Veracode’s nomination for “Best Corporate Security Blog” at the 2012 Social Security Bloggers Awards got the Veracode Marketing team thinking about the other great information security blogs we follow. The Marketing team thought it would be fun to compile a list of what we think are the best 20 information security blogs.
We used a very scientific process to compile this list. Inputs included - quality of blog content (from both a technical and an entertainment standpoint), level of authority of contributors, frequency of updates, overall appearance and our own subjectivity :)
All the team members weighed in, and after some serious debating , we settled on the following list (in no particular order).
Fortinet Security Blog
Naked Security Blog
Cognitive Dissidents Blog with Joshua Corman
The New School of Information Security Blog
Dark Reading Blog
Krebs on Security with Brian Krebs
Thought Crime Blog with Moxie Marlinspike
Schneier on Security with Bruce Schneier
Root Labs RDIST with Nate Lawson
Zero Day Blog with Ryan Naraine and Dancho Danchev
Rational Survivability Blog with Christofer Hoff
TaoSecurity with Richard Bejtlich
F-Secure News from the Lab Blog
Andrew Hay Blog
Uncommon Sense Security Blog with Jack Daniel
Network Security Blog with Martin McKeay
SANS AppSec Blog with Frank Kim
Additionally, I would like to give a nod to the folks at the Security Bistro Blog. Their blog is too young for this list (having just launched in January 2012) but is off to an excellent start, featuring good commentary from a mix of reputable authors.
So there you have it. As usual I encourage people to weigh in on our picks and offer suggestions of their own.