How to stay up to date with cybersecurity

One of my daily tasks as Cyber Threat Intelligence Analyst is to remain up do date to what is happening in the wild, what new reports are available, what new blog posts have been published.

I do this to be aware of any relevant news that could be of interest like any new tactics, techniques and procedures (TTPs) used by threat actors, any new vulnerability, any news that is relevant to the industry that I am working for.

The best way to do perform this task is use a RSS Feed reader (e.g Inoreader, Feeedly).
A RSS feeds reader helps skim through all the sources in one place.

You can find my RSS Feed lists here: Cyber_Vendors.opml, Cyber_Mainstream.opml

Please note that the RSS feeds that you are going to follow depends highly of what your requirements are, and the requirements can change over time.
I decided to organize my feed in two sections, one contains the RSS feeds related to vendors (e.g Microsoft, Google…) the the second contains the RSS feeds related to the mainstream media (e.g The Hacker news, Bleeping computer…).
Feel free to organize the list as you like.

If you feel overwhelmed at the thought of having to skim trough all the sources present in a RSS Feed list an alternative could be to subscrive to a newsletter. In this regard, I suggest to subscrive to the “Risky Business News” feed, a newsletter published three times a week that gives a summary on the latest cybersecurity news stories.
This is the RSS feed for the Risky Business News feed: Risky Business News.
Be aware that this source is already avaiable in my RSS Feed lists.
Below you can find the audio version of the newsletter as a podcast.

Another place where reporters, researchers and people that have to do with cybersecurity like to talks, publish their findings and their ideas is Twitter.

I suggest to create an account and start to follow people that work in the sector that you want to remain updated to like Cyber Threat Intelligence or Digital Forensics and Incident Response (DFIR). You can have a look at my profile to have a baseline of accounts to follow, you can also use the “Topics” capability that Twitter provide and see what accounts pops up there.
This is the link to follow the Cybersecurity topic on Twitter: Cybersecurity topic

But let’s say that you don’t like to read or don’t want to sign-up to Twitter, alternatively you can listen to Podcasts.

I highly recommend these two podcast that provide a daily cyber security news summary:

• CyberWire Daily
• SANS Internet Storm Center Podcast

Or the Risky Business News podcast, same as the written form is published three times a week.

If you think that I am missing some interesting source or want to suggest some change to this blog post please reach out and let me know!.