the latest cyber-attacks with a comedic spin.
This podcast also brings in a historical perspective while dissecting and examining cybersecurity topics such as malware, data privacy, encryption and device security.
Average episode length: 30 minutes
Hosts: Brian Johnson
Frequency: Weekly
7 Minute Security is a weekly podcast that has been running for more than 7 years and 600+ episodes focusing on penetration testing, blue teaming, and building a career in security.
Average episode length: 54 minutes
Hosts: Graham Cluley and Carole Theriault
Frequency: Weekly
Smashing Security is a humorous discussion about hacking, online privacy, and other cybersecurity vulnerabilities. It has received more than 8 million downloads and has earned the Best Security Podcast title at the European Cybersecurity Bloggers Awards in 2018 and 2019, as well as the Most Entertaining award in 2022. Past notable guests on this podcast have included Rory Cellan-Jones, Mikko Hyppönen and Garry Kasparov.
Average episode length: 10 minutes
Host: Daniel Miessler
Frequency: Weekly
Unsupervised Learning caters to security experts and novices alike. It’s a 10-minute weekly update on the most crucial and latest news on cybersecurity, technology and society. Analysis, original ideas and the best links from around the web are all included in this podcast.
Conclusion
I hope this list has given you some useful ideas or introduced you to new resources. Please feel free to share your favorites if they’re not listed here — I’m always eager to discover new cybersecurity experts, blogs, or news sites.
If you’ve found this list helpful, consider following my blog and subscribing to receive notifications 🔔, and let me know what type of content you’d like to see more of in the comments section.
Your input and support are always appreciated!
