Weekly #cybersecurity digest to your inbox

Subscribe for our weekly digest and get each Friday the most important cyber security news, list of upcoming free webinars and a summary of Cyberday development to your inbox.
Thanks! See you in your inbox on Fridays. :)
Unfortunately something went wrong. You can contact us at team@cyberdayai.

Most important documents in ISO 27001 certification audit

The ISO 27001 standard does specifically define some key documents, which need to be gathered together and be easily shareable e.g. for the auditor. In this blog, we'll present these most important documents for an ISO 27001 certification audit.

article

30.1.2025

NIS2 & national implementation: which local NIS2 laws are available in Cyberday?

EU Member States are required to adopt NIS2 into national law. Key national decisions include defining local authorities, monitoring mechanisms, and tailoring regulations to meet specific needs.

article

23.1.2025

ISO 27001 certification: What happens in the certification audit?

This blog post gives an overall intro to information security auditing and a detailed go-through of the ISO 27001 certification audit process.

article

22.1.2025

What is ISO 27001? Intro to the global information security gold standard.

Whether you're new to ISO 27001 or looking to strengthen your current practices, this post will walk you through its essentials, why it matters, and how it can improve your approach to information security.

article

22.1.2025

Password Security: Avoid these 5 common mistakes

Password security is something that no one should underestimate in the face of today's threats. One sensible option for secure password management is to use software designed for this purpose.

article

16.1.2025

Framework recap, role of the CISO & and vendor assessments: Cyberday product and news round-up 12/2024 🛡️

December's product and news round-up will showcase the vendor security assessments and new enterprise-level features, an overview of the key frameworks for 2025 and the roles of the CISO and personnel in an organisation's security.

article

19.12.2024

Europe's Compliance Revolution: Evolving Cyber Sec Consulting

The evolving cyber sec landscape and growing demand for compliance in combination with a shortage of professionals calls for new ways of working. With the help of partnerships and agile tools, consultants can benefit from the current situation.

article

18.12.2024

TISAX: Understanding the Automotive framework

By embracing TISAX, automotive industry operators can improve information security, enhance compliance and strengthen their market position. Read more about TISAX, its scope, requirements and how ISO 27001 fits in.

article

3.12.2024

Massive cyberattack takes Ukraine military, big bank websites offline

In Ukraine, websites of the Ministry of Defense, other military sites and two major banks crashed in a coordinated DDoS attack. DDoS attacks are often used as a distraction when other intrusion attempts are made or tested. #cybersecurity

Go to article at
18.2.2022

Russia’s offensive cyber actions should be a cause for concern for CISOs

"We’ve been warning for weeks and months about Russian cyber threats to Ukraine and beyond". US national #cybersecurity advisor is hoping to instill a sense of urgency to CISOs everywhere to tighten up their security posture.

Go to article at
18.2.2022

How Phishers Are Slinking Their Links Into LinkedIn

⚠️ LinkedIn has a “redirect” feature for businesses. Criminals are leveraging new / hacked accounts to create their "ad" campaigns utilizing this. Due to this links you receive pointing to LinkedIn.com could forward to #phishing sites.

Go to article at
11.2.2022

Qbot needs only 30 minutes to steal your credentials, emails

Widespread #malware Qbot needs 30min after initial infection to steal browser data and emails from Outlook and 50 minutes before lateral movement to adjacent workstations. ➡️ Full attack timeline available on the article.

Go to article at
11.2.2022

“We absolutely do not care about you”: Sugar ransomware targets individuals

#Ransomware used to target only big corps. Now SMBs & individuals are frequent targets, as attacks get automated. Sugar is RaaS targeting single devices. Features a negotiation chat, "decrypt 5 files free" and an automated ransom amount.

Go to article at
11.2.2022

North Korean Missile Program Funded Through Stolen Crypto

In 1,5 years, hackers have stolen 50M$ of crypto from exchanges in US, EUR and Asia. Some sources say amount can be 400M$. This money is a "key revenue source" to fund Pyongyang's nuclear missile programme, says UN report. #cybersecurity

Go to article at
11.2.2022

CISA, FBI, NSA Issue Advisory on Severe Increase in Ransomware Attacks

⚠️ #Cybersecurity authorities from AUS, UK and US warn of increase in sophisticated ransomware targeting critical infra. Top 3 infection vectors are: 🎣 Spear-phishing 🔓 Stolen or brute-forced credentials 🤖 Exploits of software flaws

Go to article at
11.2.2022

Unpatched Security Bugs in Medical Wearables Allow Patient Tracking, Data Theft

🏥 Telehealth care is on the rise, but rush has unleashed many wearables that are vulnerable to attacks. Kaspersky found 33 vulnerabilities in MQTT data transfer protocol, putting patient data at risk to MitM attacks. #cybersecurity

Go to article at
4.2.2022

Actor’s verified Twitter profile hijacked to spam NFT giveaways

Previously Twitter account hijack scams often led to switch profile pic Elon Musk and spamming crypto links. Currently hot scam is hijacking verified profile and promoting and selling NFTs. Examples in article >> #cybersecurity

Go to article at
4.2.2022