Weekly #cybersecurity digest to your inbox

Subscribe for our weekly digest and get each Friday the most important cyber security news, list of upcoming free webinars and a summary of Cyberday development to your inbox.

Thanks! See you in your inbox on Fridays. :)

Unfortunately something went wrong. You can contact us at team@cyberdayai.

Recent #cybersecurity weekly digests

See full archive? Go to Weekly digests -page >>

🛡️ Cyberdigest: Next Admin webinar is coming up - Register now! 💻⭐️ Comparing ISMS implementations 📝

Published at

17:01

Open digest

🛡️ Cyberdigest: Development on risk matrix 📊 Why is ISO 27001 more important then ever?🏅 Compliance illusion and MFA Fatigue 📰

Published at

17:00

Open digest

🛡️ Cyberdigest: 10 non-conformities in ISO 27001 audits 📋 Cyber hygiene and cyberattacks in news 💭

Published at

17:03

Open digest

Webinars

See the full calendar? Go to Webinars-page >>

Coming up on:

Wednesday

30

.

5

.

at

14:00

Admin training (part 3/5): Risk management and security control implementation

Coming up on:

Wednesday

7

.

6

.

at

14:00

Admin training (part 5/5): Operating and improving an ISMS and reporting compliance

Coming up on:

Wednesday

13

.

6

.

at

14:00

Admin training (part 4/5): Automating employee awareness, guidance and training

Coming up on:

Wednesday

21

.

6

.

at

15:00

ISO 27001 (part 3/5): Certification audit fundamentals

Coming up on:

Wednesday

9

.

8

.

at

14:00

Admin training (part 2/5): Framework selection and asset identification

Coming up on:

Wednesday

9

.

8

.

at

15:00

ISO 27001 (part 4/5): Staff training, guidelines and policy documents

Blog posts

Info of new posts? Subscribe now >>

ISMS implementation: comparison of documents, wikis, ISMS tools and GRC

There are a few different approaches to building an ISMS. In this post, we’ll compare these different methods, helping you understand which might be the best fit for your organization’s security management needs.

6.3.2025

What is Statement of Applicability (SoA) in ISO 27001?

In this blog, we'll cover the main purpose and benefits of a well-working Statement of Applicability document. We'll also explain why SoA is important, and 4 key roles it can play in information security work.

4.3.2025

Why is ISO 27001 compliance now more important than ever?

Year after year, ISO 27001 standard has remained one of the gold standards for information security. The global standard has remained relevant, but where did ISO 27001 originate? And why is it's popularity just going up?

27.2.2025

10 most common non-conformities in ISO 27001 audits

Audits and non-conformities drive organizations toward continuous improvement. But before your first ISO 27001 certification, it's good to be aware of some most common non-conformities, so you can avoid these in your certification audit.

18.2.2025

Got an ISO 27001 audit interview request - what should I expect?

In this blog, we will talk about the importance of employee participation in the audit interview process, why auditors value employee insights, and look into possible questions asked in an ISO 27001 interview.

13.2.2025

ISO 27001 compliance and certification checklist

Looking to ensure you fill ISO 27001 requirements? This checklist will present clearly ordered key steps that guide your organization in building an ISMS and getting compliant with the ISO 27001 standard.

6.2.2025

Most important documents in ISO 27001 certification audit

The ISO 27001 standard does specifically define some key documents, which need to be gathered together and be easily shareable e.g. for the auditor. In this blog, we'll present these most important documents for an ISO 27001 certification audit.

30.1.2025

NIS2 & national implementation: which local NIS2 laws are available in Cyberday?

EU Member States are required to adopt NIS2 into national law. Key national decisions include defining local authorities, monitoring mechanisms, and tailoring regulations to meet specific needs.

23.1.2025

News articles

Get weekly news? Subscribe now >>

8 Strategies for Enhancing Code Signing Security

🔐🚨 Incidents highlight the critical importance of robust code-signing practices for ensuring a secure software supply chain. Code signing adds a digital signature to software, assuring users of its authenticity and integrity. #cyberattack

Go to article at

Essential elements of a strong data protection strategy

This interview sums up essentials of data protection strategy, particularly in the face of escalating ransomware threats. Understand the 3-2-1 strategy, and reflect on how your organisation protects data from attacks. 🔐 #dataprotection Tässä haastattelussa tiivistetään tietosuojan kannalta oleellisia seikkoja, erityisesti kiristysohjelmien uhkien lisääntyessä. Tutustu 3-2-1-taktiikkaan ja pohdi, miten organisaatiosi suojaa tietoja hyökkäyksiltä. 🔐 #tietosuoja

Go to article at

Time to examine the anatomy of the British Library ransomware nightmare

📚The British Library's ransomware attack last October exposed systemic failures in enterprise IT. Months later, significant systems remain unrecovered, draining cash reserves meant to last years. 🛡️ Report released #ransomware

Go to article at

Cybersecurity starts at home: Help your children stay safe online with open conversations

💡 In today's digital age, the online world offers endless opportunities for kids, but it also brings cyber security risks like cyberbullying, scams, and explicit content exposure. 🚨 #vulnerability

Go to article at

Security Leaders Acknowledge API Security Gaps Despite Looming Threat

🔒 Study shows, that majority of security leaders acknowledge that APIs have become a significant target for cyber attacks, yet many organizations do not invest in advanced security measures to protect them. 💻 ⚠️ #vulnerability

Go to article at

Zoom Reverses Course on Contemplated Use of Customer Content to Train Artificial Intelligence

🎥 The recent changes in Zoom's terms of service, initially allowing the use of customer content for machine learning and AI, sparked public concern. Zoom specified later that it doesn't use user data for training AI models. #dataprotection

Go to article at

'Conversation Overflow' Cyberattacks Bypass AI Security to Target Execs

A new cyberattack method dubbed "Conversation Overflow" has been identified, aimed at bypassing AI- and ML-enabled security platforms to execute credential-harvesting phishing emails. 🛑🤖 #cyberattack

Go to article at

Outsmarting cybercriminal innovation with strategies for enterprise resilience

Interview 🌐 In 2024, businesses must remain attentive to developing cybersecurity patterns, such as the escalation of APTs, phishing-as-a-service, ransomware-as-a-service models, and cyber-attacks. 🛡️ #cybersecurity

Go to article at

How Not to Become the Target of the Next Microsoft Hack

🔒 The cybersecurity landscape, especially within Microsoft 365, is evolving rapidly. Organizations must adapt to the evolving cybersecurity landscape by various measures. 🔍 #cyberattack

Go to article at

Get started today

Start free, in your familiar Teams environment.
If you have some questions first, book a meeting with us.

Start free 14-day trial