Weekly #cybersecurity digest to your inbox

Subscribe for our weekly digest and get each Friday the most important cyber security news, list of upcoming free webinars and a summary of Cyberday development to your inbox.
Thanks! See you in your inbox on Fridays. :)
Unfortunately something went wrong. You can contact us at team@cyberdayai.
Recent #cybersecurity weekly digests
See full archive? Go to Weekly digests -page >>

🛡️ Cyberdigest:Learn about TOP frameworks 🎉 Development news now in Cyberday! ➡️

Published at 

17:00

Open digest

🛡️ Cyberdigest: IEC 62443 (2-1) and DORA RMF published 🎉 Incident management & Summer kick-off 🗞️ 

Published at 

17:05

Open digest

🛡️ Cyberdigest: May's Product & News round-up 📝 Final webinars before summer break ☀️

Published at 

16:07

Open digest

Webinars
See the full calendar? Go to Webinars-page >>
Watch now
Webinar

Coming up on:

Wednesday

30

.

5

.

at

14:00

Admin training (part 3/5): Risk management and security control implementation

Register now
Watch now
Webinar

Coming up on:

Wednesday

7

.

6

.

at

14:00

Admin training (part 5/5): Operating and improving an ISMS and reporting compliance

Register now
Watch now
Webinar

Coming up on:

Wednesday

13

.

6

.

at

14:00

Admin training (part 4/5): Automating employee awareness, guidance and training

Register now
Watch now
Webinar

Coming up on:

Wednesday

21

.

6

.

at

15:00

ISO 27001 (part 3/5): Certification audit fundamentals

Register now
Watch now
Webinar

Coming up on:

Wednesday

9

.

8

.

at

14:00

Admin training (part 2/5): Framework selection and asset identification

Register now
Watch now
Webinar

Coming up on:

Wednesday

9

.

8

.

at

15:00

ISO 27001 (part 4/5): Staff training, guidelines and policy documents

Register now
Blog posts
Info of new posts? Subscribe now >>

NIS2 Overview: History, key contents and significance for top management

Get an overview of NIS2's main contents and understand how it makes top management clearly responsible for organization's information security efforts.

article

16.2.2024

Best Practices and Common Challenges of ISMS Implementation

No matter if you are an IT professional, a cyber security expert, or in a management role, this post will provide you with valuable insights into the best practices for a successful ISMS implementation and how to navigate common challenges.

article

14.2.2024

ISMS Guide: Top 10 ISMS Implementation Benefits

What is an ISMS and why does your organization benefit from its implementation in the long run? This blog post will give you a short guide about all the basics you need to know about an ISMS and its top 10 benefits.

article

9.2.2024

Intro to Incident Management: Definitions, benefits and best practices

Strong incident management process minimizes disruptions. Learn how to build a process that keeps your org running during critical events.

article

6.2.2024

5 Efficient Ways for Involving People in Your Security Work

Discover how teamwork, education, reporting, and risk assessments empower ISMS. Explore 5 ways to engage people for a secure, collaborative digital space.

article

1.2.2024

AI Act, cyber risks and breaches: Cyberday product and news roundup 1/2024 🛡️

In January's summary, development themes include reporting updates, improved report sharing and upgraded Academy. On the news side talk about AI Act, cyber risks and breaches.

article

30.1.2024

10 most important tasks for a CISO and tips for being successful

Explore the top 10 responsibilities of a CISO and get best practices for success, covering risk management, collaboration, compliance, and continuous learning.

article

24.1.2024

The Human Firewall Effect: Tips for Securing Your Organization from Within

This blog post emphasizes the critical role employees play in bolstering an organization's cyber security. It discusses developing clear guidelines, employee training, and monitoring progress to create a strong human firewall.

article

19.1.2024

News articles
Get weekly news? Subscribe now >>

How IT Teams Can Use 'Harm Reduction' for Better Cybersecurity Outcomes

Harm reduction approach in #cybersecurity guidance: ⛔ "Never use QR codes!" vs. ⚠️ "Well.. if you do use a QR code, at least use these cues to know, if you landed on a secure site or not." Efficient or sloppy?

Go to article at
5.8.2022

FEMA warns emergency alert systems could be hacked to transmit fake messages unless software is updated

⚠️ #Cybersecurity researcher provided FEMA with evidence that unpatched EAS (Emergency Alert System) devices are vulnerable. 📺 TV and radio networks use these to transmit alerts. This could allow hackers to broadcast fake alert messages.

Go to article at
5.8.2022

Microsoft accounts targeted with new MFA-bypassing phishing kit

⚠️ Ongoing large-scale attack uses typo-squatted domains and proxy-based #phishing kit to target MS users and bypass MFA. Goal - breach corporate accounts for BEC attacks and divert payments to attacker's bank accounts. Attack details >>

Go to article at
5.8.2022

Industroyer: A cyber‑weapon that brought down a power grid

Back in 2017, Industroyer was the first #malware targeted for hitting power grids. ⚠️ In 04/22 Rus attacked grids in UKR. Attack was luckily thwarted, but critical infrastructure is becoming more and more frequent target for cyber attacks.

Go to article at
17.6.2022

Travel-related Cybercrime Takes Off as Industry Rebounds

Researchers warn a post-COVID upsurge in travel has painted a bullseye on the industry and has spurred #cybercrime's. Rising: ✈️ Theft of airline reward points 🔐 Account takeover for travel websites 🗄️ Travel-related database breaches

Go to article at
17.6.2022

New Hertzbleed Side Channel Attack Affects All Modern AMD and Intel CPUs

⚠️ New interesting #vulnerability in modern Intel/AMD processors can let attackers steal e.g. encryption keys via timing-based side channels. Intel recommends cryptographic devs to harden apps against frequency throttling info disclosure.

Go to article at
17.6.2022

Facebook Messenger Scam Duped Millions

🎣 One #phishing scam stole 1M FB credentials in 4 months - and counting. Scam included familiar elements: 🔗 short msg with a link ↩️ chain of redirects to dodge security 🔐 fake FB login 🤖 automated distribution to victim's friends

Go to article at
17.6.2022

Ransomware Group Debuts Searchable Victim Data

#Ransomware groups have started regularly threatening to publish stolen victim data on dark web. ⚠️ Latest cunning innovation to get victims concerned is publishing on public internet, with all data available in an easily searchable form.

Go to article at
17.6.2022

Paying Ransomware Paints Bigger Bullseye on Target’s Back

#Ransomware deals often go wrong: ⚠️ 80% of victims that paid were hit a 2nd time ⚠️ Frequently data became unusable during the decryption because of corruption issues Remember - attackers will often try to profit in any possible way.

Go to article at
10.6.2022

Get started today

Start free, in your familiar Teams environment.
If you have some questions first, book a meeting with us.

Start free 14-day trial
Book a meeting
How it works?
SummarySecurity tasks and assuranceDocumentation workflowsEmployee guidelinesReporting templates
Use cases
By frameworkAll frameworksISO 27001NIS2 directiveNIST CSFCSA CCMISO 27701GDPRISO 27017ISO 27018
By methodCyber risk managementEmployee awarenessCompliance reportingControl managementAsset managementDynamic policy documentsPrivacy management
Resources
AcademyWebinarsBlogHelp articlesVideo coursesContent libraryNewsletterLeave a reviewPartner programTeamTerms of usePrivacy policy
Contact us
+358 10 231 6010
team@cyberday.ai
App works in:
Known in Finland as Digiturvamalli
© Cyberday Inc. Kalevantie 2 33100 Tampere, Finland
Cyberday.ai - Improve and certify your cyber security