The Top Cyber Security & Threat Intelligence Blogs

Written By Renze Jongman

The Cyber Threat Landscape is a fast moving beast, so keeping track of what’s going on is a constant struggle. Knowing where you can go to quickly read up on everything you’ve missed can be a massive time-saver. You will still need to proactively (or, actually, reactively) go to these sources, read everything, then decide if any of it is actually relevant to you. But at least you now know where to go for your Threat Intelligence News & Blogs. 

These are the Top Sources according to Liberty91 users. We’ve broken them down into daily cyber security news websites and Threat Intelligence & Investigations resources.

Daily Cyber Security News

These resources will help you stay up to date with the latest cyber news and events. Read these, and you will be able to keep up with most of what your colleagues are talking about at the watercooler.

The Record

The Record is curated by Recorded Future, a well-known Threat Intelligence Provider and they provide a well-balanced, all-round cybersecurity news website. There is also the option to listen to their podcast and to subscribe to their daily email newsletter.

The Hacker News

The Hacker News is a very popular aggregator of cybersecurity news. With a self-reported readership of about 2.3 million users per month, they are by far the most popular source of cybersecurity news. Curiously, you can’t just Google ‘the hacker news’ and click on the first result, because that will lead to an odd RSS-type page from Y Combinator. Instead, just follow the link in this article.

The Cyber Express

The Cyber Express is another vendor-curated source of cyber news and events, but usually very well informed. The Cyber Express by Cyble provides a lot of background and information and is usually quite timely with their reporting.

DarkReading

Another very popular, widely read blog is DarkReading. Of all of the sources on this list, they probably offer the widest range of topics. You’ll find the most recent campaign targeting your sector in your region, as well as top hiring tips and car infotainment bug reviews.

Bleeping Computer

Another popular source for security news and events is Bleeping Computer. They cover a lot more than just security news though, so you’ll have to find what you’re looking for among feature reviews and tutorials, although those can be quite useful to catch up on as well. The platform is very popular and has a broad readership.

Threat Intelligence & Investigations

These sources provide more technical write-ups of actual breaches and investigations. There won’t be a new post every single day, but they do typically describe new techniques used, and provide unique insights from their own incident response investigations.

The DFIR Report

The DFIR Report is a website that publishes in-depth technical write-ups and analyses of real-world cyber incidents, with a focus on Digital Forensics and Incident Response (DFIR). The content primarily caters to cybersecurity professionals, incident responders, and threat hunters who need detailed, actionable information on recent threats, attack methods, and mitigation strategies.

Google Threat Intelligence

Since Google Cloud acquired Mandiant (and VirusTotal, and Chronicle, and SIEMplify), they became one of the biggest Threat Intelligence players on the market. Mandiant (now part of Google Cloud) is one of the major Incident Response shops in the US and other parts of the world. They are one of those companies that get called in to manage the really really high profile breaches everyone talks about. Their research is highly regarded and they regularly post very insightful write-ups of their investigations.

SecureList

SecureList is Kaspersky’s Threat Research blog, and even though they have been pushed out of American and European markets, they are still one of the major players in other parts of the world (especially in Russia and the Middle-East), and they do still provide very insightful, highly technical write-ups of some of their investigations.  

Microsoft Threat Intelligence

Microsoft also has a strong Threat Intelligence Team that regularly pushes out new reports on campaigns conducted by Threat Actors named after weather patterns. Because of their unique insights and visibility, their reports usually provide detailed information about new techniques being used and are usually well worth the read.

Liberty91

Users of the Liberty91 Platform don’t have to worry about reactively visiting all those different blog posts and websites. Liberty91 ingests all of them and more in real time, catalogs them neatly in your own threat library, and provides a tailored threat analysis relevant to your threat profile. If anything happens you need to know about, Liberty91 will let you know what’s going on, why you need to know, and what you should probably do about it, all in real-time.

Reach out today to learn more.

Renze Jongman
Previous

Video: The Role of Liberty91 AI in Threat Intelligence
Next

Video: Demystifying Threat Intelligence