Twitter is an excellent place to get curated security news from the people on the ground, so to speak. Here’s my personal top 10 InfoSec people to follow on Twitter. This list will give you a really good mix–from attacking SSL to data leaks to web app security best practices–these prolific folks are full of insights.
Please enjoy and share!
Bruce Schneier is an American cryptographer, computer security specialist, and writer. He is the author of several books on general security topics, computer security and cryptography.
2. Troy Hunt @troyhunt
Troy Hunt is a developer, architect and web security specialist. He regularly blogs about application security, improving the software development process and all things technology related.
3. Lenny Zeltser @lennyzeltser
Lenny Zeltser is a seasoned business and tech leader with extensive experience in information technology and security. As a product management director at NCR Corporation, he focuses on safeguarding IT operations of small and midsize businesses world-wide.
4. Thomas H. Ptacek @tqbf
Thomas Ptacek is currently with Matasano. He has owned technical operations at Chicago’s most popular ISP, authored Insertion, Evasion, and Denial of Service, a landmark paper which broke every shipping intrusion detection product on the market.
5. Steve Gibson @sggrc
Steve Gibson is a computer enthusiast, software engineer and security researcher. In 1985, Gibson founded Gibson Research Corporation, which is best known for its SpinRite software. Steve co-hosts a weekly podcast called Security Now on the TWiT network.
Brian Krebs an American journalist and investigative reporter. Krebs is the author ofKrebsOnSecurity.com, a daily blog on computer security and cybercrime.
7. John Kindervag @kindervag
John Kindervag is a Principle Analyst at Forrester. He is a leading expert on wireless security, network security, security information management, and PCI data security.
8. Anton Chuvaken @anton_chuvakin
Anton Chuvakin is a computer security specialist, currently a Research Director at Gartner for Technical Professionals Security and Risk Management Strategies team. Formerly he was a principal at Security Warrior Consulting. His personal blog is terrific.
9. Dan Goodin @dangoodin001
Dan Goodin is IT Security Editor at Ars Technica, where he oversees coverage of malware, computer espionage, botnets, and hardware hacking.
Moxie Marlinspike is a computer security researcher. He was the chief technology officer and co-founder of Whisper Systems, is a member of the Institute for Disruptive Studies, runs a cloud-based WPA cracking service; and manages the GoogleSharing targeted anonymity service.