Weekly Cybersecurity Digest [September, Week 1]
Posted on September 9, 2025
Dear Valued Clients,
Welcome to this week’s cybersecurity digest from Make Sense. Europe’s digital landscape faced fresh turbulence, from Jaguar Land Rover’s production shutdown and Telecoms’ GPS jamming to sabotage threats against infrastructure and critical regulatory milestones. With the EU Data Act and NIS2 compliance tools advancing, organisations must be vigilant.
At Make Sense, our goal is not only to inform you but to translate these events into proactive, auditable strategies for resilience.
✅ Top Stories of the Week
i. Jaguar Land Rover Cyber Attack May Halt Production Until October
Jaguar Land Rover (JLR) confirmed a major cyber incident that has severely disrupted operations across UK and Slovak plants. The shutdown may persist until October, impacting both production and suppliers. While no customer data has been identified as compromised, the attack highlights escalating threats to European automotive manufacturing and critical supply chains. [Read more via The Guardian]
ii. Telecoms’ GPS Systems Jammed During EU Commission Plane Flight
A GPS interference incident disrupted European Commission President von der Leyen’s flight approach into Bulgaria, confirmed as a deliberate jamming event. The European Union is now coordinating with EASA and Eurocontrol to strengthen detection systems, review resilience protocols, and accelerate discussions on deploying aviation-grade countermeasures against GNSS jamming and spoofing. [Read more via Corporate Jet Investor]
iii. EU–Brazil Hold 3rd Cybersecurity Dialogue on Global Threat Cooperation
On 5 September, the European Union and Brazil convened their third Cyber Dialogue in Brasilia. Discussions focused on secure connectivity, critical infrastructure protection, responsible state behaviour, and cybercrime combat strategies including the UN Cybercrime Convention. The session reaffirmed mutual commitment to collaboration in addressing emerging global cyber challenges. [Read more via EU Digital Strategy]
✅ Industry Trends & Insights
Europe Poised for Record High in Ransomware Attacks
Fresh research reveals Europe is on track for its most disruptive ransomware year yet, with incidents surging by 80% between 2023 and 2025. Sectors like logistics, healthcare, and advanced manufacturing are repeatedly targeted due to the high cost of downtime. Security analysts stress the importance of layered defence – segmentation, backup validation, and accelerated incident detection. [Read more via PR Web]
Sabotage Attacks on Europe’s Critical Infrastructure Have Tripled
Czech Interior Ministry data shows that sabotage incidents, including arson, vandalism, and physical tampering have nearly tripled since 2023. These acts are increasingly impacting energy grids, telecoms, and transport hubs. Authorities warn that hybrid threats are likely to intensify, urging Member States to strengthen cross-border coordination and invest in joint resilience frameworks. [Read more via UNN]
✅ Regulatory & Policy Updates
EU Data Act Switching Rules for Cloud Services Finalised
Starting 12 September, the EU Data Act will mandate data portability and interoperability across cloud platforms. Providers must enable seamless switching between PaaS, IaaS, and SaaS environments, reducing vendor lock-in and improving governance. For B2B and industrial users, this shift promises greater control over data, but organisations must prepare migration plans and test contractual portability clauses. [Read more via Cooley Insights]
EU Preps National Cyber Heatmaps to Track NIS2 Implementation
The European Commission is developing national cyber heatmaps to monitor NIS2 enforcement across Member States. These dashboards will provide visibility into incident trends, operational readiness, and regulatory gaps. By spotlighting vulnerabilities in real time, the initiative aims to enhance accountability and guide investments in resilience across critical sectors including energy, healthcare, and telecoms. [Read more via TechRadar Pro]
✅ Cyber IQ Challenge + Proactive Security Hacks
Quick Quiz:
With the EU Data Act about to take effect, what key change will organisations need to address when using cloud services?
A) Data anonymisation
B) Mandatory encryption of all traffic
C) Interoperability and switching between cloud providers
D) Ban on storing data outside the EU
(Answer revealed below!)
Smart Security Moves of the Week:
- Prepare for Cloud Switching Obligations: Review vendor contracts and test migration capabilities to meet the Data Act requirements.
- Leverage Cyber Heatmaps: Benchmark your NIS2 compliance maturity against EU-wide dashboards once they go live.
- Reinforce Critical Infrastructure Defences: Sabotage incidents demand joint crisis playbooks spanning IT and OT systems.
- Elevate Ransomware Playbooks: Validate offline backups and rehearse rapid recovery exercises to reduce downtime impact.
- Combat AI Phishing Evolution: Deploy anomaly detection, multi-factor authentication, and staff training to address more convincing lures.
Answer: C) Interoperability and switching between cloud providers
✅ Conclusion
This week highlights the scale of Europe’s cyber challenges: ransomware disrupting industry, phishing evolving through AI, sabotage escalating, and regulatory frameworks reshaping compliance. The EU’s Data Act and NIS2 heatmaps emphasize accountability, while threats demand resilience across sectors.
At Make Sense, we help organisations bridge intelligence, compliance, and resilience – turning these weekly insights into measurable action. Staying informed is only the first step; resilience comes from strategy, preparation, and execution.
Stay secure,
The Make Sense SRL Team & CyberTania
