The assignment: One of the first steps in your process should be to identify credible sources of information for threats, vulnerabilities, updates, and security news in general. As you are identifying these sources, you might start considering what should be done if sources provide conflicting information. In your blog post this week, include a list of sources you consider to be credible, and why.
National Institute of Standards and Technology
NIST is the go to reference for cybersecurity, free to the public and an authoritative government source.
https://www.nist.gov/about-nist
Common Vulnerabilities and Exposures
CVE was launched in 1999 and it provides common database of vulnerabilities and standard metrics.
https://cve.mitre.org/
http://www.cvedetails.com/
The Verizon Data Breach Investigations Report
This is an excellent reference for trends in threats and what to expect in the future.
http://www.verizonenterprise.com/verizon-insights-lab/dbir/
Kaspersky Lab
First up is Kaspersky Lab. There is some controversy considering the current political climate, but I believe this is a good and reliable source for current threats and news. (https://usa.kaspersky.com/resource-center/threats)
Some more references I have used:
InfoSecurity
https://www.infosecurity-magazine.com/news/
TrendMicro
https://www.trendmicro.com/vinfo/us/security/news/
No comments:
Post a Comment