Weekly #cybersecurity digest to your inbox

Subscribe for our weekly digest and get each Friday the most important cyber security news, list of upcoming free webinars and a summary of Cyberday development to your inbox.
Thanks! See you in your inbox on Fridays. :)
Unfortunately something went wrong. You can contact us at team@cyberdayai.
Recent #cybersecurity weekly digests
See full archive? Go to Weekly digests -page >>

🛡️ Cyberdigest: Secure your passwords! 📝 DORA has come into effect 💰 News: data protection 🔐

Published at 

17:01

Open digest

🛡️ Cyberdigest: DORA is coming into effect January 17th, are you ready? 🛡️ Security trends 2025 ⭐️

Published at 

17:04

Open digest

🛡️ Cyberdigest: No time to waste, join us for the first webinars of the year 2025!  ➡️💻 Impactful cybersecurity events of 2024 📰 

Published at 

17:03

Open digest

Webinars
See the full calendar? Go to Webinars-page >>
Watch now
Webinar

Coming up on:

Wednesday

30

.

5

.

at

14:00

Admin training (part 3/5): Risk management and security control implementation

Register now
Watch now
Webinar

Coming up on:

Wednesday

7

.

6

.

at

14:00

Admin training (part 5/5): Operating and improving an ISMS and reporting compliance

Register now
Watch now
Webinar

Coming up on:

Wednesday

13

.

6

.

at

14:00

Admin training (part 4/5): Automating employee awareness, guidance and training

Register now
Watch now
Webinar

Coming up on:

Wednesday

21

.

6

.

at

15:00

ISO 27001 (part 3/5): Certification audit fundamentals

Register now
Watch now
Webinar

Coming up on:

Wednesday

9

.

8

.

at

14:00

Admin training (part 2/5): Framework selection and asset identification

Register now
Watch now
Webinar

Coming up on:

Wednesday

9

.

8

.

at

15:00

ISO 27001 (part 4/5): Staff training, guidelines and policy documents

Register now
Blog posts
Info of new posts? Subscribe now >>

NIS2 Incident Reporting Requirements and related ISO 27001 Best Practices

This post outlines NIS2 incident reporting and further describes ISO 27001 best practices, and their application in crafting successful incident reporting processes for your organization.

article

8.3.2024

Top 7 information security standards, frameworks and laws explained

Many information security frameworks are available to help organizations build their own security plans. This article provides key information about some of the most popular information security frameworks.

article

4.3.2024

ISO 27001 and NIS2: Understanding their Connection

Learn how the ISO 27001 and the NIS2 are "connected" and why they are brought up together pretty often. Understand their differences and synergy with the help of this blog post.

article

1.3.2024

Guide to Incident Detection and Reporting: Prepared for the Worst

In this guide you'll learn to navigate the incident detection and reporting process, explore various mechanisms, understand reporting, documentation, and derive crucial lessons. We also glance at other ingredients for successful incident management.

article

22.2.2024

NIS2 Overview: History, key contents and significance for top management

Get an overview of NIS2's main contents and understand how it makes top management clearly responsible for organization's information security efforts.

article

16.2.2024

Best Practices and Common Challenges of ISMS Implementation

No matter if you are an IT professional, a cyber security expert, or in a management role, this post will provide you with valuable insights into the best practices for a successful ISMS implementation and how to navigate common challenges.

article

14.2.2024

ISMS Guide: Top 10 ISMS Implementation Benefits

What is an ISMS and why does your organization benefit from its implementation in the long run? This blog post will give you a short guide about all the basics you need to know about an ISMS and its top 10 benefits.

article

9.2.2024

Intro to Incident Management: Definitions, benefits and best practices

Learn how an incident management process improves communication, documentation, and continuous improvement for IT organisations.

article

6.2.2024

News articles
Get weekly news? Subscribe now >>

With Crime-as-a-Service, anyone can be an attacker

CaaS = experienced cybercriminals sell access to the tools and information needed for scams. Its generalization is largely the reason why attacks are getting better and more targeted at small businesses as well. #cybersecurity

Go to article at
4.8.2021

This new phishing attack is 'sneakier than usual', Microsoft warns

MS warns 365 users of crafty #phishing messages that mimic a shared OneDrive file. Scams develop at a rapid pace. Comprehensive guidance / training for employees and extensive use of MFA as countermeasures. #cybersecurity

Go to article at
4.8.2021

Ransom demands reaching $1.2M, smaller companies increasingly targeted

#Ransomware a growing #cybersecurity threat for everyone: 🏢 Smaller companies increasingly targeted ⚠️ Avg. ransom demand 1,01M€ (+290% vs. 2020) ⚠️ New variants continuously (e.g. Mount Locker, HelloKitty, Conti)

Go to article at
4.8.2021

On course for a good hacking

The simplicity of hacking somewhere can be eye-openingly impressive. Spoiler: no master tech skills required. Read about how easily hackers could penetrate a premier golf club. #cybersecurity

Go to article at
4.8.2021

Nuisance call-blocking firm fined £170,000 for making almost 200,000 nuisance calls

ICO, the UK's data protection authority, fined a company for unsolicited direct marketing calls. What makes the case ironic is that the company itself sells call-blocking systems. Direct marketing can nowadays backfire. #cybersecurity

Go to article at
4.8.2021

Google shuts down malicious ad posing as Brave browser but delivering malware

Scam targeting Brawe browser downloaders: ⚡ Download page a copy at bravė.com (looks identical on address bar) 💸 Ads directing to malicious site 🦠 A stealer malware distributed along the browser #cybersecurity

Go to article at
4.8.2021

Vishing: What is it and how do I avoid getting scammed?

#Vishing is phishing via phone. Tactics used: 📲 Caller ID spoofing (e.g. location hiding, numeron varastaminen) 📧 Multi-channel scams, SMS / email before the call 👤 Scraping details from social media profiles #cybersecurity

Go to article at
18.6.2021

What is the real cost of ransomware?

Worrying #ransomware statistics: ☠️ 80% of those who paid the ransom were soon the target of another attack 📉 66% reported a clear drop in sales after the attack 🙅 29% of incidents led to employee layoffs #cybersecurity

Go to article at
18.6.2021

Microsoft: Scammers bypass Office 365 MFA in BEC attacks

📧 BEC attack phases: 1. Trick user to fill password in a login form mimicking the real one 2. Circumvent MFA utilizing legacy auth protocols (IMAP/POP3) 3. Use forwarding rules to get important emails to the attacker #cybersecurity

Go to article at
18.6.2021

Get started today

Start free, in your familiar Teams environment.
If you have some questions first, book a meeting with us.

Start free 14-day trial
Book a meeting
How it works?
SummarySecurity tasks and assuranceDocumentation workflowsEmployee guidelinesReporting templates
Use cases
By frameworkAll frameworksISO 27001NIS2 directiveNIST CSFCSA CCMISO 27701GDPRISO 27017ISO 27018
By methodCyber risk managementEmployee awarenessCompliance reportingControl managementAsset managementDynamic policy documentsPrivacy management
Resources
AcademyWebinarsBlogHelp articlesVideo coursesWeekly news digestsSubscribe to AcademyLeave a reviewPartner programTeamTerms of usePrivacy policy
Contact us
+358 10 231 6010
team@cyberday.ai
App works in:
Known in Finland as Digiturvamalli
© Cyberday Inc. Kalevantie 2 33100 Tampere, Finland
Cyberday.ai - Improve and certify your cyber security