The Sources Worth Following

Krebs on Security consistently publishes excellent investigative security journalism with careful sourcing. CISA — the Cybersecurity and Infrastructure Security Agency — publishes alerts on vulnerabilities and active threats, with minimal hype. Have I Been Pwned (haveibeenpwned.com) lets you check if your accounts appear in known leaked databases, and has a thoughtful blog on data breaches. The EFF's newsletter covers the intersection of civil liberties and digital security, with care. For AI-specific incidents, the AI Incident Database (incidentdatabase.ai) catalogs real-world AI failures and misuse, which is more grounded than general AI hype.

You don't need to follow all of these. Pick two. Add them to wherever you currently consume news. The goal is consistent, minimal exposure to major developments.