Weekly #cybersecurity digest to your inbox

Subscribe for our weekly digest and get each Friday the most important cyber security news, list of upcoming free webinars and a summary of Cyberday development to your inbox.
Thanks! See you in your inbox on Fridays. :)
Unfortunately something went wrong. You can contact us at team@cyberdayai.

Framework recap, US security & and role management: Cyberday product and news summary 3/2025 🛡️

The March product and news update presents updates to role management and the new Trust Center, a review of the key frameworks for 2025 and US security.

article

28.3.2025

Understanding DORA compliance: Key steps to prepare your organization

Understand DORA compliance and get a clear DORA requirements summary with key compliance areas, practical steps, and essential guidelines to strengthen your organization's digital resilience.

article

18.3.2025

ISMS implementation: comparison of documents, wikis, ISMS tools and GRC

There are a few different approaches to building an ISMS. In this post, we’ll compare these different methods, helping you understand which might be the best fit for your organization’s security management needs.

article

6.3.2025

What is Statement of Applicability (SoA) in ISO 27001?

In this blog, we'll cover the main purpose and benefits of a well-working Statement of Applicability document. We'll also explain why SoA is important, and 4 key roles it can play in information security work.

article

4.3.2025

Why is ISO 27001 compliance now more important than ever?

Year after year, ISO 27001 standard has remained one of the gold standards for information security. The global standard has remained relevant, but where did ISO 27001 originate? And why is it's popularity just going up?

article

27.2.2025

10 most common non-conformities in ISO 27001 audits

Audits and non-conformities drive organizations toward continuous improvement. But before your first ISO 27001 certification, it's good to be aware of some most common non-conformities, so you can avoid these in your certification audit.

article

18.2.2025

Got an ISO 27001 audit interview request - what should I expect?

In this blog, we will talk about the importance of employee participation in the audit interview process, why auditors value employee insights, and look into possible questions asked in an ISO 27001 interview.

article

13.2.2025

ISO 27001 compliance and certification checklist

Looking to ensure you fill ISO 27001 requirements? This checklist will present clearly ordered key steps that guide your organization in building an ISMS and getting compliant with the ISO 27001 standard.

article

6.2.2025

Why work-life balance in cybersecurity must start with executive support

Balancing a #cybersecurity role takes more than skill: it takes boundaries, trust, and self-reflection.This CISO shares how prioritizing health, setting limits, and fostering a supportive culture help prevent burnout and build resilience.

Go to article at
27.6.2025

When synthetic identity fraud looks just like a good customer

Synthetic identity fraud blends real and fake data to form convincing fake identities—often with stolen children's info. Hard to detect, it causes billions in losses, harms credit systems, and affects real people. ☠️ #cybercrime

Go to article at
27.6.2025

How the New HIPAA Regulations 2025 Will Impact Healthcare Compliance

New HIPAA rules in 2025 bring stricter #cybersecurity, with MFA, encryption, and risk analysis now required. Focus areas include telehealth, AI, vendor oversight, and stronger patient data access and privacy protections. 🏥

Go to article at
27.6.2025

Generative AI Exacerbates Software Supply Chain Risks

GenAI is fueling a new #cybersecurity risk: attackers exploit AI "hallucinations" by uploading fake, malware-laced code that developers trust too easily. Clear AI transparency and software supply chain standards are urgently needed. 🧑‍💻

Go to article at
27.6.2025

Supply chain attacks surge with orgs 'flying blind' about dependencies

88% of CISOs worry about supply chain risk, yet most don’t monitor beyond direct vendors. With 3rd-party attacks surging, true #cybersecurity resilience means real-time visibility and deeper vendor collaboration. 🌍

Go to article at
27.6.2025

NIST Publishes New Zero Trust Implementation Guidance

NIST has released new guidance to help orgs implement zero trust in real-world settings. It offers 19 example builds using commercial tools to tackle common challenges. A key step forward for practical #cybersecurity 🛡️

Go to article at
13.6.2025

What CISOs need to know about agentic AI

🤖 Agentic AI is changing #cybersecurity by detecting threats and automating response. But with bad data or poor oversight, it can backfire. Smart use and strong governance are key as adoption grows. 🛡️

Go to article at
13.6.2025

Hacking the Hackers: When Bad Guys Let Their Guard Down

A memory bug in servers let researchers secretly watch the malware group's actions for 3 years. They found stolen data, private keys, and hacker info—showing even cybercriminals can slip up with their own security. #cybercrime

Go to article at
13.6.2025

Massive Heroku outage impacts web platforms worldwide

Heroku’s #outage on June 10 impacted also Cyberday’s app availability. No data was compromised, but it served as a valuable insight to review our incident management processes. 🚨

Go to article at
13.6.2025