Weekly #cybersecurity digest to your inbox

Subscribe for our weekly digest and get each Friday the most important cyber security news, list of upcoming free webinars and a summary of Cyberday development to your inbox.
Thanks! See you in your inbox on Fridays. :)
Unfortunately something went wrong. You can contact us at team@cyberdayai.

Navigating the Cybersecurity Maze: Master NIS2 with the help of ISO 27001

Learn how to master NIS2 with ISO 27001 and grab our free NIS2 e-book! This blog post was originally written for the Cyber Security Nordic 2024 event where Cyderday is presented as Strategic partner.

article

3.10.2024

Corporate Security Alert: Identifying Dangerous Apps on Employee Phones

This article uncovers hidden security risks of popular apps on work devices, covering social media, messaging, cloud storage, gaming, utility, health, VPN, and shopping apps, with recommendations to safeguard corporate data.

article

20.9.2024

NIS2 national legistation, ransomware and a new development forum: Cyberday product and news round-up 9/2024 🛡️

This is the September news and product review from Cyberday. Read news about ransomware, new phishing techniques and local NIS2-legistations.

article

20.9.2024

IT and OT Cyber Security: Different Environments, Different Priorities

This blog post outlines the key differences between IT and OT cyber security, focusing on their distinct areas, objectives, environments, threat landscapes, and compliance requirements.

article

4.9.2024

Cyber Security in Supply Chain Risk Management

Businesses should prioritize supply chain security by adopting best cyber security practices, fostering resilience, and promoting collaboration to protect against evolving cyber threats. Learn more about this topic in this blog post.

article

22.8.2024

Spreadsheet vs. ISMS tool - top 10 reasons why a tool is better than the traditional way

Discover the top 10 reasons why agile tools outperform traditional spreadsheets in managing cyber security compliance, from centralized management to continuous improvement.

article

22.8.2024

ISMS Essentials: Mastering a Data System Inventory for Your Organization

This post provides essential insights for maintaining a data system inventory within your organization's ISMS, detailing key processes, asset types, and tackling common challenges.

article

15.8.2024

Incident Detection: Building, Nurturing, and Continuously Improving a Proactive Environment

Shift from reactive to proactive incident detection. Use advanced tools, continuous learning, and customised strategies to anticipate and prevent issues. Focus on constant improvement and innovation to boost security and resilience.

article

15.8.2024

Panic As Kosovo Pulls The Plug On Its Energy Guzzling Bitcoin Miners

🛑 To ease energy crisis, Kosovo's government in Dec announced an immediate, albeit temporary, ban on all crypto mining activity. This created panic, as people are selling off their mining equipment – at knockdown prices. #cybersecurity

Go to article at
21.1.2022

FIN8 Hackers Spotted Using New 'White Rabbit' Ransomware in Recent Attacks

⚠️ FIN8 is back with a never-before-seen #ransomware, recently used eg against US banks. This malware uses double-extortion and hides its maliciousness by requiring a specific command-line password to decrypt its internal configuration.

Go to article at
21.1.2022

Fingers point to Lazarus, Cobalt, FIN7 as key hacking groups attacking finance industry

💰 Finance industry, a top target for #cybercrime due to eg lots of sensitive PII and data systems critical for economy. Lazarus, Cobalt, and FIN7 top threat actors. Top attacks phishing, BEC, malware (also PoS), card skimmers and DDoS.

Go to article at
14.1.2022

FBI: Hackers target US defense firms with malicious USB packages

⚠️ FIN7 cybercrime group targets US defense industry by posting them malicious USB devices. Hackers impersonate authorities to trick connecting the drive. Once plugged in, device injects keystrokes to install malware. #cybersecurity

Go to article at
14.1.2022

Cloud Apps Replace Web as Source for Most Malware Downloads

🔺 Google Drive, Microsoft OneDrive and Box are (unsurprisingly) also cyber criminals favourites for #malware hosting. 🔺 On delivery side weaponized MS Office documents count for 37% of all malware downloads (nearly +100% from 2020)

Go to article at
14.1.2022

FBI arrests social engineer who allegedly stole unpublished manuscripts from authors

⚠️ A cautionary tale During 5y period, this malicious insider was able to create fake email accounts and impersonate publishing industry people, to steal prepublication manuscripts from famous authors - for own benefit. #cybersecurity

Go to article at
14.1.2022

Kriittinen haavoittuvuus Windowsin http.sys-protokollapinossa

⚠️ Microsoft again released numerous vulnerability fixes on "Patch Tuesday". Of these, the http.sys vulnerability CVE-2022-21907 stands out for its criticality. Perform a corrective software update as soon as possible. #cybersecurity

Go to article at
14.1.2022

Morgan Stanley to pay $60 mln to resolve data security lawsuit

MS.N will pay $60 M to settle a lawsuit by customers who said bank exposed their personal data. In 2016 and 2019 the company twice failed in properly disposing data sensitive equipment, which led to unauthorized access. #cybersecurity

Go to article at
6.1.2022

6 Ways to Minimize Ransomware Damage

1️⃣ Eliminate unnecessary and classify necessary data 2️⃣ Pay attention to email risks and training 3️⃣ Ensure backup processes are in place and tested 4️⃣ Include #ransomware on your disaster recovery plans More tips on the article >>

Go to article at
5.1.2022