SANS ISC http://isc.sans.org
CERT http://www.us-cert.gov/current Zero Day Blog at ZDNet http://blogs.zdnet.com/security Some other resources Ive got in my feed reader in addition to all the normal MS and vendor specific blogs: Adobe Product Security Response Team http://blogs.adobe.com/psirt/ iDefense Public Vulnerability Disclosures http://labs.idefense.com/intelligence/ Office of Inadequate Security (for breach info) http://www.databreaches.net Zero Day Tracker at eEye http://research.eeye.com/html/alerts/zeroday/index.html - Andy O. ________________________________________ From: David Lum [mailto:[email protected]] Sent: Wednesday, March 11, 2009 10:54 AM To: NT System Admin Issues Subject: Staying on top of alerts - your top 3 Im trying to stay ahead of security issues in relation to outbreaks, 0-day, and patches. I monitor SANS.ORG, CNET Security, DOE-CIRC and Securityfocus websites, plus am subscribed to MSs and Adobes security bulletins. While I cant possibly watch everything, what is on your guys top 3 lists of ways to be notified of outbreaks, vulnerabilities, and patches to various applications? David Lum // SYSTEMS ENGINEER NORTHWEST EVALUATION ASSOCIATION (Desk) 971.222.1025 // (Cell) 503.267.9764 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
