Weekly #cybersecurity digest to your inbox

Subscribe for our weekly digest and get each Friday the most important cyber security news, list of upcoming free webinars and a summary of Cyberday development to your inbox.

Thanks! See you in your inbox on Fridays. :)

Unfortunately something went wrong. You can contact us at team@cyberdayai.

Recent #cybersecurity weekly digests

See full archive? Go to Weekly digests -page >>

🛡️ Cyberdigest: Easter Greetings! 🐣 Read about NIS2 supervision and penalties 📝🛡️

Published at

17:00

Open digest

🛡️ Cyberdigest: Read about EU's top frameworks! 🛡️ AI in cybersecurity 🧠 Next week's webinars ➡️

Published at

17:00

Open digest

🛡️ Cyberdigest: New: Read Cyberday success story: Above IT! ⭐️ ISO 27001: compliance vs certification 📚

Published at

18:04

Open digest

Webinars

See the full calendar? Go to Webinars-page >>

Coming up on:

Wednesday

30

.

5

.

at

14:00

Admin training (part 3/5): Risk management and security control implementation

Coming up on:

Wednesday

7

.

6

.

at

14:00

Admin training (part 5/5): Operating and improving an ISMS and reporting compliance

Coming up on:

Wednesday

13

.

6

.

at

14:00

Admin training (part 4/5): Automating employee awareness, guidance and training

Coming up on:

Wednesday

21

.

6

.

at

15:00

ISO 27001 (part 3/5): Certification audit fundamentals

Coming up on:

Wednesday

9

.

8

.

at

14:00

Admin training (part 2/5): Framework selection and asset identification

Coming up on:

Wednesday

9

.

8

.

at

15:00

ISO 27001 (part 4/5): Staff training, guidelines and policy documents

Blog posts

Info of new posts? Subscribe now >>

10 things I wish I knew: Starting your ISO 27001 project on the right track

This post shares 10 key lessons learned from going through an ISO 27001 certification project - from the importance of setting clear goals and managing documentation to the realities of risk management and the value of using the right tools.

23.4.2025

Understanding NIS2: supervision and penalties of non-compliance

Let's now look into the NIS2 directive, it's supervision in EU member states and what is supervised. We'll also check out NIS2 penalties for noncompliance and how you can stay compliant (to avoid penalties).

15.4.2025

Comparing EU cybersecurity frameworks: NIS2, GDPR, DORA and more

A comparison of key cybersecurity frameworks in the EU, including NIS2, GDPR, DORA, CRA, and ISO 27001. Learn who they apply to and what they require.

10.4.2025

ISO 27001 compliance vs. certification: differences, benefits & which path to choose

Understanding when to pursue ISO 27001 compliance rather than going for certification—or vice versa—hinges on your organizational priorities, resources, and long-term security strategies. Check the differences and learn which path to choose.

1.4.2025

Framework recap, US security & and role management: Cyberday product and news summary 3/2025 🛡️

The March product and news update presents updates to role management and the new Trust Center, a review of the key frameworks for 2025 and US security.

28.3.2025

Understanding DORA compliance: Key steps to prepare your organization

Understand DORA compliance and get a clear DORA requirements summary with key compliance areas, practical steps, and essential guidelines to strengthen your organization's digital resilience.

18.3.2025

ISMS implementation: comparison of documents, wikis, ISMS tools and GRC

There are a few different approaches to building an ISMS. In this post, we’ll compare these different methods, helping you understand which might be the best fit for your organization’s security management needs.

6.3.2025

What is Statement of Applicability (SoA) in ISO 27001?

In this blog, we'll cover the main purpose and benefits of a well-working Statement of Applicability document. We'll also explain why SoA is important, and 4 key roles it can play in information security work.

4.3.2025

News articles

Get weekly news? Subscribe now >>

The Incognito Mode Myth Has Fully Unraveled

Google has settled a class-action lawsuit by agreeing to delete "billions of data records" collected from users using Chrome's Incognito mode, shedding light on its data collection practices. #dataprotection

Go to article at

8 Strategies for Enhancing Code Signing Security

🔐🚨 Incidents highlight the critical importance of robust code-signing practices for ensuring a secure software supply chain. Code signing adds a digital signature to software, assuring users of its authenticity and integrity. #cyberattack

Go to article at

Essential elements of a strong data protection strategy

This interview sums up essentials of data protection strategy, particularly in the face of escalating ransomware threats. Understand the 3-2-1 strategy, and reflect on how your organisation protects data from attacks. 🔐 #dataprotection Tässä haastattelussa tiivistetään tietosuojan kannalta oleellisia seikkoja, erityisesti kiristysohjelmien uhkien lisääntyessä. Tutustu 3-2-1-taktiikkaan ja pohdi, miten organisaatiosi suojaa tietoja hyökkäyksiltä. 🔐 #tietosuoja

Go to article at

Time to examine the anatomy of the British Library ransomware nightmare

📚The British Library's ransomware attack last October exposed systemic failures in enterprise IT. Months later, significant systems remain unrecovered, draining cash reserves meant to last years. 🛡️ Report released #ransomware

Go to article at

Cybersecurity starts at home: Help your children stay safe online with open conversations

💡 In today's digital age, the online world offers endless opportunities for kids, but it also brings cyber security risks like cyberbullying, scams, and explicit content exposure. 🚨 #vulnerability

Go to article at

Security Leaders Acknowledge API Security Gaps Despite Looming Threat

🔒 Study shows, that majority of security leaders acknowledge that APIs have become a significant target for cyber attacks, yet many organizations do not invest in advanced security measures to protect them. 💻 ⚠️ #vulnerability

Go to article at

Zoom Reverses Course on Contemplated Use of Customer Content to Train Artificial Intelligence

🎥 The recent changes in Zoom's terms of service, initially allowing the use of customer content for machine learning and AI, sparked public concern. Zoom specified later that it doesn't use user data for training AI models. #dataprotection

Go to article at

'Conversation Overflow' Cyberattacks Bypass AI Security to Target Execs

A new cyberattack method dubbed "Conversation Overflow" has been identified, aimed at bypassing AI- and ML-enabled security platforms to execute credential-harvesting phishing emails. 🛑🤖 #cyberattack

Go to article at

Outsmarting cybercriminal innovation with strategies for enterprise resilience

Interview 🌐 In 2024, businesses must remain attentive to developing cybersecurity patterns, such as the escalation of APTs, phishing-as-a-service, ransomware-as-a-service models, and cyber-attacks. 🛡️ #cybersecurity

Go to article at

Get started today

Start free, in your familiar Teams environment.
If you have some questions first, book a meeting with us.

Start free 14-day trial