Weekly Cybersecurity Digest [July, Week 1]
Posted on July 1, 2025
Dear Valued Clients,
Welcome to this week’s cybersecurity digest, curated by Make Sense to keep you informed about the latest developments in information security across Europe. This edition explores emerging quantum-resistant strategies, severe malware threats, progress on EU cyber crisis preparedness, and new policy measures for digital resilience.
Our aim is to equip you with timely insights to enhance your cyber resilience and risk management initiatives.
✅ Top Stories of the Week
i. EU Issues Roadmap for Post‑Quantum Cryptography Roll‑Out
On June 23, the EU released a comprehensive roadmap for transitioning to post‑quantum cryptography (PQC). Member States must begin shifting critical infrastructure to PQC by end of 2026 and fully deploy it by 2030. The plan aims to safeguard digital systems from future quantum threats. [Read more on European Commission Digital Strategy]
ii. ENISA Launches Managed Security Services Certification
On June 29, ENISA announced a candidate Managed Security Services (MSS) certification scheme to standardize and elevate cybersecurity services across the EU. Interested providers can now apply to be part of the scheme, designed to align with existing cyber regulations. [Read more on ENISA]
iii. EU Offers NIS2 Technical Implementation Guidance
On June 26, ENISA released technical guidance for NIS2 compliance—covering digital infrastructure, ICT services, and providers—focused on practical advice such as evidence mapping and risk management techniques. [Read more on ENISA]
iv. ENISA Defines Cybersecurity Skills Needed for NIS2 Compliance
On June 26, ENISA released a new guidance report titled “Cybersecurity Roles and Skills for NIS2 Essential and Important Entities.” It maps key obligations under the NIS2 Directive to the European Cybersecurity Skills Framework (ECSF), helping organizations define, structure, and assess the roles and competencies needed to stay compliant. [Download the full ENISA report]
✅ Industry Trends & Insights
Prometei Botnet Re-Emerges in Europe with Crypto-Mining and Credential Theft
Palo Alto Networks’ Unit 42 reported a resurgence of the Linux-based Prometei botnet, active since March 2025. This variant features enhanced capabilities: remote monitoring, Monero cryptomining, credential theft, domain-generation algorithm (DGA) C2 channels, and a stealthy self-update mechanism that evades detection. European organizations running Linux or ESXi should watch for unusual CPU spikes and unusual outbound connections as indicators of infection. [Read the full news on Security Affairs]
✅ Regulatory & Policy Updates
EU Deepens Cyber Resilience via Cyber Crisis Blueprint
ENISA’s updated cyber crisis management blueprint, officially adopted in early June, continues guiding coordinated responses to large-scale incidents involving Member States, sectors, and EU agencies. Follow-up focus remains on stress testing, cross-border coordination, and rapid escalation channels. [Read more via IndustrialCyber]
✅ Cyber IQ Challenge + Proactive Security Hacks
What’s Your Cyber IQ?
Question: Under the EU’s new roadmap, by when must Member States begin implementing post-quantum cryptography for critical infrastructure?
A) End of 2025
B) End of 2026
C) End of 2028
D) End of 2030
While you reflect, here are 3 proactive actions to take:
-
Begin crypto vendor lifecycle planning and inventorise where PQC modules are needed.
-
Plan for third-party MSS certification to strengthen your vendor security posture.
-
Review NIS2 technical guidance to enhance your compliance readiness and evidence mapping.
Answer: B) End of 2026
✅ Conclusion
This week marks a strategic pivot in European cybersecurity—with forward-looking moves into quantum-secure encryption, service certification, standardized regulation, and real-time ransomware threat insight. It’s a period of momentum—but success hinges on translating policy into technical implementation.
We encourage you to explore Make Sense training modules for PQC readiness, MSS certification preparation, NIS2 compliance support, and ransomware incident response.
Stay secure,
The Make Sense SRL Team & CyberTania
