15 best (and most reliable) sources of IT security news


We live in a world of contradictions. Some people will disagree with facts and cry out ‘FAKE NEWS!’ but they’ll believe actual fake news.

At Pensar, we know it can be hard to separate the facts from the falsehoods, but luckily in the world of IT security news, we have some truly useful and reliable sources we can trust.

Here are 15 of the best (and most reliable) sources of IT security news.

1. Krebs on Security

After being the victim of a Chinese hacking Group in 2001, Washington Post reporter Brian Krebs became obsessed with cyber security. Since then, he has written over 1,300 blog posts for the Security Fix blog and has become one of the best-known names in cyber security. Brian posts regular articles and has a free subscription to content covering topics ranging from major IT security news to the latest threats, privacy breaches and cyber-criminals.

2. Security Affairs

Security Affairs is an award-winning blog written by ethical hacker, Pierluigi Paganini. It’s primarily an IT security news blog but also features interviews with hackers. The blog has many topics from IoT to Cyber Warfare. If you need the latest news and want to know your enemy, this is the site for you.

3. SC Magazine

SC Media UK is a leading resource for cyber security professionals in the UK and Europe, providing up-to-date IT security news and analysis. The magazine also carries out independent product tests, runs its own European Security Award, and has a selection of webinars, videos and expert podcasts, and writes editorials to help you make the right security decisions for your business.

4. The Hacker News

With more than five million monthly readers, The Hacker News is one of the biggest channels for IT security news. With RSS feeds, free eBooks, email alerts and a telegram channel, it provides the latest resources in hacking, technology and ‘security in a serious way’. They also provide content on a YouTube and an Instagram channel.

5. Zero Day (ZDNet) 

ZDNet is a must visit for IT professionals looking to keep up with everything in technology. Its security section contains articles, photos, videos, downloads and reviews all based on IT security news and practices. Providing subscriptions to various newsletters, it also delivers twelve regional editions, so you can read the content that’s most relevant to your location.

6. Naked Security

Naked Security is the blog of IT security company SOPHOS. Its award-winning newsroom covers news, opinion, advice and research on security issues and cyber threats. Delivering almost daily articles, leaders consider this security blog one of the best available. As an added bonus, they’ve also got a security podcast that you can subscribe to.

7. Malwarebytes Labs

Malwarebytes Labs is a dedicated security blog covering the latest developments on malware and other cybercrime tools. They have various content categories including Privacy and Scams, and their regular updates are in-depth and well written. As a company providing software that protects your hardware against malware, they know what they’re talking about.

8. The Register

The Register takes a sometimes-irreverent approach as indicated by its ‘biting the hand that feeds IT’ strap-line. However, its security section is an excellent source of IT security news. With regular updates and reaching more than 40 million worldwide monthly visitors, this is a very popular tech publication.

9. Threatpost

Kaspersky Lab’s Threatpost provides daily articles, podcasts and videos on all things security. With regular webinars, Facebook, Twitter, LinkedIn, a Feedly channel, RSS feed, YouTube, and Instagram presence, you can get your ThreatPost news from almost anywhere! With a focus on new attacks and emerging threats, this blog can help you ensure your business is secure.

10. Paul’s Security Weekly

Paul Asadoorian’s podcast network, Security Weekly, covers IT security news and more. On its website you’ll find technical articles and research studies, plus a weekly live video broadcast providing a mix of technical content and entertainment, you can subscribe to the YouTube Channel. Its objective is to ‘use new technologies to reach a wider audience across the globe to teach people how to grow, learn and be security ninjas.’

11. The State of Security – Tripwire

Tripwire provides advanced threat, security, and compliance solutions to companies. Their blog features multiple authors who write about the changing landscape of cybersecurity. They also provide a podcast, and a Patch Priority list feed.

12. Schneier on Security

The Economist in 2021 called Bruce Schneier a ‘security guru’ as he is well-known in the field. He has written articles, essays, and papers on security matters since 1998. He is an important voice in IT security, not just for his knowledge but also how he expresses it to the reader. His blog is regularly updated and features lots of resources, from articles to essays and newsletter archives and blogs.

13. We Live Security

The award-winning WeLiveSecurity comes from the brains at ESET – experienced researchers with in-depth knowledge of the latest threats and security trends. It is an editorial outlet for the latest IT security news, views, and insights without scaremongering. They aim to cater for all skill levels, from expert coders to people looking for advice on how to secure their data effectively.

14. Webroot Threat Blog

Webroot is a cybersecurity firm which delivers next-generation endpoint security and threat intelligence to customers and know the world of IT security very well. They provide industry insights and cybersecurity tips in a regular Cyber News Rundown bringing readers the latest happenings in IT security news.

15. National Cyber Security Centre

The National Cyber Security Centre (NCSC), provide regular cyber security advice and guidance, they also run the UK government’s flagship cyber security event CyberUK, have a news feed, a speeches feed, and produce a weekly threat report.

Information is a shield

Effective security isn’t just about the software you buy, it’s also about knowledge. With the right information, you can strengthen your defences against any manner of cyberattack. Information is a shield, and with the advice, updates, and information you can find on these websites, you can ensure your business is better protected.

At Pensar, we’re compliance and cyber security experts. If you’d like to better understand the threat to your business and how best to protect your data, staff and systems, do get in touch.

If you’ve found this article interesting you may want to read our blog and download our Free IT Security Policy Templates below.

New Call-to-action

8 things you need for an effective data migration
Do you need a Data Protection Officer under GDPR?