Weekly #cybersecurity digest to your inbox

Subscribe for our weekly digest and get each Friday the most important cyber security news, list of upcoming free webinars and a summary of Cyberday development to your inbox.

Thanks! See you in your inbox on Fridays. :)

Unfortunately something went wrong. You can contact us at team@cyberdayai.

Recent #cybersecurity weekly digests

See full archive? Go to Weekly digests -page >>

🛡️ Cyberdigest: September round-up is published! 📰 What means cyber resilience? 👀

Published at

17:00

Open digest

🛡️ Cyberdigest: IT & OT Cubersecurity 🖥️ Admin webinar next week, will we see you there? 👉

Published at

17:00

Open digest

🛡️ Cyberdigest: Cyber Security in Supply Chain Risk Management 🛡️ We are at Cyber Security Nordic! ⭐️

Published at

17:01

Open digest

Webinars

See the full calendar? Go to Webinars-page >>

Coming up on:

Wednesday

30

.

5

.

at

14:00

Admin training (part 3/5): Risk management and security control implementation

Coming up on:

Wednesday

7

.

6

.

at

14:00

Admin training (part 5/5): Operating and improving an ISMS and reporting compliance

Coming up on:

Wednesday

13

.

6

.

at

14:00

Admin training (part 4/5): Automating employee awareness, guidance and training

Coming up on:

Wednesday

21

.

6

.

at

15:00

ISO 27001 (part 3/5): Certification audit fundamentals

Coming up on:

Wednesday

9

.

8

.

at

14:00

Admin training (part 2/5): Framework selection and asset identification

Coming up on:

Wednesday

9

.

8

.

at

15:00

ISO 27001 (part 4/5): Staff training, guidelines and policy documents

Blog posts

Info of new posts? Subscribe now >>

Corporate Security Alert: Identifying Dangerous Apps on Employee Phones

This article uncovers hidden security risks of popular apps on work devices, covering social media, messaging, cloud storage, gaming, utility, health, VPN, and shopping apps, with recommendations to safeguard corporate data.

20.9.2024

NIS2 national legistation, ransomware and a new development forum: Cyberday product and news round-up 9/2024 🛡️

This is the September news and product review from Cyberday. Read news about ransomware, new phishing techniques and local NIS2-legistations.

20.9.2024

IT and OT Cyber Security: Different Environments, Different Priorities

This blog post outlines the key differences between IT and OT cyber security, focusing on their distinct areas, objectives, environments, threat landscapes, and compliance requirements.

4.9.2024

Cyber Security in Supply Chain Risk Management

Businesses should prioritize supply chain security by adopting best cyber security practices, fostering resilience, and promoting collaboration to protect against evolving cyber threats. Learn more about this topic in this blog post.

22.8.2024

Spreadsheet vs. ISMS tool - top 10 reasons why a tool is better than the traditional way

Discover the top 10 reasons why agile tools outperform traditional spreadsheets in managing cyber security compliance, from centralized management to continuous improvement.

22.8.2024

ISMS Essentials: Mastering a Data System Inventory for Your Organization

This post provides essential insights for maintaining a data system inventory within your organization's ISMS, detailing key processes, asset types, and tackling common challenges.

15.8.2024

Incident Detection: Building, Nurturing, and Continuously Improving a Proactive Environment

Shift from reactive to proactive incident detection. Use advanced tools, continuous learning, and customised strategies to anticipate and prevent issues. Focus on constant improvement and innovation to boost security and resilience.

15.8.2024

ISO 27001 and ISO 9001: Differences, how they work together and benefits of combining

Learn about the synergy between ISO 27001 and ISO 9001. Learn how integrating these standards enhances information security, quality management, and overall operational efficiency, using case examples and actionable insights.

6.6.2024

News articles

Get weekly news? Subscribe now >>

Microsoft Edge Legacy will now prompt you to install Chromium Edge

Microsoft Edge Legacy has officially reached the end of life today, and starting tomorrow, the web browser will begin displaying notifications telling users to switch to the new Chromium-based Microsoft Edge. #cybersecurity

Go to article at

Why the Microsoft Exchange Server attack isn’t going away soon

Timeline info about the Exchange Server attack. Responding to these kinds of vulnerabilities can be time-consuming and create lots of downtime, especially if Exchange patching has already been lagging behind. #cybersecurity

Go to article at

Exposed Password Gave Hackers Access to 150,000 Cameras

Hacktivists reportedly found logins for a privileged account exposed on the internet and thus gained access to 150 000 Verkada security cameras - on Tesla warehouses, hospitals, jails and more. #cybersecurity

Go to article at

Phishing campaigns, from first to last victim, take 21h on average

Most phishing victims experience a fraudulent transaction around 5 days after getting phished, new research shows.

Go to article at

Business-Email-Compromise

Scammers Disguise Two Domains as CDN to Cloak Credit Card Skimmer

Scammers disguised two domains as a content delivery network (CDN) in an attempt to quietly target visitors with a credit card skimmer. Malwarebytes noticed something suspicious within the website code of a Parisian boutique store. At first, the script looked like a JQuery library loaded from a third-party CDN. But the actual content of the […]… Read More The post Scammers Disguise Two Domains as CDN to Cloak Credit Card Skimmer appeared first on The State of Security.

Go to article at

Most ransomware attacks take place during the night or over the weekend

FireEye: 27% of all ransomware attacks take place during the weekend, 49% after working hours during weekdays.

Go to article at

Albany Airport pays hackers ransom, regains data from computers

John Cropley provides an update to earlier reports concerning the ransomware attack Christmas day on Albany International...

Go to article at

These Highly Exploited Vulnerabilities Indicate Organizations are Still Failing to Apply Patches

Researchers at Recorded Future have revealed a list of top vulnerabilities that saw mass exploitation from threat actors in 2019. Six of these commonly exploited vulnerabilities for the year are repeats from 2018. Apparently, all these repeated vulnerabilities are related to Microsoft products. Although patches for all these reported vulnerabilities already exist, software patching is often not performed in a timely manner by companies and individuals.

Go to article at

Unpatched Vulnerabilities

Widely Known Flaw in Pulse Secure VPN Being Used in Ransomware Attacks

New Year's Eve attack on currency exchange service Travelex may have involved use of the flaw.

Go to article at

Ransomware,Unpatched Vulnerabilities

Get started today

Start free, in your familiar Teams environment.
If you have some questions first, book a meeting with us.

Start free 14-day trial