Weekly #cybersecurity digest to your inbox

Subscribe for our weekly digest and get each Friday the most important cyber security news, list of upcoming free webinars and a summary of Cyberday development to your inbox.

Thanks! See you in your inbox on Fridays. :)

Unfortunately something went wrong. You can contact us at team@cyberdayai.

Recent #cybersecurity weekly digests

See full archive? Go to Weekly digests -page >>

🛡️ Cyberdigest: Easter Greetings! 🐣 Read about NIS2 supervision and penalties 📝🛡️

Published at

17:00

Open digest

🛡️ Cyberdigest: Read about EU's top frameworks! 🛡️ AI in cybersecurity 🧠 Next week's webinars ➡️

Published at

17:00

Open digest

🛡️ Cyberdigest: New: Read Cyberday success story: Above IT! ⭐️ ISO 27001: compliance vs certification 📚

Published at

18:04

Open digest

Webinars

See the full calendar? Go to Webinars-page >>

Coming up on:

Wednesday

30

.

5

.

at

14:00

Admin training (part 3/5): Risk management and security control implementation

Coming up on:

Wednesday

7

.

6

.

at

14:00

Admin training (part 5/5): Operating and improving an ISMS and reporting compliance

Coming up on:

Wednesday

13

.

6

.

at

14:00

Admin training (part 4/5): Automating employee awareness, guidance and training

Coming up on:

Wednesday

21

.

6

.

at

15:00

ISO 27001 (part 3/5): Certification audit fundamentals

Coming up on:

Wednesday

9

.

8

.

at

14:00

Admin training (part 2/5): Framework selection and asset identification

Coming up on:

Wednesday

9

.

8

.

at

15:00

ISO 27001 (part 4/5): Staff training, guidelines and policy documents

Blog posts

Info of new posts? Subscribe now >>

10 things I wish I knew: Starting your ISO 27001 project on the right track

This post shares 10 key lessons learned from going through an ISO 27001 certification project - from the importance of setting clear goals and managing documentation to the realities of risk management and the value of using the right tools.

23.4.2025

Understanding NIS2: supervision and penalties of non-compliance

Let's now look into the NIS2 directive, it's supervision in EU member states and what is supervised. We'll also check out NIS2 penalties for noncompliance and how you can stay compliant (to avoid penalties).

15.4.2025

Comparing EU cybersecurity frameworks: NIS2, GDPR, DORA and more

A comparison of key cybersecurity frameworks in the EU, including NIS2, GDPR, DORA, CRA, and ISO 27001. Learn who they apply to and what they require.

10.4.2025

ISO 27001 compliance vs. certification: differences, benefits & which path to choose

Understanding when to pursue ISO 27001 compliance rather than going for certification—or vice versa—hinges on your organizational priorities, resources, and long-term security strategies. Check the differences and learn which path to choose.

1.4.2025

Framework recap, US security & and role management: Cyberday product and news summary 3/2025 🛡️

The March product and news update presents updates to role management and the new Trust Center, a review of the key frameworks for 2025 and US security.

28.3.2025

Understanding DORA compliance: Key steps to prepare your organization

Understand DORA compliance and get a clear DORA requirements summary with key compliance areas, practical steps, and essential guidelines to strengthen your organization's digital resilience.

18.3.2025

ISMS implementation: comparison of documents, wikis, ISMS tools and GRC

There are a few different approaches to building an ISMS. In this post, we’ll compare these different methods, helping you understand which might be the best fit for your organization’s security management needs.

6.3.2025

What is Statement of Applicability (SoA) in ISO 27001?

In this blog, we'll cover the main purpose and benefits of a well-working Statement of Applicability document. We'll also explain why SoA is important, and 4 key roles it can play in information security work.

4.3.2025

News articles

Get weekly news? Subscribe now >>

Declining Ransomware Payments: Shift in Hacker Tactics?

💸 Recent surveys show a significant reduction in ransomware payments, attributed to improved cybersecurity defenses and increased awareness. 🔄 With fewer companies paying ransoms, ransomware gangs may adapt their tactics. #ransomware

Go to article at

We can’t risk losing staff to alert fatigue

🚨 Alert fatigue poses a significant risk in cybersecurity, where too much information can be as problematic as too little. 🛠️ Employers can address alert fatigue by e.g. providing education and sharing responsibility. #cybersecurity

Go to article at

QR Code 'Quishing' Attacks on Executives Surge, Evading Email Security

📈 Attacks using QR codes surged in 2023, often targeting corporate executives and managers. 🎣 These attacks, or "quishing," involve phishing emails that use QR codes to deliver malicious payloads, often bypassing spam filters. #phishing

Go to article at

5 Steps to Improve Your Security Posture in Microsoft Teams

SaaS chat apps like MS Teams pose underestimated cybersecurity risks. The article illuminates attack sources, draws parallels with past vulnerabilities, and offers actionable steps to strengthen your organization. 🔒🛡️ #vulnerability

Go to article at

European parliamentary committees approve AI Act agreement

European Parlamentary Committees voted to approve negotiations on the Artificial Intelligence Act, aiming to safeguard fundamental rights, democracy, and the environment from high-risk AI while promoting innovation. 🤖 #cybersecurity

Go to article at

Synthetic Solutions: Redefining Cybersecurity Through Data Generation in the Face of Hacking

Synthetic data generation tools enable organizations to simulate various cybersecurity scenarios, enhancing detection capabilities, improving incident response, and facilitating compliance with data privacy regulations.👨‍💻 #cybersecurity

Go to article at

Left to their own devices: Security for employees using personal devices for work

Regularly installing security updates is essential to patch known vulnerabilities and protect against emerging threats. Employers should provide support for updating devices.🔒 #cybersecurity

Go to article at

Malware-as-a-Service Now the Top Threat to Organizations

Malware continues to evolve, with new strains exhibiting more sophisticated evasion techniques and capabilities. This highlights the importance of ongoing monitoring and adaptation to detect and defend against emerging threats.🛡️ #malware Haittaohjelmat jatkavat kehittymistään, ja uudet versiot ovat entistä parempia piiloutumaan. Tämä korostaa jatkuvan seurannan ja sopeutumisen tärkeyttä, jotta voidaan havaita ja puolustautua tulevia uhkia vastaan.🛡️ #haittaohjelma

Go to article at

Top Trends in Cybersecurity, Ransomware and AI in 2024

Data centers are susceptible to critical cybersecurity threats, which can be mitigated by enhancing hardware and software defense and leveraging artificial intelligence (AI) for threat identification.🖥️ #cybersecurity

Go to article at

Get started today

Start free, in your familiar Teams environment.
If you have some questions first, book a meeting with us.

Start free 14-day trial