Staying current in cybersecurity is crucial to proactively mitigate risks, ensure compliance, and make informed decisions in today’s rapidly changing digital landscape. Here are some resources to help you stay up-to-date with cybersecurity:
Feedly
Feedly (RSS Aggregator) is a free website that will collect news from different sources and put them all together in one place. Here are some sites to add to feedly:
- CISA Alerts
- BleepingComputer
- Dark Reading
- Security Affairs
- SecurityWeek
- The Hacker News
- The Register – Security
TLDR
Information Security News to Your Inbox. TLDR is a free service that sends you a recurring emails aggregating the news in various subjects for you. They have many different newsletters on various topics including information security.
SANS Cyber Security Summits
SANS Free Virtual Conferences. SANS summits take place often on a variety of subjects including AI, DFIR, Cloud, Threat Intelligence, etc. It is free to attend the summits online and if you miss them you can watch the recording. They also count for CPE. Their slack is also a great place to learn from others.
BrightTALK
Free Virtual Talks. BrightTALKs bring the speakers to you. Search for any subject and attend live or recorded talks on any subject including many Cybersecurity ones. Every month the Verizon Threat Research Advisory Center gives an update. They are a great talk to attend.
Verizon Business Page at BrightTALK
Podcasts
I’ve already compiled a list of podcast on this blog here is a link to that post.
Books
Here are some favorites of mine:
- Hacker and the State by Ben Buchanan. Packed with insider information based on interviews, declassified files, and forensic analysis of company reports, The Hacker and the State sets aside fantasies of cyber-annihilation to explore the real geopolitical competition of the digital age
- Countdown to Zero Day by Kim Zetter. Rather than simply hijacking targeted computers or stealing information from them, it proved that a piece of code could escape the digital realm and wreak actual, physical destruction—in this case, on an Iranian nuclear facility.
- Dark Wire by Joseph Cox. In 2018, a powerful app for secure communications called Anom took root among organized criminals. They believed Anom allowed them to conduct business in the shadows. Except for one thing: it was secretly run by the FBI.
- This is How They Tell Me the World Ends by Nicole Perlroth. One of the most coveted tools in a spy’s arsenal, a zero day has the power to silently spy on your iPhone, dismantle the safety controls at a chemical plant, alter an election, and shut down the electric grid (just ask Ukraine).
YouTube
There are so many YouTube channels doing a great job getting information out there. This is not an exhaustive list, but they are some of my favorites!
- Black Hills Information Security – A great channel. I especially love the weekly Talkin’ Bout [Inforsec] News series.
- SANS Institute – Yes, they are on Youtube as well. If you missed a summit it might be posted here. Lots of evergreen content posted on this channel too!
- David Bombal – David has two channels worth watching. His main channel and David Bombal Tech.
Other Networks
Blueksy – Read more about bluesky on this prior post. Here are the info sec starter packs.
LinkedIn – Here are some good folks to follow on LinkedIn.
Mastodon – Federated messaging service a la Twitter/X, with large infosec group on the infosec.exchange server.