When first reading the assignment that we were to find 3-4 blogs to follow, my initial reaction was – hey, this will be fun and simple. Easier said than done. Maybe I am overcomplicating it, and maybe I could just go for your everyday cats- and gadgetblogs, but my concern was that these blogs will follow us down the line of our studies. Also, they might not. But to be on the safe side, I wanted to follow some blogs that are highly relevant to the course – and also seemed interesting.
Because normally when I search for information, I might find one or two interesting blogposts that match perfectly with my request at the time. But on an everyday basis the blogs are no good. I can mention the fact that some of the highly praised blogs shared by the Digital Forensics Association has not been updated for many years – many has also simply been abandoned. Some of the blogs are also way too technical to give me any relevant information this early in the degree, and although most of it makes sense – for me to take inspiration from it would just end up rendering into plagiarism.
But after searching the web wide and long, I found myself some really nice blogs. They are relevant, reliable, trustworthy and – to some degree entertaining. But most important – they are updated frequently. My choices are as follows:
1) NSM – The Norwegian National Security Authority
How can one be a computer security specialist in Norway and NOT follow this blog? It is the highest organ of computer security in Norway – that we know about and that actually has an open blog. The posts are quite informative, written in a good style and are updated regularly. There is a variety of writers with a very solid background in the topics they are posting. It was renewed the summer of 2014, and the new design is user friendly, intuitive and allows for commenting through the Disqus-system.
2) SANS DFIR – Digital Forensics and Incident Response
The SANS Institute is an internationally acclaimed institute for digital security and forensics training. Its based in the U.S. and is responsible for training more than 120,000 security specialists in both private and public sector. Their range of expertise covers a vast area of topics, and luckily for us do they not only bring news, tips and other useful resources – they also keep several well-organized blogs. My choice amongst their blog-smorgasbord is the Computer Forensics blog.
3) KrebsOnSecurity – Security blog
This is the blog of former Washington Post security journalist Brian Krebs. His background is not really in digital forensics og computer security, but after being hacked in 2001 – he became very interested in the field. This makes for a little different blog, being able to see the interesting point of view for both professionals and for those with only a slight interest in the subject of security.
4) PC Magazine – Security Watch
PC Magazine is, well, a magazine for computers and everything digital. It is not a blog per se, but more of a general news site – and Security Watch is a frequently updated and commercial portion of the site. It gives great insight in popular topics, as well as publishing articles with in-depth knowledge of the field of cyber security.
5) AccessData Blog (BONUS)
I was not sure if I wanted to add this blog onto the list, mainly for two reasons; one being that there is no dates on the posts and I have no idea of the frequency for posting, the other being that this is a blog in connection with a commercial product. That being said, the posts that are there seem very relevant. Also, AccessData is the company that brings us the Forensic ToolKit, which is the preferred software we will be using throughout our degree.