10 Information Security Professionals to Check Out on Twitter

December 7, 2022

In the U.S., people spend 2 hours and 3 minutes a day on social media channels such as Facebook and Twitter, these channels becoming top sources for industry and daily news. The “Twittersphere” specifically is full of cybersecurity experts sharing their thoughts, research and news on a wide range of topics such as vulnerabilities, viruses, malware, application security, data breaches, privacy, threat intelligence, privacy and more.

Here is a collection of 10 information security professionals you or your business might want to be following on Twitter:

1. Brian Krebs | @briankrebs

Investigative journalist Brian Krebs provides insightful and hard-hitting reporting on security. Krebs covered computer security for The Washington Post from 1995 until 2009, his Spam Nation book was a New York Times bestseller, and his Krebs On Security blog is must-read in the industry. With over 365,000 followers Krebs is full of great security content.

2. Eugene Kaspersky | @e_kaspersky

With more than 186,000 followers, Eugene Kaspersky, the founder of the cybersecurity company bearing his name, tops this Twitter list in terms of reach. He connects with an audience to whom he regularly tweets content from both his personal blog and his company’s blog, mixing in industry-wide security and privacy trends, news and debates.

He most often tweets about new cyber threats, but on occasion writes his own opinions and views on the state of cybersecurity.

3. Troy Hunt |  @troyhunt

Troy Hunt is a Microsoft executive charged with product security and is also the creator of www.haveibeenpwned.com . It’s safe to say he is an authority figure when it comes to online security. His Twitter account is similarly diverse and filled with useful content.

4. Katie Moussouris | @k8em0

Being named as one of the top women in the security industry, Katie Moussouris, former chief policy officer at HackerOne, does the honor justice with the work she performs on vulnerability disclosure, response and bug bounty programs. She is a a vulnerability disclosure consultant and the founder of Luta Security, a bug bounty service.

5. Debra Baker | @deb_infosec

Debra Baker has an account filled with hot infosec news and also posts a regular podcast filled with security insights. Her 20 years of experience in IT security and CIS expertise make her a valuable educational resource.

6. Chris Wysopal | @WeldPond

Along with six other members of the L0pht hacker think tank, Chris Wysopal prophesied, during a congressional hearing, of the mess that was going to befall individuals and businesses as the use of the web began to explode in the late 1990s. He explained this was due to grossly flawed and insecure software, hardware, and networking products. In 2006, he co-founded the application security company, Veracode, where he oversees technology strategy and information security as CTO and CISO.

7. Jeremiah Grossman | @jeremiahg

Jeremiah Grossman, founder of WhiteHat Security, is a web application security expert whose writings have appeared in major publications such as The Wall Street Journal, Forbes, and The New York Times. He regularly speaks around the world at events such as TED, BlackHat, RSA, and SANS. He has been a guest lecturer at top universities such as UC Berkeley, Stanford, Harvard, and UCLA. He is currently a Security Strategist at Tenable.

8. Graham Cluley  |  @gcluley

Graham Cluley is one of the most well-known and trusted security experts out there. After a rich and long career in computer security industry, Graham moved into blogging and writing about cybersecurity trends and important news.

9. Matthew Green | @matthew_d_green

Cryptography expert Matthew Green is an associate professor at the Johns Hopkins Information Security Institute and has designed and analyzed cryptographic systems used in wireless networks, payment systems, and digital content protection platforms. His research focuses on the ways cryptography can be used to promote user privacy. His blog is called A Few Thoughts on Cryptographic Engineering.

 10.  US-CERT  |  @USCERT_gov

CERT is short for Computer Emergency Readiness Team, and is at the leading edge in the fight against cybercrime and cyber warfare. Their Twitter account is as clean and minimalistic as possible, presenting constant updates on the latest developments with minimal fluff.

Social media is a great resource for all things information and cyber security related. Be sure to check out UMSA Foundation on Twitter and LinkedIn along with Secure360 on Facebook, Twitter and LinkedIn.