Security News Analyzed

Updated page 10/19/2018

Security news must be kept up, here is a list of top websites, blogs, ezines, and more.  Interaction and review is critical to learn more about security.

Modified link in reddit. (#5)

%first-second-third-fourth% value- fifth%

  1. Cybersecurity value (subjective (my prerogative) (first value)
  2. Industrylinks (‘Cybersecurity’ keyword) ( second value)
  3. Industry links (Google ‘news on vulnerability and exploits’ keyword )  ( third value)
  4. Recent updates frequency   (4th value)
  5. video/audio(podcasts) relevance my subjective value – I am giving Irongeek.com a 10 and going down from there, but these are initial values, Changed these values in June 1, 2018

%1-2-3-4-5=total%

Top informational sites 1-10

1.  Threatpost  has many good posts.  %9-8-9-10-5=41%  good value and good Google rankings, some video
2.  Dark reading is an InformationWeek Security blog with good Security topics updated frequently  %9-8-8-10-3=38% good value and high Google rankings with some video
3Internet Storm Center  SANS: an Industry leader in Security certification and training – the place to go to work on technical skillsets within Cybersecurity and this is their daily log of current events. Although not much “news” according to Google search, analysis is very good and frequent updates with decent podcasts good frequency %10-0-10-10-9=39%  
4. SCMagazine – Security magazine consistently has good Security articles and has been honored with national honors from ASBPE http://www.scmagazine.com/sc-wins-three-top-national-honors-from-asbpe/article/511656/     %9-8-7-9-3=36% Good content and high value, some video
5.   Reddit section “netsec” https://www.reddit.com/r/netsec/  has very good posts frequently – Lots of new good posts. I switched the link to the “old” reddit look, as one can see all the posts easier in my opinion.  %10-5-9-10-0=34% High value, decent ranking, high updates, no video
6. TechNewsWorld has a decent number of good articles http://www.technewsworld.com/perl/section/cyber-security/   %8-8-6-9-2=33% Good value and high Google rankings, few videos
7. With a special interest in KrebsonSecurity  David Krebs has authored “SpamNation” is looked at for computer breach news – He was a journalist, now Darknet reviewer and more.    %10-0-8-10-5=33%  High value, but does not focus on Cyber security so does not have high Google ranking, some video

8. Adding IronGeek.com  as it is the video repository for constant reviews of latest Security conferences. If you want to stay up to speed on detailed and up-to-date Cybersecurity information then you must check this out frequently.   %8-0-4-9-10=31% Good value in Cybersecurity and update frequency and volume of Cybersecurity relevant videos. but no keyword search visibility compared to others(by design – as the videos have the value not searchable text)

9. Stay safe online, A national Cybersecurity Alliance effort to help people improve Cyber Security %8-10-0-9-0=27% decent value, some Google value and high freq, no video

10. Graham Cluley has a blog is relevant and timely(as he promotes it is award winning)  http://grahamcluley.com/   %6-0-6-10-5=27% decent value, higher Google rankings and good freq, some video
11.  NakedSecurity by Sophos (AV company)keeps up on malware news (antivirus etc)  %7-0-7-8-2=24% decent value, and high Google rankings, good freq, few video
12.  Bruce Schneier, a security expert writing about cyber security since 1998 – excellent theorist and book writer. %9-0-6-9-4=27% high value, low Google, but good freq , few video others took at his talks
13.  Homeland Security News Wire http://www.homelandsecuritynewswire.com/topics/cybersecurity  Has many relevant cybersecurity news stories.  %5-7-6-8-0=26%  Some value, but high Google ranking, high updates, no video

14.  The Register a classic IT news site   has some interesting angles. %8-0-0-10-7=25% medium value and low Google, high freq  some video

15. http://www.infosecurity-magazine.com/  Decent news topics general in nature.  And don’t forget Infosec magazine’s Blogs: http://www.infosecurity-magazine.com/blogs/   %7-5-0-10-2=24% decent value, and decent Google rankings – high freq , few videos
16.  Cisco’s Talos Blog   Excellent threat research and more %9-0-4-6=24% high value, but low freq and no keywords in Google

17. ZDNet Zero Day blog by ZDNet – new info about hacker some value – no Google ranking high freq. %9-0-0-10-4=23%  some video included

18.  SucuriBlog   http://blog.sucuri.net/ WordPress developer Blog about security, Has other topics , we use this plugin has excellent WordPress insights   %8-0-6-8-1=23% starting to get lower on list for value, and has little Google ranking but good freq, few videos

19.  Real Clear Future  http://www.realclearfuture.com/  many top tech articles – a good place to keep up on news. medium value and low Google, high freq %8-0-0-10-2=20%   very few videos

20. SANS Digital Forensics Blog is a good forensics blog with some new posts %6-0-0-8-6=20% lower value, but  higher freq with no Google values

 21.  Rand Corp Blog is where the Cybersecurity researcher Martin Libicki writes – Rand Corp is a prestigious science research institution among other items. %5-5-0-8-1=19% medium low value, some Google and high freq few videos
22 Malwarebytes Unpacked the https://blog.malwarebytes.org/ Blog of malwarebytes (excellent AV app).%5-0-3-9-2=19% lower value, but higher freq and no Google values, no video
23. Rapid7 has a Security Blog well researched posts:
https://blog.rapid7.com/ %7-0-3-8-1=19% ,medium value and some freq No keyword rankings. no video
24.   TrendMicro Security Intelligence Blog is kept up and has good topics %6-0-4-6-2=12% low-med value, some vuln info, lowmed freq and no google value, no video
25. Veracode Blog  focused on application development security topics %6-0-4-6-2=18% lower value and less frequent with no google values, some videos
26. Securelist Blog  (A Kaspersky Lab endeavor)  and their Twitter feed seems to be in Germany: Kaspersky_DACH %7-0-0-9-2=18% Their posts must not have Security so Google can pick up, but has more value with decent freq, a couple of videos
27. White Hat Security Blog https://www.whitehatsec.com/blog/  White Hat security is a company that consults on application security – I have seen some of their researchers. %3-0-0-5-6=14%  no video
28. ISACA Now Blog http://www.isaca.org/Knowledge-Center/Blog/default.aspx  which is the Information Systems Auditing and Control Association Blog  %5-0-0-7-0=12% no video
29.  Securosis a blog with good content (sometimes does not post frequently) %7-0-0-7-0=14%  the decent content is not on Google due to low freq, no video
30. Taosecurity Richard Bejtlich’s security blog – Excellent when updated – Check a recent video of Richard Bejtlich (Chief Security Strategist FireEye)  adding Fireeye blogs to this line.  %6-0-0-6-1=13% lower value and less frequent with no google values. no video
Wow – after that video add of Irongeek and some rearranging – no more Googleonline and Bitdefender in top30
 31. Google Online Security Blog is good to review periodically  http://googleonlinesecurity.blogspot.com/ %4-0-0-5=9% low value and low freq and no Google value
32.  Bitdefender LABS has  some good posts (including new Ransomware tool https://labs.bitdefender.com/) %4-0-0-3=7% low value and low freq and no Google value
Adding new blogs to review periodically:

http://www.freeforensics.org/ A blog started in March 2016 – about forensics and other topics (ransomware details)

moving IBM Security  out of top 30 X-Force website and the blog page X-Force bloggers  is good, but updated infrequently & pro IBM of course.

Also moved BugSEC as it is not updted often but is blog decent review of Cyber threats – from a security company in Israel

MUST SEE LINKS:
US-CERT: United States Computer Emergency Response team  https://www.us-cert.gov

HIPAA: http://www.hhs.gov/ocr/privacy/hipaa/understanding/srsummary.html   PCI: https://www.pcisecuritystandards.org/

New addition(12/3/15): Amazon Web Services Bulletins(AWS) https://aws.amazon.com/security/security-bulletins/ 
removing Twitter and other stuff 01/19/16  keeping the repositories of interesting Cyber items.
NIST Publications  are important as they get referenced by a lot of compliance standards http://csrc.nist.gov/publications/PubsSPs.html 800-115 is the one for pentesting  :
Technical Guide to Information Security Testing and Assessment SP 800-115
Phrack.org   Papers on exploiting operating systems and other items like Stack-based buffer and memory overflow.  (does not get updated often)
 footnotes:
  1.  http://www.sorting-algorithms.com/

https://fixvirus.com/contact-us/ to test your cybersecurity