Weekly #cybersecurity digest to your inbox

Subscribe for our weekly digest and get each Friday the most important cyber security news, list of upcoming free webinars and a summary of Cyberday development to your inbox.
Thanks! See you in your inbox on Fridays. :)
Unfortunately something went wrong. You can contact us at team@cyberdayai.

NIS2: Who's in the scope and what security measures are required? (part 2/3)

In this post you'll learn about what industries are affected by NIS2, security requirements the directive sets, and the available enforcement methods if an organization is not compliant.

article

23.8.2023

NIS2: Working towards compliance with Cyberday (3/3)

✈️ You want to lift your cyber security management to a new level & get NIS2 compliant with a smart tool like Cyberday? In this post you'll learn how your organization can achieve NIS2 compliance in a smart way by building an own agile ISMS.

article

23.8.2023

NIS2: Get familiar with the EU's new cyber security directive (part 1/3)

Learn about the background and reasons behind the EU's new Network and Information Security 2 (NIS2) Directive. How does it affect your company and how should you react to be compliant?

article

1.8.2023

SOC 2: Working towards compliance

With the help of SOC 2, organisations can provide proof of effectively implemented controls and the use of best practices to protect the data to their customers and stakeholders, which may help to build trust.

article

31.7.2023

Personnel information security training and guidelines in Cyberday

Most data breaches start with human error. Still, investments in technical information security are often made more eagerly. We tell you why staff information security training and guidelines are important and how to implement then efficiently.

article

13.6.2023

Information security risk management in Cyberday: Identifying risks, evaluation, treatment and closure

Every cyber security framework highlights risk management in its own way. We summarize in this post, what's essential in information security risk management and what kind of an approach Cyberday offers for it.

article

13.6.2023

Become a Cyberday partner: Features, benefits and best practices

A good and efficient tool such as Cyberday is a great way to work on the organization's cyber secuirty. However, for some organizations that is not enough and the expertise and support of a consultant is needed. Our partner program offers both!

article

6.6.2023

Cyberday Community has been launched!

We just launched a new Community section inside Cyberday. Our goal is to make collaboration with your peers and with us easier and thus help you improve your information security even further!

article

24.3.2023

Colonial Pipeline facing $1,000,000 fine for poor recovery plans

Many remember Colonial Pipeline #ransomware attack from last year. They paid attackers 4.4 M$ in bitcoin, but were unable to recover much of data. ⚠️ Now Colonial is also fined 1M$ for poor continuity planning. Read for more RaaS info >>

Go to article at
13.5.2022

Phishing Scam Nets $23.5 Million From DoD, California Man Arrested Siphoning Money From Contractors

🦹 Mies hyökkäsi DoD:hen #phishing'huijauksella ja varasti 23 M$. Toimittajan työntekijänä hän tunsi maksujärjestelmän. Väärennettyjen sähköpostien ja lookalike URLien avulla hän varasti kirjautumistunnuksia ja ohjasi maksuja 💸 itselleen.

Go to article at
13.5.2022

Phishing Scam Nets $23.5 Million From DoD, California Man Arrested Siphoning Money From Contractors

🦹 Man hit DoD with #phishing, stealing 23 M$ before caught. As jet fuel supplier employee, he knew the vendor payment system. Using fake GSA-emails and lookalike URLs, he stole vendor login creds and routed payments 💸 to shell company.

Go to article at
13.5.2022

Password reuse is rampant among Fortune 1000 employees

Study of key sector employee cyber hygiene: 🔓 64% password reuse 📈 Spike in #malware infected devices 🙅 Extensive easy-to-guess pw's These are risks for employers and consumers, who rely on these businesses to safeguard their data.

Go to article at
13.5.2022

Common LinkedIn scams: Beware of phishing attacks and fake job offers

Scammers often attack us when we're at our most vulnerable. LinkedIn is often perceived safe, but fraud there is soaring. Beware of these scams: 📧 Fake notifications for #phishing 💼 Bogus job offers 💰 Crypto investment offers

Go to article at
13.5.2022

'A tragedy': Closure of 150-year-old college underscores toll of ransomware attacks

🏫 Lincoln College closes its doors Friday, becoming the 1st US higher edu institute to shut down partly due to #ransomware. Goodbye note on website said it survived both WW's and the Great Depression, but not Covid & severe cyberattack.

Go to article at
13.5.2022

Mozilla: Lack of Security Protections in Mental-Health Apps Is ‘Creepy’

Mental-health apps can have good intentions, but harm users by exposing intimate data due to severe lack #privacy safeguards. Mozilla's team used avg. 8h's to investigate 32 apps each: 88% got slapped with a "Privacy Not Included" -label.

Go to article at
6.5.2022

Deepfakes Are a Growing Threat to Cybersecurity and Society: Europol

Europol warns of deepfakes as #cybercrime's next big weapon for creating better scams. Deepfake tech uses AI techniques to alter existing or create new audio or video content. ⚠️ Study in 2019 showed 72% of people being unaware of them.

Go to article at
6.5.2022

What’s behind the record‑high number of zero days?

Multiple research teams observed big growth in reported zero-days in 2021. Possible reasons are: ☁️ Move toward cloud hosting, mobile and IoT tech 🦹 Expanding exploit broker marketplace 🖥️ Better detection capabilities #cybersecurity

Go to article at
6.5.2022