If you are concerned about your online security (and you should be), it’s essential to know which are the best cybersecurity blogs that could help you stay informed about the most recent trends in the threat landscape.
The question then arises: Where can you find the best security blogs to learn and to gain more knowledge in the cybersecurity field? What security experts to follow so you can stay abreast of changes in this industry and how to better protect your digital assets? How can you make the difference between the real experts and the false ones?
That’s why we want to help and we’ve put together this list with all the cybersecurity blogs and websites that are worth following.
We’re aware that it isn’t perfect and will never be, so we’ll continue to keep this list updated as much as we can. There are probably so many other security blogs and experts that we have not included. More and more are launching every day.
From small, independent researchers and experts, to the big names: security vendors, media giants, organizations, or cybersecurity communities and organizations. The main criteria were: how much can we benefit from their insights and knowledge.
Therefore, if you need best practices, how-to articles, online safety research, or the latest security news and insights from researchers, start with this guide. Feel free to bookmark our article and access the following blogs/websites whenever you feel it’s necessary.
TOP CYBER SECURITY BLOGS TO FOLLOW
1. Krebs on Security
Brian Krebs is the man behind Krebs on Security. Being hacked in 2001, he starts to be personally interested in online security. He’s one of the well-known names in today’s security landscape. Krebs covers topics from the latest threats, privacy breaches, and cyber-criminals, as well as major security news and alerts. He’s also a book author.
2. Schneier on Security
Another cybersecurity blog that is worth reading on a daily basis is the one belonging to Bruce Schneier which is an internationally renowned security technologist, called a “security guru” by The Economist. He wrote books, hundreds of articles, essays, and security papers on cybersecurity. At the same time, he is a known figure in the media.
The press recognizes him as an important voice for online security, not only for his knowledge on the matter but also because of how he expresses his opinions.
3. Tao Security
Tao Security blog is run by Richard Bejtlich, Principal Security Strategist at Corelight. He was previously Chief Security Strategist at FireEye, and Mandiant’s Cheif Security Officer when FireEye acquired Mandiant. Richard began his digital security career as a military intelligence officer in 1997 at the Air Force Computer Emergency Response Team (AFCERT), Air Force Information Warfare Center (AFIWC), and Air Intelligence Agency (AIA). He is also a graduate of Harvard University and the United States Air Force Academy. His fourth book is “The Practice of Network Security Monitoring“.
4. Graham Cluley
Graham Cluley is one of the most known independent computer security analysts and public speakers. He’s been working in the industry since the early ‘90s. Started as a programmer, writing the first-ever version of Dr. Solomon’s Anti-Virus Toolkit for Windows.
5. Troy Hunt
Troy Hunt is an Australian Microsoft Regional Director and Most Valuable Professional (MVP) for Developer Security. He travels the world speaking at events and giving training and advice to tech security professionals. He’s also an author of many top-rating courses on web security.
You surely heard about his project “Have I Been Pwned?”, a free service that tells you if you’ve been compromised in a data breach.
6. Daniel Miessler
Daniel Miessler is a well-known cybersecurity expert and writer with 20 years in information security. His blog includes a collection of technical knowledge, industry insights, and opinions shared by Daniel on various topics. We recommend adding his blog to your reading list for valuable insights and also following him on Twitter.
7. Security Affairs
Security Affairs is a security blog written by Pierluigi Paganini, an ethical hacker, researcher, security evangelist, and analyst. On his blog, among the articles on security, you’ll also find regular interviews with hackers, useful cybersecurity. In 2016, this blog was awarded as Best European Personal Security Blog.
8. Architect Security
This cybersecurity blog belongs to April C. Wright who is a speaker, teacher, community leader, and hacker with more than 25 years of experience in the information security industry. She teaches others how to use simple actions that can lead to a better and safer place.
9. Dark Reading
Dark Reading is a widely-read cybersecurity website that addresses professionals from the IT industry, security researchers, and technology specialists. They use their experience and knowledge to provide articles, recommendations, news, and information on the IT cybersecurity landscape.
CIO is the place where you find news, information technology articles, insights, and analysis on major data breaches and online threats that put your online security at risk. Covering multiple aspects of the world wide web, it provides in-depth, content-rich information for IT professionals and regular users.
11. CSO Online
CSO focuses on offering users the latest information and best practices in both technology and business, loss prevention, cybercriminal threats, and software vulnerabilities, malware and data breaches, and many other useful tips and advice about cybersecurity.
12. PCMag’s Security Watch
Known for his direct and witty style, Neil Rubenking is PC Magazine’s Lead Analyst. He’s the man you have to listen if you search for technical advice on the main security solutions, from firewalls, antivirus, and antispam products to full security suites. You’ll also read in this cybersecurity blog detailed reports and sharp analysis of security programs, which should place him on your follow “cybersecurity blogs” list if you look for this type of information. He has also written several books.
13. Paul’s Security Weekly
This security blog was founded by Paul Asadoorian and brings you a wide range of topics from security news, useful technical articles, research studies to valuable information on hacking and cybercrime through different channels, from blog posts, videos to podcasts.
This is one of the leading media companies in the online environment and provides strong analysis, reliable tools, real-time reports for cybersecurity news, and information on the latest online vulnerabilities.
15. SC Magazine
SC Magazine comes in the IT environment with technical information and data analysis to fight the present online security threats. Their site provides testing results for email security, mobile devices, cloud, and web security.
Probably one of the most popular tech sites in the software industry, PC Mag offers readers lots of reviews and studies on the latest products for online security. For an objective analysis of a particular product you may be interested in, don’t forget to search for the dedicated article on this website.
17. The Hacker News
It is one of the biggest information security blogs and we recommend following it for the latest resources about hacking, technology, and security.
18. Security Week
It’s one of those information security blogs you need to follow to stay informed about the latest security news, insights and analysis. You’ll also read opinions and insights from IT security experts around the world.
19. Ars Technica
Probably one of the oldest and top publications on technology. Its editorial mission is to be “technically savvy, up-to-date and more fun” than what was popular at the moment when it was founded.
Softpedia is a popular destination for software downloads but also covers tech topics and news. It was founded in 2001 by SoftNews NET SRL, a Romanian company.
21. The Last Watchdog
It is one of those security blogs founded by the Pulitzer-winning journalist Byron V. Acohido which is a respected cybersecurity influencer, and The Last Watchdog is considered to be one of the top cybersecurity blogs. You’ll find personal opinions on cybersecurity, Q&A, useful podcasts, or videos.
One of the classical American online magazines reporting on technology and its role in culture, economy, and politics, Wired approaches various topics on online privacy, cybercriminal threats, systems security, and the latest security alerts.
23. Motherboard Vice
Vice’s Motherboard is an online magazine dedicated to technology, science, and humans. Lots of the data breaches in the past years were firstly announced by Motherboard and you should follow it.
Mashable is a global media company, founded in 2005. They aim to be the leading media company for the Connected Generation and the voice of digital culture. We recommend following their cybersecurity category to read about all the latest news related to this field.
TechCrunch is another leading media company focused on technology and breaking tech news, founded in the same year as Mashable and owned by AOL.
26. IT Pro Portal
It Pro Portal is one of the first tech websites from the UK, launched in 1999, and has grown to become one of the UK’s leading resources on technology information. Here you’ll find tech products reviews, market analysis, cybersecurity news, and many more.
27. Privacy Paradox from Lawfare
When law meets privacy – this is how we’d sum up “Privacy Paradox”, the subsection of The Lawfare Blog. Its authors take an unorthodox look at the law and policy of contemporary privacy.
28. The Register
The Register is another top online tech publication, with more than 9 million monthly unique visitors. You’ll find here independent news, views, and reviews on the latest in the IT industry and its security section brings the latest news from the industry.
TechRepublic provides large resources for the online industry, such as blog articles, forums, technical papers, and security data. All the valuable information available on this cybersecurity blog will help IT professionals and technology leaders to come with the best decisions on their business processes. There are also useful resources such as white papers, eBooks, tools, and more.
30. Zero Day
The Zero Day security blog is important for all the people part of the IT industry. This information security blog belongs to ZDNet and you should follow it to stay on top of the latest security analysis, software vulnerabilities, malware attacks, and network threats.
31. The Guardian Information Security Hub
Known for its quality articles on world news, Guardian also provides a section dedicated to information security for both companies and individuals. To stay up-to-date with the most recent articles and news on cybersecurity, make sure you follow this cybersecurity blog.
32. Help Net Security
Help Net Security is a popular independent site, focused on information security since 1998. You’ll find here the latest information and articles related to the IT industry, including experts’ opinions on the hottest topics, reviews, security events, and many more.
33. Techworld Security
Techworld is an industry leader in business technology publishing, published by IDG (International Data Group). The Security section is dedicated to analyzing the latest malware threats and zero-day exploits, including analysis and tutorials. You can find here other important topics and subjects, such as security articles, how-to documents, or software reviews.
34. IT Security Guru
It is a site for the cybersecurity community which offers daily and breaking IT security news, with opinions and analysis of this industry.
35. Network Computing
The content of the Network Computing cybersecurity blog focuses on cloud technology and enterprise infrastructure systems. Its published articles cover security solutions on how to deliver applications and services for an increasingly large threat environment in the business world, news, and expert advice.
36. Infosecurity Magazine
With more than 10 years of experience, Infosecurity Magazine is an online magazine that covers not only security articles on popular topics but is also focused on security strategy and valuable insights for the online industry. You should follow it for its educational approach.
37. SANS Institute AppSec Blog
SANS Software Security provides training, certification, research, and community initiatives that help IT specialists build secure applications.
Peerlyst is a community where cybersecurity professionals gather to discuss hot topics and exchange opinions on key subjects. As part of the community’s mission, the team is “working with people like you to help transcend the fragmented security market and create transparency”.
While it’s not actually a cybersecurity blog, it is worth following and reading the newsroom section from the European Union Agency for Law Enforcement Cooperation (EUROPOL) and staying up to date with the latest press releases, news articles, blog entries, videos, and other content.
40. Electronic Frontier Foundation (EFF)
The Electronic Frontier Foundation is the leading nonprofit organization defending civil liberties in the digital world which was founded in 1999. Its work is mainly focused on ensuring that rights and freedoms are enhanced and protected as our use of technology grows. You should read their information security blog for its high-quality content, comprehensive analysis, educational guides, and more.
41. Virus Bulletin
The Virus Bulletin blog is a must-read online source of reference for anyone concerned with computer security and the online threat landscape. It covers the latest threats, new developments, and techniques in the security landscape, opinions from well-known members of the industry, and more.
This security blog is powered by the National Cyber Security Alliance (NCSA) organization and is a reliable online source that provides valuable information on how you can stay safe online, how to keep your business secure, and many other useful tips and insights on privacy.
43. Security Boulevard
It is the home of the Security Bloggers Network (SBN) and an online community where you can find plenty of useful resources from fresh cybersecurity news, threats, and data breaches to webinars, a library of security-related resources, and many other educational resources.
44. Bleeping Computer
Another fantastic resource is Bleeping Computer, a technical support website, and a self-education tool. Do read their cybersecurity guides, forums, tutorials, and more.
45. IT Security
Here’s another useful information security resource where you can read about cybersecurity news, insights, and experts’ opinions on topics related to the cybersecurity landscape.
46. GBHackers on Security
It is another great online resource where you can read about the latest hacking news, cybersecurity, technology updates, ransomware, or malware. There’s also a place where you can find useful online courses and other interesting infosec resources.
Here’s another leading source of technology news and analysis you can follow to stay up to date with everything happening in cybersecurity.
Threatpost is an independent news site where you can read a plethora of cybersecurity news and analysis to stay informed and safe, including useful videos, feature reports, and many more.
49. Google Online Security Blog
We couldn’t miss this one from our list! We are surrounded by Google products and services every day, from their search engine to web browser, so it’s normal to include their cybersecurity blog here. It is more than a reliable information security blog; it’s also a reference point on online security and privacy we need to acknowledge. Here you can also read the latest news and insights on how to keep users safe.
50. Microsoft Secure Blog
Starting from January 2018, this is the place where you’ll find all the blogs from Microsoft. Here you’ll find technical information for Office 365, Microsoft Azure, and Windows, alongside product updates, cybersecurity guidance, industry trends, and more. You’ll also read great cybersecurity stories from the global team of Windows Defender researchers, engineers, and experts.
51. Sensors Tech Forum
Another information security blog you should add to your list is Sensors Tech Forum, which is both an online security blog and a forum. Here you can read daily PC security news, ransomware, and virus removal guides. The Sensors Tech team publishes useful guides that could help users get through the removal process of malware.
52. Elie Bursztein’s Blog
Elie works at Google and leads the company’s anti-abuse research team, focused on protecting users against cybercriminal activities and Internet threats. His personal blog focuses on trending topics in cybersecurity such as Artificial Intelligence, network security, account security, and many more that could help users learn how to stay safe online. We recommend checking out his blog for useful articles.
53. G2 Learning Hub
G2’s blog touches on topics as diverse as Sales, Marketing, Design, or Research, to name a few. We added it to our list since you don’t want to miss their articles focused on Cybersecurity and Technology written by Aaron Walker, Senior Research Specialist. By following this highly engaging educational resource, you can explore the industry’s latest trends, learn more about security buzzwords, and discover great tools and software.
54. Heimdal™ Security Blog
Heimdal™ is a leading European provider of cloud-based cybersecurity solutions. The company offers a multi-layered security suite that combines threat prevention, patch and asset management, endpoint rights management, and antivirus and mail security which together secure customers against cyberattacks and keep critical information and intellectual property safe.
Heimdal™’s security blog is your go-to source for action-ready cybersecurity advice. Packed with the latest cybersecurity news about threat actors, industry developments, cyberattacks, data breaches, as well as comprehensive articles, and free educational resources that anyone can apply, our award-winning blog will teach you how to strengthen the security within your organization. Here you can expect to find updates, product announcements and press releases, partnership announcements, and all things Heimdal™-related.