Weekly #cybersecurity digest to your inbox

Subscribe for our weekly digest and get each Friday the most important cyber security news, list of upcoming free webinars and a summary of Cyberday development to your inbox.

Thanks! See you in your inbox on Fridays. :)

Unfortunately something went wrong. You can contact us at team@cyberdayai.

Recent #cybersecurity weekly digests

See full archive? Go to Weekly digests -page >>

🛡️ Cyberdigest: Cyberday available in Lithuanian and Latvian! 💻 🎄 December's admin webinar coming up! 🧑‍💻

Published at

17:02

Open digest

🛡️ Cyberdigest: Physical Security in cybersecurity 🏢 Phishing risks in christmas shopping?🛍️

Published at

17:02

Open digest

🛡️ Cyberdigest: Introduction to DORA framework ⭐️ Check out our webinars! 💻

Published at

17:01

Open digest

Webinars

See the full calendar? Go to Webinars-page >>

Coming up on:

Wednesday

30

.

5

.

at

14:00

Admin training (part 3/5): Risk management and security control implementation

Coming up on:

Wednesday

7

.

6

.

at

14:00

Admin training (part 5/5): Operating and improving an ISMS and reporting compliance

Coming up on:

Wednesday

13

.

6

.

at

14:00

Admin training (part 4/5): Automating employee awareness, guidance and training

Coming up on:

Wednesday

21

.

6

.

at

15:00

ISO 27001 (part 3/5): Certification audit fundamentals

Coming up on:

Wednesday

9

.

8

.

at

14:00

Admin training (part 2/5): Framework selection and asset identification

Coming up on:

Wednesday

9

.

8

.

at

15:00

ISO 27001 (part 4/5): Staff training, guidelines and policy documents

Blog posts

Info of new posts? Subscribe now >>

Encryption, RaaS, supply chain attacks: Monthly Cyberday product and news roundup 12/2023 🛡️

In December's summary, development themes include UI updates and information security statements. On the news side talk about encryption, RaaS and supply chain attacks.

15.12.2023

NIS2: Who's in the scope and what security measures are required? (part 2/3)

In this post you'll learn about what industries are affected by NIS2, security requirements the directive sets, and the available enforcement methods if an organization is not compliant.

23.8.2023

NIS2: Working towards compliance with Cyberday (3/3)

✈️ You want to lift your cyber security management to a new level & get NIS2 compliant with a smart tool like Cyberday? In this post you'll learn how your organization can achieve NIS2 compliance in a smart way by building an own agile ISMS.

23.8.2023

NIS2: Get familiar with the EU's new cyber security directive (part 1/3)

Learn about the background and reasons behind the EU's new Network and Information Security 2 (NIS2) Directive. How does it affect your company and how should you react to be compliant?

1.8.2023

SOC 2: Working towards compliance

With the help of SOC 2, organisations can provide proof of effectively implemented controls and the use of best practices to protect the data to their customers and stakeholders, which may help to build trust.

31.7.2023

Personnel information security training and guidelines in Cyberday

Most data breaches start with human error. Still, investments in technical information security are often made more eagerly. We tell you why staff information security training and guidelines are important and how to implement then efficiently.

13.6.2023

Information security risk management in Cyberday: Identifying risks, evaluation, treatment and closure

Every cyber security framework highlights risk management in its own way. We summarize in this post, what's essential in information security risk management and what kind of an approach Cyberday offers for it.

13.6.2023

Become a Cyberday partner: Features, benefits and best practices

A good and efficient tool such as Cyberday is a great way to work on the organization's cyber secuirty. However, for some organizations that is not enough and the expertise and support of a consultant is needed. Our partner program offers both!

6.6.2023

News articles

Get weekly news? Subscribe now >>

Only 8% of businesses that paid a ransom got all of their data back

#Ransomware is brutal. Survey findings from Sophos: 📈 avg cost of recovery +143% (0.76M$ (2020) -> 1.85M$ (2021)) 💰 avg ransom paid 170k$ 🦹 8% of got all their data back after paying a ransom #cybersecurity

Go to article at

Cybercriminals Widely Abusing Excel 4.0 Macro to Distribute Malware

Cyber criminals taking advantage of an age-old feature. Excel 4.0 macros (XLM) were published in v4.0 back in 1992. These are hard to detect for security solutions. Use is e.g. download and execute ZLoader or Quakbot malware. #cybersecurity

Go to article at

Five steps to get employees invested in security awareness training

Staff engagement in #cybersecurity training: ✅ Examples - What can happen, if an employee doesn't follow guidelines ✅ Focus on the biggest risks for your organisation or each unit ✅ Clarity - Keep materials short and unambiguous

Go to article at

Mount Locker Ransomware Aggressively Changes Up Tactics

"Product dev" at #ransomware gangs: ⚠️ double-extortion - from data stealing to leaking ⚠️ apps (e.g. AdFind) for AD user query ⚠️ pen-testing tools for lateral movement on networks ⚠️ scripts to disable detection tools #cybersecurity

Go to article at

WhatsApp Pink is malware spreading through group chats

☠️ Unusual baiting technique: WhatsApp users sent links masked as an official update, that claim turning the app's theme to pink. If installed, the malicious WhatsApp pink app takes full control of the targeted device. #cybersecurity

Go to article at

COVID-19-themed cyberattack detections continue to surge

Observations from McAfee report (Q4/2020): 📈 114% increase in COVID-19-themed attacks 📈 69% increase in #ransomware attacks 📈 100% increase in cyber incidents targeting the technology sector #cybersecurity

Go to article at

Fake Microsoft Store, Spotify Sites Being Used to Spread Infostealing Malware

Malicious advertising campaign ongoing. When ad is clicked, user is taken to fake MS Store / Spotify page that auto-downloads advertised app. .zip will actually contain #malware to steal card info and passwords from browsers. #cybersecurity

Go to article at

Most users don’t know the capabilities and risks of QR codes

As QR codes rise in popularity, they'll get more leveraged in cyber crime. Some challenges: ⚠️ 37% knew QR code can download an app ⚠️ 22% knew QR code can share location ⚠️ Identifying a malicious QR code harder than URL #cybersecurity

Go to article at

FBI nuked web shells from hacked Exchange Servers without telling owners

As guidance and do-it-yourself tools had already been utilized, FBI got a search warrant and went in to clean still-compromised MS Exchange servers themselves - ending up successfully uninstalling hundreds of web shells. #cybersecurity

Go to article at

Get started today

Start free, in your familiar Teams environment.
If you have some questions first, book a meeting with us.

Start free 14-day trial