Weekly #cybersecurity digest to your inbox

Subscribe for our weekly digest and get each Friday the most important cyber security news, list of upcoming free webinars and a summary of Cyberday development to your inbox.
Thanks! See you in your inbox on Fridays. :)
Unfortunately something went wrong. You can contact us at team@cyberdayai.
Recent #cybersecurity weekly digests
See full archive? Go to Weekly digests -page >>

🛡️ Cyberdigest:Learn about TOP frameworks 🎉 Development news now in Cyberday! ➡️

Published at 

17:00

Open digest

🛡️ Cyberdigest: IEC 62443 (2-1) and DORA RMF published 🎉 Incident management & Summer kick-off 🗞️ 

Published at 

17:05

Open digest

🛡️ Cyberdigest: May's Product & News round-up 📝 Final webinars before summer break ☀️

Published at 

16:07

Open digest

Webinars
See the full calendar? Go to Webinars-page >>
Watch now
Webinar

Coming up on:

Wednesday

30

.

5

.

at

14:00

Admin training (part 3/5): Risk management and security control implementation

Register now
Watch now
Webinar

Coming up on:

Wednesday

7

.

6

.

at

14:00

Admin training (part 5/5): Operating and improving an ISMS and reporting compliance

Register now
Watch now
Webinar

Coming up on:

Wednesday

13

.

6

.

at

14:00

Admin training (part 4/5): Automating employee awareness, guidance and training

Register now
Watch now
Webinar

Coming up on:

Wednesday

21

.

6

.

at

15:00

ISO 27001 (part 3/5): Certification audit fundamentals

Register now
Watch now
Webinar

Coming up on:

Wednesday

9

.

8

.

at

14:00

Admin training (part 2/5): Framework selection and asset identification

Register now
Watch now
Webinar

Coming up on:

Wednesday

9

.

8

.

at

15:00

ISO 27001 (part 4/5): Staff training, guidelines and policy documents

Register now
Blog posts
Info of new posts? Subscribe now >>

Navigating the Cybersecurity Maze: Master NIS2 with the help of ISO 27001

Learn how to master NIS2 with ISO 27001 and grab our free NIS2 e-book! This blog post was originally written for the Cyber Security Nordic 2024 event where Cyderday is presented as Strategic partner.

article

3.10.2024

Corporate Security Alert: Identifying Dangerous Apps on Employee Phones

This article uncovers hidden security risks of popular apps on work devices, covering social media, messaging, cloud storage, gaming, utility, health, VPN, and shopping apps, with recommendations to safeguard corporate data.

article

20.9.2024

NIS2 national legistation, ransomware and a new development forum: Cyberday product and news round-up 9/2024 🛡️

This is the September news and product review from Cyberday. Read news about ransomware, new phishing techniques and local NIS2-legistations.

article

20.9.2024

IT and OT Cyber Security: Different Environments, Different Priorities

This blog post outlines the key differences between IT and OT cyber security, focusing on their distinct areas, objectives, environments, threat landscapes, and compliance requirements.

article

4.9.2024

Cyber Security in Supply Chain Risk Management

Businesses should prioritize supply chain security by adopting best cyber security practices, fostering resilience, and promoting collaboration to protect against evolving cyber threats. Learn more about this topic in this blog post.

article

22.8.2024

Spreadsheet vs. ISMS tool - top 10 reasons why a tool is better than the traditional way

Discover the top 10 reasons why agile tools outperform traditional spreadsheets in managing cyber security compliance, from centralized management to continuous improvement.

article

22.8.2024

ISMS Essentials: Mastering a Data System Inventory for Your Organization

This post provides essential insights for maintaining a data system inventory within your organization's ISMS, detailing key processes, asset types, and tackling common challenges.

article

15.8.2024

Incident Detection: Building, Nurturing, and Continuously Improving a Proactive Environment

Shift from reactive to proactive incident detection. Use advanced tools, continuous learning, and customised strategies to anticipate and prevent issues. Focus on constant improvement and innovation to boost security and resilience.

article

15.8.2024

News articles
Get weekly news? Subscribe now >>

How IT Teams Can Use 'Harm Reduction' for Better Cybersecurity Outcomes

Harm reduction approach in #cybersecurity guidance: ⛔ "Never use QR codes!" vs. ⚠️ "Well.. if you do use a QR code, at least use these cues to know, if you landed on a secure site or not." Efficient or sloppy?

Go to article at
5.8.2022

FEMA warns emergency alert systems could be hacked to transmit fake messages unless software is updated

⚠️ #Cybersecurity researcher provided FEMA with evidence that unpatched EAS (Emergency Alert System) devices are vulnerable. 📺 TV and radio networks use these to transmit alerts. This could allow hackers to broadcast fake alert messages.

Go to article at
5.8.2022

Microsoft accounts targeted with new MFA-bypassing phishing kit

⚠️ Ongoing large-scale attack uses typo-squatted domains and proxy-based #phishing kit to target MS users and bypass MFA. Goal - breach corporate accounts for BEC attacks and divert payments to attacker's bank accounts. Attack details >>

Go to article at
5.8.2022

Industroyer: A cyber‑weapon that brought down a power grid

Back in 2017, Industroyer was the first #malware targeted for hitting power grids. ⚠️ In 04/22 Rus attacked grids in UKR. Attack was luckily thwarted, but critical infrastructure is becoming more and more frequent target for cyber attacks.

Go to article at
17.6.2022

Travel-related Cybercrime Takes Off as Industry Rebounds

Researchers warn a post-COVID upsurge in travel has painted a bullseye on the industry and has spurred #cybercrime's. Rising: ✈️ Theft of airline reward points 🔐 Account takeover for travel websites 🗄️ Travel-related database breaches

Go to article at
17.6.2022

New Hertzbleed Side Channel Attack Affects All Modern AMD and Intel CPUs

⚠️ New interesting #vulnerability in modern Intel/AMD processors can let attackers steal e.g. encryption keys via timing-based side channels. Intel recommends cryptographic devs to harden apps against frequency throttling info disclosure.

Go to article at
17.6.2022

Facebook Messenger Scam Duped Millions

🎣 One #phishing scam stole 1M FB credentials in 4 months - and counting. Scam included familiar elements: 🔗 short msg with a link ↩️ chain of redirects to dodge security 🔐 fake FB login 🤖 automated distribution to victim's friends

Go to article at
17.6.2022

Ransomware Group Debuts Searchable Victim Data

#Ransomware groups have started regularly threatening to publish stolen victim data on dark web. ⚠️ Latest cunning innovation to get victims concerned is publishing on public internet, with all data available in an easily searchable form.

Go to article at
17.6.2022

Paying Ransomware Paints Bigger Bullseye on Target’s Back

#Ransomware deals often go wrong: ⚠️ 80% of victims that paid were hit a 2nd time ⚠️ Frequently data became unusable during the decryption because of corruption issues Remember - attackers will often try to profit in any possible way.

Go to article at
10.6.2022

Get started today

Start free, in your familiar Teams environment.
If you have some questions first, book a meeting with us.

Start free 14-day trial
Book a meeting
How it works?
SummarySecurity tasks and assuranceDocumentation workflowsEmployee guidelinesReporting templates
Use cases
By frameworkAll frameworksISO 27001NIS2 directiveNIST CSFCSA CCMISO 27701GDPRISO 27017ISO 27018
By methodCyber risk managementEmployee awarenessCompliance reportingControl managementAsset managementDynamic policy documentsPrivacy management
Resources
AcademyWebinarsBlogHelp articlesVideo coursesContent libraryNewsletterLeave a reviewPartner programTeamTerms of usePrivacy policy
Contact us
+358 10 231 6010
team@cyberday.ai
App works in:
Known in Finland as Digiturvamalli
© Cyberday Inc. Kalevantie 2 33100 Tampere, Finland
Cyberday.ai - Improve and certify your cyber security