Weekly #cybersecurity digest to your inbox

Subscribe for our weekly digest and get each Friday the most important cyber security news, list of upcoming free webinars and a summary of Cyberday development to your inbox.

Thanks! See you in your inbox on Fridays. :)

Unfortunately something went wrong. You can contact us at team@cyberdayai.

Recent #cybersecurity weekly digests

See full archive? Go to Weekly digests -page >>

🛡️ Cyberdigest: September round-up is published! 📰 What means cyber resilience? 👀

Published at

17:00

Open digest

🛡️ Cyberdigest: IT & OT Cubersecurity 🖥️ Admin webinar next week, will we see you there? 👉

Published at

17:00

Open digest

🛡️ Cyberdigest: Cyber Security in Supply Chain Risk Management 🛡️ We are at Cyber Security Nordic! ⭐️

Published at

17:01

Open digest

Webinars

See the full calendar? Go to Webinars-page >>

Coming up on:

Wednesday

30

.

5

.

at

14:00

Admin training (part 3/5): Risk management and security control implementation

Coming up on:

Wednesday

7

.

6

.

at

14:00

Admin training (part 5/5): Operating and improving an ISMS and reporting compliance

Coming up on:

Wednesday

13

.

6

.

at

14:00

Admin training (part 4/5): Automating employee awareness, guidance and training

Coming up on:

Wednesday

21

.

6

.

at

15:00

ISO 27001 (part 3/5): Certification audit fundamentals

Coming up on:

Wednesday

9

.

8

.

at

14:00

Admin training (part 2/5): Framework selection and asset identification

Coming up on:

Wednesday

9

.

8

.

at

15:00

ISO 27001 (part 4/5): Staff training, guidelines and policy documents

Blog posts

Info of new posts? Subscribe now >>

ISO 27001 standard updated to 2022 version - what changed?

What has changed when comparing 2013 vs. 2022 versions of ISO 27001 and how are these updates visible on Cyberday?‍

18.11.2022

Efficient cyber risk management with new autopilot mode

We're constatly searching for ways to automate and create efficient cyber risk management. Our newest additions is risk autopilot mode. It's concept is described on this post.

1.6.2022

Infographic: Why is cyber security getting more and more important?

Here's a visual summary of some of the drivers that continue to make cyber security more and more important for all organizations.

11.2.2022

Cyberday Teams app is now available!

Our Teams app passed the latest Microsoft tests and is now available from the Teams app store. This article reviews the benefits and deployment of Cyberday's Teams app.

1.7.2020

Content update published to Cyberday

We released an update to Cyberday documentation. The goal was to streamline documentation, highlight the most important things and significantly reduce the amount of separately documented items.

11.6.2020

Cyberday launched: Frameworks, Teams-integration and much more

Cyberday works now inside a Microsoft Teams and by choosing a framework you can guide your own work. In this blog you'll find a summary from reforms!

20.5.2020

News articles

Get weekly news? Subscribe now >>

483 Crypto.com accounts compromised in $34 million hack

Crypto.com confirmed a breach resulting in unauthorized withdrawals worth 34 M$. Some were allegedly prevented, in rest customers fully reimbursed. In 2021 platform also suffered a glitch that led to duplicate purchases. #cybersecurity

Go to article at

CISA urges US orgs to prepare for data-wiping cyberattacks

Cyber criminals are exploiting CVE-2021-32648 for data-wiping attacks against Ukrainian gov and businesses. #Cybersecurity agencies around the world are urging businesses to take preparatory actions, like MFA, patching and vuln scanning.

Go to article at

Panic As Kosovo Pulls The Plug On Its Energy Guzzling Bitcoin Miners

🛑 To ease energy crisis, Kosovo's government in Dec announced an immediate, albeit temporary, ban on all crypto mining activity. This created panic, as people are selling off their mining equipment – at knockdown prices. #cybersecurity

Go to article at

FIN8 Hackers Spotted Using New 'White Rabbit' Ransomware in Recent Attacks

⚠️ FIN8 is back with a never-before-seen #ransomware, recently used eg against US banks. This malware uses double-extortion and hides its maliciousness by requiring a specific command-line password to decrypt its internal configuration.

Go to article at

Fingers point to Lazarus, Cobalt, FIN7 as key hacking groups attacking finance industry

💰 Finance industry, a top target for #cybercrime due to eg lots of sensitive PII and data systems critical for economy. Lazarus, Cobalt, and FIN7 top threat actors. Top attacks phishing, BEC, malware (also PoS), card skimmers and DDoS.

Go to article at

FBI: Hackers target US defense firms with malicious USB packages

⚠️ FIN7 cybercrime group targets US defense industry by posting them malicious USB devices. Hackers impersonate authorities to trick connecting the drive. Once plugged in, device injects keystrokes to install malware. #cybersecurity

Go to article at

Cloud Apps Replace Web as Source for Most Malware Downloads

🔺 Google Drive, Microsoft OneDrive and Box are (unsurprisingly) also cyber criminals favourites for #malware hosting. 🔺 On delivery side weaponized MS Office documents count for 37% of all malware downloads (nearly +100% from 2020)

Go to article at

FBI arrests social engineer who allegedly stole unpublished manuscripts from authors

⚠️ A cautionary tale During 5y period, this malicious insider was able to create fake email accounts and impersonate publishing industry people, to steal prepublication manuscripts from famous authors - for own benefit. #cybersecurity

Go to article at

Kriittinen haavoittuvuus Windowsin http.sys-protokollapinossa

⚠️ Microsoft again released numerous vulnerability fixes on "Patch Tuesday". Of these, the http.sys vulnerability CVE-2022-21907 stands out for its criticality. Perform a corrective software update as soon as possible. #cybersecurity

Go to article at

Get started today

Start free, in your familiar Teams environment.
If you have some questions first, book a meeting with us.

Start free 14-day trial