Weekly #cybersecurity digest to your inbox

Subscribe for our weekly digest and get each Friday the most important cyber security news, list of upcoming free webinars and a summary of Cyberday development to your inbox.
Thanks! See you in your inbox on Fridays. :)
Unfortunately something went wrong. You can contact us at team@cyberdayai.
Recent #cybersecurity weekly digests
See full archive? Go to Weekly digests -page >>

🛡️ Cyberdigest: Easter Greetings! 🐣 Read about NIS2 supervision and penalties 📝🛡️

Published at 

17:00

Open digest

🛡️ Cyberdigest: Read about EU's top frameworks! 🛡️ AI in cybersecurity 🧠 Next week's webinars ➡️

Published at 

17:00

Open digest

🛡️ Cyberdigest: New: Read Cyberday success story: Above IT! ⭐️ ISO 27001: compliance vs certification 📚

Published at 

18:04

Open digest

Webinars
See the full calendar? Go to Webinars-page >>
Watch now
Webinar

Coming up on:

Wednesday

30

.

5

.

at

14:00

Admin training (part 3/5): Risk management and security control implementation

Register now
Watch now
Webinar

Coming up on:

Wednesday

7

.

6

.

at

14:00

Admin training (part 5/5): Operating and improving an ISMS and reporting compliance

Register now
Watch now
Webinar

Coming up on:

Wednesday

13

.

6

.

at

14:00

Admin training (part 4/5): Automating employee awareness, guidance and training

Register now
Watch now
Webinar

Coming up on:

Wednesday

21

.

6

.

at

15:00

ISO 27001 (part 3/5): Certification audit fundamentals

Register now
Watch now
Webinar

Coming up on:

Wednesday

9

.

8

.

at

14:00

Admin training (part 2/5): Framework selection and asset identification

Register now
Watch now
Webinar

Coming up on:

Wednesday

9

.

8

.

at

15:00

ISO 27001 (part 4/5): Staff training, guidelines and policy documents

Register now
Blog posts
Info of new posts? Subscribe now >>

10 things I wish I knew: Starting your ISO 27001 project on the right track

This post shares 10 key lessons learned from going through an ISO 27001 certification project - from the importance of setting clear goals and managing documentation to the realities of risk management and the value of using the right tools.

article

23.4.2025

Understanding NIS2: supervision and penalties of non-compliance

Let's now look into the NIS2 directive, it's supervision in EU member states and what is supervised. We'll also check out NIS2 penalties for noncompliance and how you can stay compliant (to avoid penalties).

article

15.4.2025

Comparing EU cybersecurity frameworks: NIS2, GDPR, DORA and more

A comparison of key cybersecurity frameworks in the EU, including NIS2, GDPR, DORA, CRA, and ISO 27001. Learn who they apply to and what they require.

article

10.4.2025

ISO 27001 compliance vs. certification: differences, benefits & which path to choose

Understanding when to pursue ISO 27001 compliance rather than going for certification—or vice versa—hinges on your organizational priorities, resources, and long-term security strategies. Check the differences and learn which path to choose.

article

1.4.2025

Framework recap, US security & and role management: Cyberday product and news summary 3/2025 🛡️

The March product and news update presents updates to role management and the new Trust Center, a review of the key frameworks for 2025 and US security.

article

28.3.2025

Understanding DORA compliance: Key steps to prepare your organization

Understand DORA compliance and get a clear DORA requirements summary with key compliance areas, practical steps, and essential guidelines to strengthen your organization's digital resilience.

article

18.3.2025

ISMS implementation: comparison of documents, wikis, ISMS tools and GRC

There are a few different approaches to building an ISMS. In this post, we’ll compare these different methods, helping you understand which might be the best fit for your organization’s security management needs.

article

6.3.2025

What is Statement of Applicability (SoA) in ISO 27001?

In this blog, we'll cover the main purpose and benefits of a well-working Statement of Applicability document. We'll also explain why SoA is important, and 4 key roles it can play in information security work.

article

4.3.2025

News articles
Get weekly news? Subscribe now >>

Zero trust implementation: Plan, then execute, one step at a time

Important zero trust principles: 🧑‍💻Granting user access based on job functions and continuously monitoring access 🔒Continuously monitoring network traffic and user activity to identify potential risks #cybersecurity

Go to article at
2.2.2024

Top Security Posture Vulnerabilities Revealed

Regular security posture assessments, such as penetration tests, breach and ransomware simulations, are crucial for evaluating an organization's security posture and gaining visibility into existing vulnerabilities.🚨 #cybersecurity

Go to article at
2.2.2024

Update: In Major Lapse, Hacked Microsoft Test Account was Assigned Admin Privileges

The misuse of a legacy test account with administrator privileges violates the security principle of least privilege. The principle dictates that accounts should have the minimum privileges required for their tasks.💻 #cybersecurity

Go to article at
2.2.2024

A mishandled GitHub token exposed Mercedes-Benz source code

The exposure of GitHub tokens led to unrestricted access to internal GitHub Enterprise Server, exposing sensitive information such as cloud access keys, blueprints, SSO passwords, API keys and other critical internal data.🛡️ #cybersecurity

Go to article at
2.2.2024

Ransomware – Keeping Ahead of the Latest Threat Techniques

Basic security measures improve resilience against attacks, such as: 💻 Timely patching 🔑 Strict password policies 👥 Employee awareness 🛡️ Active detection of threats within the network #ransomware

Go to article at
26.1.2024

Navigating the New Waters of AI-Powered Phishing Attacks

AI is utilized in phishing attacks to analyze vast amounts of data from sources like social media and corporate websites. AI can mimic writing styles and tone by analyzing past communications.🚨 #phishing

Go to article at
26.1.2024

Resolving Top Security Misconfigurations: What you need to know

Common causes of cybersecurity incidents: 💻 Security misconfigurations in software or application settings. 🛠️ Default settings in many tools and solutions are often not configured securely. #cybersecurity

Go to article at
26.1.2024

Organizations invest more in data protection but recover less

💰 Despite a rise in data protection investment, organizations struggle with cyber resilience. 🔄 Organizations face challenges in recovering from cyber incidents, with only a small percentage confident in quick recovery. #cyberattack

Go to article at
26.1.2024

AI used to fake voices of loved ones in “I’ve been in an accident” scam

How to avoid AI based scams; Limit sharing personal details with unknown people. Hang up the phone if doubtful; never share financial/personal information and report suspicious calls to the police. 🚨 #cybersecurity

Go to article at
19.1.2024

Get started today

Start free, in your familiar Teams environment.
If you have some questions first, book a meeting with us.

Start free 14-day trial
Book a meeting
How it works?
SummarySecurity tasks and assuranceDocumentation workflowsEmployee guidelinesReporting templates
Use cases
By frameworkAll frameworksISO 27001NIS2 directiveNIST CSFCSA CCMISO 27701GDPRISO 27017ISO 27018
By methodCyber risk managementEmployee awarenessCompliance reportingControl managementAsset managementDynamic policy documentsPrivacy management
Resources
AcademyWebinarsBlogHelp articlesVideo coursesContent libraryWeekly news digestsSubscribe to AcademyLeave a reviewPartner programTeamTerms of usePrivacy policy
Contact us
+358 10 231 6010
team@cyberday.ai
App works in:
Known in Finland as Digiturvamalli
© Cyberday Inc. Kalevantie 2 33100 Tampere, Finland
Cyberday.ai - Improve and certify your cyber security