Weekly #cybersecurity digest to your inbox

Subscribe for our weekly digest and get each Friday the most important cyber security news, list of upcoming free webinars and a summary of Cyberday development to your inbox.

Thanks! See you in your inbox on Fridays. :)

Unfortunately something went wrong. You can contact us at team@cyberdayai.

Recent #cybersecurity weekly digests

See full archive? Go to Weekly digests -page >>

🛡️ Cyberdigest: IEC 62443 (2-1) and DORA RMF published 🎉 Incident management & Summer kick-off 🗞️

Published at

17:05

Open digest

🛡️ Cyberdigest: May's Product & News round-up 📝 Final webinars before summer break ☀️

Published at

16:07

Open digest

🛡️ Cyberdigest: New feature: Automated ISMS key data export 📝 Have you registered to May's Admin webinar?

Published at

17:03

Open digest

Webinars

See the full calendar? Go to Webinars-page >>

Coming up on:

Wednesday

30

.

5

.

at

14:00

Admin training (part 3/5): Risk management and security control implementation

Coming up on:

Wednesday

7

.

6

.

at

14:00

Admin training (part 5/5): Operating and improving an ISMS and reporting compliance

Coming up on:

Wednesday

13

.

6

.

at

14:00

Admin training (part 4/5): Automating employee awareness, guidance and training

Coming up on:

Wednesday

21

.

6

.

at

15:00

ISO 27001 (part 3/5): Certification audit fundamentals

Coming up on:

Wednesday

9

.

8

.

at

14:00

Admin training (part 2/5): Framework selection and asset identification

Coming up on:

Wednesday

9

.

8

.

at

15:00

ISO 27001 (part 4/5): Staff training, guidelines and policy documents

Blog posts

Info of new posts? Subscribe now >>

What is a vCISO? Understanding the role of virtual CISO

What is a vCISO, what they do, and why the virtual CISO model is growing fast among companies and cybersecurity consultants.

12.6.2025

What is a modular cyber security framework and why they are essential for consultants

Modular cyber security frameworks make compliance management easier, and helps consultants scale faster, win more deals, and build recurring revenue.

12.6.2025

Cyberday app outage on Tuesday 10/6/2025: Explanation and follow-up

This message goes through the details of the recent incident that produced downtime in Cyberday during 10.6.2025, and related early mitigation.

11.6.2025

Kicking Off a Summer of Innovation at Cyberday

This summer, Cyberday is proud to launch an ambitious and inspiring project centered on deep regulatory research and international collaboration. We’ve welcomed 12 talented information security students, who will work together to simplify compliance.

10.6.2025

What is CRA? Introduction to Cyber Resilience Act requirements

What is CRA (Cyber Resilience Act)? Learn CRA requirements, who it applies to, and how to prepare for CRA compliance with this complete, practical guide.

2.6.2025

NIS2 delays, healthcare breaches & improved Trust Center: Cyberday product and news summary 5/2025 🛡️

This is the May news and product review from Cyberday and also a summary of the latest admin webinar. Read about NIS2 delays, recent cyberattacks as well as recent and future development on Cyberday.

30.5.2025

End of hourly billing: why value-based pricing works for compliance consultants

Hourly billing is fading fast in compliance consulting. Learn why value-based pricing better aligns incentives, boosts earnings, and how compliance consultants can transition effectively.

26.5.2025

What is an ISMS? A guide to information security management systems

Learn what ISMS is, why it matters, and how to implement an ISMS step-by-step. See how ISO 27001 and NIS2 fit into your information security management system.

14.5.2025

News articles

Get weekly news? Subscribe now >>

LockBit victims in the US alone paid over $90m in ransoms since 2020

⚠️ Seven nations (e.g. USA, UK, Germany) issued a joint security advisory about LockBit #ransomware gang. Advisory is a manual for identifying, stopping and reporting LockBit activity, which has cost > $90m for only US victims in 3 years.

Go to article at

People Are Pirating GPT-4 By Scraping Exposed API Keys

💳 To use OpenAI's LLMs (eg GPT-4), you need an OpenAI account w/ credit card. Some authors have left API keys exposed in their publicly accessible code - and now access to accounts with upto 150k$ usage are offered online. #cybercrime

Go to article at

New PowerDrop Malware Targeting U.S. Aerospace Industry

⚠️ Novel #malware found implanted in an unnamed domestic aerospace defense contractor last month. "PowerDrop uses advanced techniques to evade detection such as deception, encoding, and encryption" #cybersecurity #criticalinfra

Go to article at

7 tips for spotting a fake mobile app

📱 Many apps are after your money or personal data. Remember when downloading apps: ✅ Check the developer’s pedigree 📵 Look out for excessive app permissions Other similar tips for #cybersecurity in the article >>

Go to article at

Deepfake Cyber Attack Hits Russia: Fake Putin Message Broadcasted

📺 Hacker snuck in a fabricated message from Putin to russian radio and TV. Audio deepfakes are becoming very feasible with current tech. Convincing video deepfakes are more of a challenge, for now. #cybersecurity

Go to article at

Volt Typhoon targets US critical infrastructure with living-off-the-land techniques

Volt Typhoon is a state-sponsored actor, active since mid-2021 that targets critical infrastructure in the US. ➡️ This blog from MS describes their tactics for achieving / maintaining unauthorized access to target networks. #cybersecurity

Go to article at

OpenAI Leaders Call For Regulation To Prevent AI Destroying Humanity

ChatGPT founders call for a regulator to: ⚖️ place restrictions on AI 🔎 audit AI systems ✔️ test for compliance with safety standards in order to combat e.g. lock-in effects and becoming completely dependent on machines. #cybersecurity

Go to article at

Shedding light on AceCryptor and its operation

AceCryptor has been around since 2016 and operates as the cryptor-as-a-service behind tens of #malware families ➡️ This blog by ESET researchers goes through some technical details about the prevalent cryptor.

Go to article at

US Department of Transportation Suffered a Massive Security Breach Impacting 237,000 Federal Employees

⚠️ US Department of Transportation had a #cybersecurity breach exposing personal data of 114k current + 123k former employees. Breach hit staff administration systems (e.g. transit benefits), not the most critical transport safety systems.

Go to article at

Get started today

Start free, in your familiar Teams environment.
If you have some questions first, book a meeting with us.

Start free 14-day trial