A Regular Joe - Logo

How Did You Know That?

Staying Informed About Cybersecurity Threats and News

  • Joe Shachaf
  • April 04, 2025
  • 10:13 pm

A few years ago, when Meltdown (CVE-2017-5754) was first discovered in the wild, I walked into a meeting and was immediately hit with two questions:

“What is it?” and “Are we vulnerable?”

Luckily, I had answers to both—and even a proposed response plan with steps forward.

It wasn’t because I had special access or insider info. It was because I made it a habit to stay updated.

Let me show you how you can too.

Why Staying Updated Matters

Cybersecurity threats evolve fast. Exploits drop without warning, patches are released on short notice, and attackers don’t wait for your Monday morning planning meeting.

Whether you’re a junior analyst or a seasoned CISO, being informed is part of the job.

Choose Your Channels

There’s no one-size-fits-all approach. What works for me might not work for you. But here are three types of channels I suggest exploring:

Podcasts

Great for passive learning during commutes or workouts.

RSS Feeds & News Aggregators

Efficient way to scan headlines and dive deeper when needed.

Social Media & Community

Places like X (Twitter), LinkedIn, Reddit, or Discord can surface fresh insights—if you follow the right people.

Tools I Use

These aren't endorsements, just what I personally use after years of trial and error.

Inoreader

For reading RSS feeds.

Previously, I used Feedly. I moved to Inoreader, because it offers much more flexability and better features such as automation, integration with other platforms, such as Make.Com, IFTTT and more, ability to select the timespan for "mark as read" (very useful for when you have feeds with tons of items).

Another great feature is the ability to monitor X (Twitter) or monitor pages for changes.

It is available on web, Android and iOS, here.

Pocket Casts

For managing and listening to podcasts. Also available across devices with syncing (web, Android and iOS).

I like it because it can download podcasts automatically, for offline listening (great for commute).

It has a free and plus (premium) versions. Use my link to get two free months.

Recommended Resources to Start With

There are hundreds of solid sources out there. Here are a few I find reliable:

Hacker News

Tech-centric, fast-paced, great for headlines and discussion.

Dark Reading

More magazine-like, with analysis and longer-form stories.

ISC2 Insights

A mix of news and personal reflections from professionals in the field.

Internet Storm Center Daily Podcast

A 5-minute daily update by SANS—dense, relevant, and highly recommended.

The CyberWire

Another 5-minute daily briefing—lighter than ISC, but still useful.

Bonus: My OPML File

Want to fast-track your setup?

You can import my curated list of feeds with this OPML (updated 04-04-2025) file to get started.

Let’s Share Knowledge

Have a favorite tool or source you rely on?

Drop me a line or leave a comment—I’m always looking to improve my system.

Joe Shachaf - Cybersecurity Specialist

About

Cybersecurity consultant, coach, and mentor.

I help people and organizations make smarter, safer decisions online.

Explore


Frequently Asked Questions


Contact

+1 (437) 214-4949

Richmond Hill, Ontario

Proudly Canadian

© Copyright 2025 - Joe Shachaf | Accessibility Statement | Privacy Policy | Terms of Service