Weekly #cybersecurity digest to your inbox

Subscribe for our weekly digest and get each Friday the most important cyber security news, list of upcoming free webinars and a summary of Cyberday development to your inbox.
Thanks! See you in your inbox on Fridays. :)
Unfortunately something went wrong. You can contact us at team@cyberdayai.

ISO 27001 and ISO 9001: Differences, how they work together and benefits of combining

Learn about the synergy between ISO 27001 and ISO 9001. Learn how integrating these standards enhances information security, quality management, and overall operational efficiency, using case examples and actionable insights.

article

6.6.2024

NIS2 Compliance: Top 5 Reasons for the Manufacturing Sector

The article highlights the critical importance for manufacturers to comply with NIS2 regulations to safeguard their operations and infrastructure from cyber threats.

article

31.5.2024

Cannes Hospital data breach, the impact of AI and NIS2 evolution: the Cyberday product and news round-up 5/2024 🛡️

May's Product and News Update presents the new monthly ISMS reports as well as the Metrics page. Other topics include Cyberday's new framework DORA and recent news around the world.

article

17.5.2024

6 ways to assess security work effectiveness

Evaluating the effectiveness of your cybersecurity involves examining the adequacy of your existing security measures. This process helps you identify your current security status and determine the necessary actions to enhance and fortify.

article

3.5.2024

Best Practices from ISO 27001 for Secure System Acquisition and Development: Create your NIS2 measures

Get tips on securely acquiring and developing systems with a focus on ISO 27001, helping meet NIS2 requirements. Post explains key aspects like secure coding, acquiring secure applications and testing or publishing changes in a controlled manner.

article

16.4.2024

Build your NIS2 measures for Business Continuity and Backups with ISO 27001

This post offers insight on complying with NIS2's continuity and backup requirements using ISO 27001's best practices. It guides you through continuity planning, backup processes, challenges, and achieving compliance effectively.

article

12.4.2024

Understanding HR Security Basics for ISO 27001 & NIS2 Compliance

Discover how the crucial role of HR in information security not only shapes the corporate security culture, but also steers the organization towards ISO 27001 and NIS2 compliance, ensuring secure handling of information assets and much more.

article

5.4.2024

Access Control & MFA (NIS2 21.2): Build A Solid Foundation with ISO 27001 Best Practices

What are the requirements for access control and MFA in NIS2 and ISO 27001 and how can they be implemented successfully? Learn more about the controls, requirements, best practices and how to overcome potential challenges in this blog post.

article

4.4.2024

Ragnarok ransomware gang shuts down, universal decryption key released

Ransomware gang that made $ 4.5 million in ransom, has shut down and released a decryption key. The reason may be active authorities, a change of hear, or skeptically laying low for a while to soon return under a new name. #cybersecurity

Go to article at
1.9.2021

CISA: Don’t use single-factor auth on Internet-exposed systems

CISA maintains a (currently) short list of #cybersecurity bad practices. ⚠️ Newest addition: Single-factor authentication "Based on our studies, your account is more than 99.9% less likely to be compromised if you use MFA."

Go to article at
1.9.2021

”Petos on havaittu” – vatsaa vääntävä huijausyritys leviää suomalaispankin nimissä

Banking-related #phishing: 📲SMS: "Account blocked for security reasons" ⚠️Number forged - can arrive in same thread as real ones 🛑Log in (to scam site) to resolve issue Remember - banks don't ask you to log in this way. #cybersecurity

Go to article at
27.8.2021

The 'Joker' Virus Has Returned to Android Apps in the Google Play Store

Tenacious Joker malware is back. It hides in Android apps and subscribes to paid services past the user. Since 2017 Google has removed thousands of Joker-containing apps, some of which always get large amounts of downloads. #cybersecurity

Go to article at
27.8.2021

Consumer Confidence in Data Security Plummets

Default customer trust in good #cybersecurity is being replaced by suspicion (2000 US adults surveyed): ⚡ 78% believe it’s easy for cybercriminals to breach an organization ⚡ 73% believe most organizations lack good controls over access

Go to article at
24.8.2021

Tietosuojavaltuutetun toimisto tehostaa ETA-maiden ulkopuolelle tehtävien henkilötietojen siirtojen valvontaa

As guidance is fined down, Finnish DPA is increasing control of data transfers. ⚠️ Before transferring data outside the EEA, you must be aware of the basis for the transfer and ensure an adequate level of #dataprotection is quaranteed.

Go to article at
24.8.2021

How attackers could exploit breached T-Mobile user data

T-Mobile suffered a data breach that affected about 50 million people. Danger to victims includes: ⚠️ SMS phishing (impersonating the operator) and malware ⚠️ SIM swapping attacks Read the article for protection tips #cybersecurity

Go to article at
24.8.2021

Education giant Pearson fined $1M for downplaying data breach

2018 data breach led to the compromise of 13 000 student / admin login credentials. The breach was disclosed only after media inquiries and its effects were downplated. This resulted in now decided $1M additional fine. #cybersecurity

Go to article at
19.8.2021

XSS Bug in SEOPress WordPress Plugin Allows Full Site Takeover

Cross-site scripting (XSS) vulnerability in a popular WordPress plugin allows attackers to inject arbitrary web scripts into sites, as one API endpoint was insecurely implemented. Plugin is installed on 100,000 websites. #cybersecurity

Go to article at
19.8.2021