He clicked the wrong email—now he’s the most feared man in cybercrime

Brian Krebs wasn’t always a big name in cybersecurity. Before he became the go-to expert on cybercrime, he was just another reporter who made a mistake that would change his life.

Brian spent 14 years at The Washington Post, where he wrote over 1,300 blog posts on security and hundreds of articles for the newspaper. But if you asked him how he got into cybersecurity, he’d tell you it was “by accident,” and that he had “no” technical background.

Krebs graduated with a degree in International Studies, not exactly the path to becoming a cyber security expert. He wasn’t particularly interested in computers—just a kid who had played around with an Apple II and dabbled in online bulletin boards. But that all changed in 2001 when a Chinese hacking group took over his home network.

Krebs was experimenting with Red Hat Linux on an old Hewlett-Packard, trying to turn it into a firewall. Then, the Lion Worm hit—twice. It locked him out of his own system. Instead of throwing in the towel, Krebs got obsessed. He started reading everything he could about computer security and didn’t stop.

At the time, Krebs was covering tech at The Washington Post. His job was steady but not spectacular. That email could have been a disaster, but it turned out to be the start of something much bigger. He began sharing what he learned on the Post’s blog, "Security Fix," which he launched in 2005. Krebs wasn’t only interested in the technical side; he wanted to know who was behind these attacks and why. He tracked down hackers, exposed their methods, and shared their stories with the world.

But all this attention wasn’t without its downsides. Krebs has been hit with DDoS attacks, had his home “swatted,” and dealt with constant threats. Still, he kept going, driven by a desire to get to the truth, no matter the cost.

Today, after leaving The Washington Post in 2009, Brian runs Krebs on Security, a blog that’s a must-read for cybersecurity professionals, law enforcement, and anyone interested in understanding the shadowy side of the internet. His reporting broke stories that exposed major cybercrime rings, and his work got noticed by everyone—from industry insiders to the criminals themselves. He’s become one of the most trusted voices in cybersecurity in the world, all because he turned a potentially career-ending mistake into a lifelong mission.

Three career lessons from Brian Krebs:

1. Embrace your mistakes: Krebs didn’t plan on becoming a cybersecurity expert. He stumbled into it by making a mistake. When things go wrong, don’t panic—lean in and see where it takes you.

2. Stay curious: After his system got hacked, Krebs didn’t just move on. He got curious, dug in, and taught himself everything he could. In any career, curiosity is what keeps you growing and adapting.

3. Build real relationships: Krebs didn’t have a tech background, so he built relationships with the smartest people he could find. Your network can teach you what you don’t know—don’t be afraid to ask for help.

Sometimes, the biggest breakthroughs start with a mistake. Brian Krebs turned a hacked computer into a career that’s changed the way we think about cybersecurity.

Not a sponsored post.

I found this new design tool, Polymet, on Friday and was blown away. See how I built a new product feature in minutes—without being a designer.

Here’s what I did:

- Took a screenshot of our product dashboard.

- Used Polymet to instantly rebuild the interface.

- Prototyped a new feature: An expert marketplace, in minutes.

Watch the breakdown video here.

I played around with it even more to see how far you can take it and the results are pretty wild.