Weekly #cybersecurity digest to your inbox

Subscribe for our weekly digest and get each Friday the most important cyber security news, list of upcoming free webinars and a summary of Cyberday development to your inbox.
Thanks! See you in your inbox on Fridays. :)
Unfortunately something went wrong. You can contact us at team@cyberdayai.
Recent #cybersecurity weekly digests
See full archive? Go to Weekly digests -page >>

🛡️ Cyberdigest: September round-up is published! 📰 What means cyber resilience? 👀

Published at 

17:00

Open digest

🛡️ Cyberdigest: IT & OT Cubersecurity 🖥️ Admin webinar next week, will we see you there? 👉

Published at 

17:00

Open digest

🛡️ Cyberdigest: Cyber Security in Supply Chain Risk Management 🛡️ We are at Cyber Security Nordic! ⭐️

Published at 

17:01

Open digest

Webinars
See the full calendar? Go to Webinars-page >>
Watch now
Webinar

Coming up on:

Wednesday

30

.

5

.

at

14:00

Admin training (part 3/5): Risk management and security control implementation

Register now
Watch now
Webinar

Coming up on:

Wednesday

7

.

6

.

at

14:00

Admin training (part 5/5): Operating and improving an ISMS and reporting compliance

Register now
Watch now
Webinar

Coming up on:

Wednesday

13

.

6

.

at

14:00

Admin training (part 4/5): Automating employee awareness, guidance and training

Register now
Watch now
Webinar

Coming up on:

Wednesday

21

.

6

.

at

15:00

ISO 27001 (part 3/5): Certification audit fundamentals

Register now
Watch now
Webinar

Coming up on:

Wednesday

9

.

8

.

at

14:00

Admin training (part 2/5): Framework selection and asset identification

Register now
Watch now
Webinar

Coming up on:

Wednesday

9

.

8

.

at

15:00

ISO 27001 (part 4/5): Staff training, guidelines and policy documents

Register now
Blog posts
Info of new posts? Subscribe now >>

NIS2: Who's in the scope and what security measures are required? (part 2/3)

In this post you'll learn about what industries are affected by NIS2, security requirements the directive sets, and the available enforcement methods if an organization is not compliant.

article

23.8.2023

NIS2: Working towards compliance with Cyberday (3/3)

✈️ You want to lift your cyber security management to a new level & get NIS2 compliant with a smart tool like Cyberday? In this post you'll learn how your organization can achieve NIS2 compliance in a smart way by building an own agile ISMS.

article

23.8.2023

NIS2: Get familiar with the EU's new cyber security directive (part 1/3)

Learn about the background and reasons behind the EU's new Network and Information Security 2 (NIS2) Directive. How does it affect your company and how should you react to be compliant?

article

1.8.2023

SOC 2: Working towards compliance (1/2)

With the help of SOC 2, organisations can provide proof of effectively implemented controls and the use of best practices to protect the data to their customers and stakeholders, which may help to build trust.

article

31.7.2023

Personnel information security training and guidelines in Cyberday

Most data breaches start with human error. Still, investments in technical information security are often made more eagerly. We tell you why staff information security training and guidelines are important and how to implement then efficiently.

article

13.6.2023

Information security risk management in Cyberday: Identifying risks, evaluation, treatment and closure

Every cyber security framework highlights risk management in its own way. We summarize in this post, what's essential in information security risk management and what kind of an approach Cyberday offers for it.

article

13.6.2023

Become a Cyberday partner: Features, benefits and best practices

A good and efficient tool such as Cyberday is a great way to work on the organization's cyber secuirty. However, for some organizations that is not enough and the expertise and support of a consultant is needed. Our partner program offers both!

article

6.6.2023

Cyberday Community has been launched!

We just launched a new Community section inside Cyberday. Our goal is to make collaboration with your peers and with us easier and thus help you improve your information security even further!

article

24.3.2023

News articles
Get weekly news? Subscribe now >>

Ransomware Attacks Affected 649 Critical Infrastructure Organizations in 2021, FBI Cyber Crime Report Says

🗞️ FBI's IC3 released 2021 its cyber crime report. 👤 847,376 complaints 💸 $6.9 billion in total losses #Ransomware attacks pose the biggest risk to critical infrastructure, with 649 organizations affected in 14/16 sectors in 2021.

Go to article at
8.4.2022

The Original APT: Advanced Persistent Teenagers

⚠️ LAPSUS$ has breached top companies. MS warns they use old-fashioned techniques, that are hard to block with tech: 👤 target staff at personal addresses 💰 offer $20,000 a week to buy remote access creds 🎣 #phishing to help desk

Go to article at
8.4.2022

Android apps with 45 million installs used data harvesting SDK

Warning about Play apps stealing data with an SDK by a shady Panama-based firm. ⚠️ Apps were collecting data with significant #privacy risks, e.g. any clipboard content, GPS data, emails and phone numbers. List of apps in the article >

Go to article at
8.4.2022

Germany Shuts Down Russian Hydra Darknet Market; Seizes $25 Million in Bitcoin

🚨 Takedown of Hydra, a Russian-language darkweb market of 17M users and active since 2015, was announced on Tuesday. It was used to sell e.g.: 💊 illegal narcotics 🆔 forged documents / IDs 💳 stolen credit / sim cards #cybersecurity

Go to article at
8.4.2022

Lapsus$ And SolarWinds Hackers Both Use The Same Old Trick To Bypass MFA

MFA is one of most important safeguards in #cybersecurity. ⚠️ But hackers have ways to clear weaker forms of MFA. A technique called MFA prompt-bombing has been used in multiple high-profile company hacks lately. Learn more here >>

Go to article at
8.4.2022

A Detailed Look at the Conti Ransomware Gang

Ukrainian researcher leaked 60,000 messages from inside Conti - a #ransomware gang that extorted 180M$ just last year. ☢️ Msgs reveal e.g. a business-like hierarchy, ways to dodge law enforcement and negotiation tactics. Learn more >>

Go to article at
1.4.2022

Hackers Use Google reCAPTCHA To Hide Phishing URLs and Defeat Email Security Scanners To Steal User Credentials

Websites use Google's reCAPTCHA to ensure they interact with humans, not bots. 🎣 Criminals use it to hide #phishing URLs. You get an email with an attachment taking you to reCAPTCHA. Only after the puzzle, you get to e.g. fake MS login.

Go to article at
1.4.2022

CISA warns of attacks targeting Internet-connected UPS devices

UPS devices are used as power backups in critical environments. ⚠️ They connect to internet to allow e.g. power monitoring and maintenance. CISA warns of attacks! Disconnect, use VPN & MFA / strong passwords for better #cybersecurity.

Go to article at
1.4.2022

Ukraine dismantles 5 disinformation bot farms, seizes 10,000 SIM cards

Ukrainian Security Service (SSU) raided locations used to host bot farms. 🤖 These fueled 100,000 fake social media accounts spreading false information with the goal of discouraging Ukrainian citizens and instill panic. #cybersecurity

Go to article at
1.4.2022

Get started today

Start free, in your familiar Teams environment.
If you have some questions first, book a meeting with us.

Start free 14-day trial
Book a meeting
How it works?
SummarySecurity tasks and assuranceDocumentation workflowsEmployee guidelinesReporting templates
Use cases
By frameworkAll frameworksISO 27001NIS2 directiveNIST CSFCSA CCMISO 27701GDPRISO 27017ISO 27018
By methodCyber risk managementEmployee awarenessCompliance reportingControl managementAsset managementDynamic policy documentsPrivacy management
Resources
AcademyWebinarsBlogLeave a reviewPartner programTeamTerms of usePrivacy policy
Contact us
+358 10 231 6010
team@cyberday.ai
App works in:
© Cyberday | Agendium Ltd, Kalevantie 2 33100 Tampere, Finland
Cyberday.ai - Improve and certify your cyber security