Weekly #cybersecurity digest to your inbox

Subscribe for our weekly digest and get each Friday the most important cyber security news, list of upcoming free webinars and a summary of Cyberday development to your inbox.

Thanks! See you in your inbox on Fridays. :)

Unfortunately something went wrong. You can contact us at team@cyberdayai.

Recent #cybersecurity weekly digests

See full archive? Go to Weekly digests -page >>

🛡️ Cyberdigest: 10 things I wish I knew before ISO 27001 process 👀 2024 cyber trends ⚖️

Published at

17:02

Open digest

🛡️ Cyberdigest: Easter Greetings! 🐣 Read about NIS2 supervision and penalties 📝🛡️

Published at

17:00

Open digest

🛡️ Cyberdigest: Read about EU's top frameworks! 🛡️ AI in cybersecurity 🧠 Next week's webinars ➡️

Published at

17:00

Open digest

Webinars

See the full calendar? Go to Webinars-page >>

Coming up on:

Wednesday

30

.

5

.

at

14:00

Admin training (part 3/5): Risk management and security control implementation

Coming up on:

Wednesday

7

.

6

.

at

14:00

Admin training (part 5/5): Operating and improving an ISMS and reporting compliance

Coming up on:

Wednesday

13

.

6

.

at

14:00

Admin training (part 4/5): Automating employee awareness, guidance and training

Coming up on:

Wednesday

21

.

6

.

at

15:00

ISO 27001 (part 3/5): Certification audit fundamentals

Coming up on:

Wednesday

9

.

8

.

at

14:00

Admin training (part 2/5): Framework selection and asset identification

Coming up on:

Wednesday

9

.

8

.

at

15:00

ISO 27001 (part 4/5): Staff training, guidelines and policy documents

Blog posts

Info of new posts? Subscribe now >>

10 things I wish I knew: Starting your ISO 27001 project on the right track

This post shares 10 key lessons learned from going through an ISO 27001 certification project - from the importance of setting clear goals and managing documentation to the realities of risk management and the value of using the right tools.

23.4.2025

Understanding NIS2: supervision and penalties of non-compliance

Let's now look into the NIS2 directive, it's supervision in EU member states and what is supervised. We'll also check out NIS2 penalties for noncompliance and how you can stay compliant (to avoid penalties).

15.4.2025

Comparing EU cybersecurity frameworks: NIS2, GDPR, DORA and more

A comparison of key cybersecurity frameworks in the EU, including NIS2, GDPR, DORA, CRA, and ISO 27001. Learn who they apply to and what they require.

10.4.2025

ISO 27001 compliance vs. certification: differences, benefits & which path to choose

Understanding when to pursue ISO 27001 compliance rather than going for certification—or vice versa—hinges on your organizational priorities, resources, and long-term security strategies. Check the differences and learn which path to choose.

1.4.2025

Framework recap, US security & and role management: Cyberday product and news summary 3/2025 🛡️

The March product and news update presents updates to role management and the new Trust Center, a review of the key frameworks for 2025 and US security.

28.3.2025

Understanding DORA compliance: Key steps to prepare your organization

Understand DORA compliance and get a clear DORA requirements summary with key compliance areas, practical steps, and essential guidelines to strengthen your organization's digital resilience.

18.3.2025

ISMS implementation: comparison of documents, wikis, ISMS tools and GRC

There are a few different approaches to building an ISMS. In this post, we’ll compare these different methods, helping you understand which might be the best fit for your organization’s security management needs.

6.3.2025

What is Statement of Applicability (SoA) in ISO 27001?

In this blog, we'll cover the main purpose and benefits of a well-working Statement of Applicability document. We'll also explain why SoA is important, and 4 key roles it can play in information security work.

4.3.2025

News articles

Get weekly news? Subscribe now >>

Security Is a Process, Not a Tool

A large amount of cybersecurity incidents could be avoided if companies really used the tools they already have for cybersecurity. The only way to learn from cybersecurity incidents is observe, record, and document.❗ #cybersecurity

Go to article at

Credit card skimming on the rise for the holiday shopping season

You simply can’t be sure that the platform hasn’t been compromised, because all online stores are not secured enough, and they can include a malware. You should always consider do you really trust the website you are shopping.🚩 #malware

Go to article at

Cyber risk is business risk: Qualys Enterprise TruRisk Platform sets new industry standard

To minimize risks company needs to be able to calculate and communicate risks. If company can measure and communicate risks well, they can reduce the entire risk to their business. #cybersecurity

Go to article at

The Best Password Managers to Secure Your Digital Life

Web browsers password managers are limited, and that's why it's recommended to use a dedicated password manager🔒 #dataprotection

Go to article at

Companies want to spend more on AI to defeat hackers, but there's a catch

🚨AI presents internal risks of data misuse related to sensitive information employees may plug into AI 🚨There is risk that as AI speeds the development, new iterations will roll out too quickly that flaws may be missed #cybersecurity

Go to article at

Surge in QR Code Quishing: Check Point Records 587% Attack Spike

Users are tricked into downloading malware or accessing malicious websites after scanning QR code. Scanning a QR code can lead user to any website without alerting about suspicious activity⚠️ #phishing #malware

Go to article at

Infosec pros can secure IT, but have harder time securing job satisfaction

Potential threats for job satisfaction appear to be departmental cutbacks, threat of layoffs, lack of managerial support and heavier workload than years before👨‍💻 #cybersecurity

Go to article at

How Do We Truly Make Security 'Everyone's Responsibility'?

You can enforce security expectations, clarify expectations and make the security task personal, like giving a own laptop with patching responsibilities, which will likely remind them that it is their working device🔑 #cybersecurity

Go to article at

Watch Out: Attackers Are Hiding Malware in 'Browser Updates'

Threat actors can turn #cybersecurity best practices against us. ⚠️ When visiting a legitimate website, malicious JS can trigger a real-looking browser update - which actually delivers malware. Be wary of how "updates" get presented.

Go to article at

Get started today

Start free, in your familiar Teams environment.
If you have some questions first, book a meeting with us.

Start free 14-day trial