Weekly #cybersecurity digest

Thanking our customers for a great 2022!

Wishing you happy holidays and a fantastic new year. We're very appreciative of your support and will continue to serve you even better in the years to come! 🎄🎉

Kind regards,
Cyberday team

4 Most Common Cyberattack Patterns from 2022

Challenging year for security teams with e.g. war in Europe, persistently remote workforce and a series of large-scale #cyberattack's. Common patterns: 💰 Ransomware 📨 Email compromise 🏭 Supply chain attacks 🤖 IoT device attacks

23.12. 12:24 · https://securityintelligence.com/articles/most-common-cyberattack-patterns-2022/

“Suspicious login” scammers up their game – take care at Christmas

"There was a suspicious login to your account" is a popular start by cyber scammers. In this article you'll see a sequence of screenshots and steps involved in a recent social media #cyberattack received by the authors. Scam details ➡️

23.12. 12:22 · https://nakedsecurity.sophos.com/2022/12/21/suspicious-login-scammers-up-their-game-take-care-at-christmas/

Make sure your company is prepared for the holiday hacking season

Why cyberattacks increase around the holidays: 🧑‍💻 Undestaffed IT staff ⚠️ Relaxed #cybersecurity posture after a busy year ⏰ Rush to finish projects, danger for mistakes 👤 Contractors filling positions - not familiar with guidelines

23.12. 12:18 · https://www.helpnetsecurity.com/2022/12/20/company-prepared-holiday-hacking-season/

UK Privacy Regulator Names and Shames Breached Firms

ICO has taken the step of publishing details of companies that suffered personal data breaches. The era of relative anonymity looks to be over. In the year ending 10/2022, ICO-issued fines also incresased over 200%, to £15.2m. #privacy

23.12. 12:16 · https://www.infosecurity-magazine.com/news/uk-privacy-regulator-names-and/

Okta says its GitHub account hacked, source code stolen

Okta is a leading provider of IAM solutions. In a 'confidential' email Okta describes a recent #cyberattack, which lead to threat actors accessing its GitHub repositories and stealing Okta Workforce Identity Cloud (WIC) source code.

23.12. 12:14 · https://www.bleepingcomputer.com/news/security/okta-says-its-github-account-hacked-source-code-stolen/

Admin training (part 5/5): Operating and improving an ISMS and reporting compliance

We will present ways for successfully operating and continuously improving your ISMS.

Starts on Wed 4.1. at 2PM (EET) · duration 30 min

ISO 27001 (part 4/5): Staff training, guidelines and policy documents

We will present the creation of an automatized and compliant staff training and awareness procedure.

Starts on Wed 4.1. at 3PM (EET) · duration 45 min

Coming up: Extensions for employee actions on Guidebook

We've received a good reception for the employee incident reporting features in Guidebook. Now we're going to expand similar possibilities. In the next phase...

Academy contents now available inside Cyberday app

Now anytime you're browsing around in Cyberday, we are showing you the relevant Academy content (e.g. help articles, videos, blog posts) on the left menu. Look for the ?-icon...

ISO 27001 standard updated to 2022 version - what changed?

ISO 27001, the world's leading information security standard, got an update for the first time in 9 years. What has changed when comparing 2013 vs. 2022 versions of ISO 27001 and how are these updates visible on Cyberday?