Weekly #cybersecurity digest to your inbox

Subscribe for our weekly digest and get each Friday the most important cyber security news, list of upcoming free webinars and a summary of Cyberday development to your inbox.

Thanks! See you in your inbox on Fridays. :)

Unfortunately something went wrong. You can contact us at team@cyberdayai.

Recent #cybersecurity weekly digests

See full archive? Go to Weekly digests -page >>

🛡️ Cyberdigest: Most important documents in ISO 27001 audit 📑 Join our NIS2 & ISO 27001 webinars ➡️ Look into cyberthreat trends 👾

Published at

17:05

Open digest

🛡️ Cyberdigest: 7 new frameworks! 🎉 Explore our ISO 27001 collection 📚 Malware & privacy news 📰

Published at

17:02

Open digest

🛡️ Cyberdigest: Secure your passwords! 📝 DORA has come into effect 💰 News: data protection 🔐

Published at

17:01

Open digest

Webinars

See the full calendar? Go to Webinars-page >>

Coming up on:

Wednesday

30

.

5

.

at

14:00

Admin training (part 3/5): Risk management and security control implementation

Coming up on:

Wednesday

7

.

6

.

at

14:00

Admin training (part 5/5): Operating and improving an ISMS and reporting compliance

Coming up on:

Wednesday

13

.

6

.

at

14:00

Admin training (part 4/5): Automating employee awareness, guidance and training

Coming up on:

Wednesday

21

.

6

.

at

15:00

ISO 27001 (part 3/5): Certification audit fundamentals

Coming up on:

Wednesday

9

.

8

.

at

14:00

Admin training (part 2/5): Framework selection and asset identification

Coming up on:

Wednesday

9

.

8

.

at

15:00

ISO 27001 (part 4/5): Staff training, guidelines and policy documents

Blog posts

Info of new posts? Subscribe now >>

Most important documents in ISO 27001 certification audit

The ISO 27001 standard does specifically define some key documents, which need to be gathered together and be easily shareable e.g. for the auditor. In this blog, we'll present these most important documents for an ISO 27001 certification audit.

30.1.2025

NIS2 & national implementation: which local NIS2 laws are available in Cyberday?

EU Member States are required to adopt NIS2 into national law. Key national decisions include defining local authorities, monitoring mechanisms, and tailoring regulations to meet specific needs.

23.1.2025

ISO 27001 certification: What happens in the certification audit?

This blog post gives an overall intro to information security auditing and a detailed go-through of the ISO 27001 certification audit process.

22.1.2025

What is ISO 27001? Intro to the global information security gold standard.

Whether you're new to ISO 27001 or looking to strengthen your current practices, this post will walk you through its essentials, why it matters, and how it can improve your approach to information security.

22.1.2025

Password Security: Avoid these 5 common mistakes

Password security is something that no one should underestimate in the face of today's threats. One sensible option for secure password management is to use software designed for this purpose.

16.1.2025

Framework recap, role of the CISO & and vendor assessments: Cyberday product and news round-up 12/2024 🛡️

December's product and news round-up will showcase the vendor security assessments and new enterprise-level features, an overview of the key frameworks for 2025 and the roles of the CISO and personnel in an organisation's security.

19.12.2024

Europe's Compliance Revolution: Evolving Cyber Sec Consulting

The evolving cyber sec landscape and growing demand for compliance in combination with a shortage of professionals calls for new ways of working. With the help of partnerships and agile tools, consultants can benefit from the current situation.

18.12.2024

TISAX: Understanding the Automotive framework

By embracing TISAX, automotive industry operators can improve information security, enhance compliance and strengthen their market position. Read more about TISAX, its scope, requirements and how ISO 27001 fits in.

3.12.2024

News articles

Get weekly news? Subscribe now >>

In-app browser security risks, and what to do about them

When you click a link to webpage inside an app (e.g. FB, TikTok), you don't get to your default browser - you stay in an embedded version. These in-app browsers have #privacy issues, they e.g. inject JS code so host apps track what you do.

Go to article at

WhatsApp Scams in 2022: What to Look out for

WhatsApp has 2B active users. It's a growing medium in cybercrime too, as people have gradually become aware of email / SMS #phishing. 2000% increase in WhatsApp scams reported this year! 📈 Article lists most popular scam types >>

Go to article at

Cyberattack brings down InterContinental Hotels' booking systems

🏨 17 brand hotel chain IHG (e.g. Holiday Inn) reservation systems down due to #cyberattack. Hotel industry is a common target for cybercrimes, e.g. due to data contained in reservations, payment card data and reward point systems.

Go to article at

Facebook Engineers Admit They Don't Know What They Do With Your Data

A doc leaked earlier that said FB has no idea where user data goes and what they do with it. Now 2 veteran engineers confirmed similar things in court hearing. ⚠️ "data may be in 55 FB subsystems" ⚠️ "code is its own design doc" #privacy

Go to article at

New Cybersecurity Regulations Are Coming. Here’s How to Prepare.

Governments are feeling the need to “do something”, to battle growing impact of #cyberattack's. In the US, new rules are pending by e.g. FTC and CISA. These may require e.g. reporting of cyber incidents, not just personal data breaches.

Go to article at

How 1-Time Passcodes Became a Corporate Liability

Large firms are falling prey to #phishing that goes around MFA - using text messages to steal employee's credentials and one-time passcodes. ✅ Many are now making the change from phishable forms of MFA to e.g. physical security keys.

Go to article at

Chrome extensions with 1.4 million installs steal browsing data

⚠️ McAfee found 5 popular Chrome extensions that steal and track your browser activity. These were not of the most dangerous type. But this is a good reminder - you can't blindly trust the quality on extension stores. #cybersecurity

Go to article at

Baker & Taylor's Systems Remain Offline a Week After Ransomware Attack

⚠️ Library services provider hit by #ransomware on 23.8. "Team working around the clock", but still services remain offline. Downtime is disastrous in many industrys. Long-term disruptions from ransomware are becoming more common.

Go to article at

Ex-Twitter exec blows the whistle, alleging reckless and negligent cybersecurity policies

💣 Ex-Twitter head of sec paints a pic of mismanaged company that hides issues, swindles regulators and secures data poorly. Zatko b4 held roles on Google & DoD. Fired from Twitter due to poor leadership and performance. #cybersecurity

Go to article at

Get started today

Start free, in your familiar Teams environment.
If you have some questions first, book a meeting with us.

Start free 14-day trial