Weekly Cybersecurity Digest [June, Week 4]
Posted on June 24, 2025
Dear Valued Clients,
Welcome to this week’s cybersecurity digest, curated by Make Sense to keep you informed about the latest developments in information security across Europe. This edition highlights a major cyber diplomacy agreement, critical zero-day threat alerts, a record-breaking credential leak, and new malware activity impacting European organizations.
Our aim is to equip you with timely insights to support your cyber resilience and risk mitigation efforts.
✅ Top Stories of the Week
i. EU–Canada Cyber Defence Pact Comes into Force
On June 23, at the EU–Canada Summit in Brussels, both parties signed a landmark cybersecurity pact. The agreement strengthens collaboration on cyber intelligence sharing, joint exercises, and protecting critical infrastructure. [Read more on Reuters]
ii.Citrix & Veeam Zero-Day Exploits Flagged in EU Advisory
On June 17, CERT-EU issued urgent warnings about active exploitation of zero-day vulnerabilities in Citrix ADC/Gateway and Veeam Backup & Replication. These flaws enable remote code execution and have already been observed in targeted campaigns. European organizations must patch without delay. [Patch details via CERT-EU]
iii. Record-Breaking Leak: “RockYou2024” Exposes 16 Billion Passwords
On June 20, a 1.2 TB dataset containing 16 billion credentials was leaked on a hacker forum. Dubbed “RockYou2024,” it aggregates logins from Apple, Facebook, Google, Microsoft, and more. Experts urge immediate password resets and universal MFA deployment. [Read more via Forbes]
✅ Industry Trends & Insights
New “Sorillus RAT” Malware Surfacing in Europe
Security firms uncovered a new Remote Access Trojan dubbed “Sorillus RAT” (aka “Ratty RAT”), spreading via invoice-themed phishing emails across Europe. First seen in early June, it targets SMEs and public institutions, establishing persistent backdoors and harvesting confidential data. [Read technical analysis on GBHackers]
✅ Regulatory & Policy Updates
EU and Canada Deepen Digital & Cyber Cooperation
As part of their new strategic partnership, the EU and Canada pledged to enhance cooperation in digital infrastructure, cyber resilience, and secure tech supply chains. The June 23 joint statement includes plans to:
– Promote secure-by-design technologies
– Advance joint cybersecurity exercises and crisis planning
– Support trusted connectivity initiatives in third countries
This reinforces the EU’s Cyber Diplomacy Toolbox with a transatlantic dimension and highlights the geopolitical importance of aligning cyber norms and defense readiness. [Read the official EU Commission statement]
✅ Cyber IQ Challenge + Proactive Security Hacks
What’s Your Cyber IQ?
Question: What is the nickname of the recent 16-billion-password leak posted online?
-
DataCrush2025
-
RockYou2024
-
BlackDumpPro
-
LeakNation
While you think it over, here are 3 essential credential management tips:
-
Rotate Passwords Often, especially on email and authentication platforms.
-
Avoid Password Reuse — leaked credentials are repurposed across services.
-
Enable MFA Everywhere — the most effective defense if a password is compromised.
Answer: 2. RockYou2024
✅ Conclusion
This week highlights a dual focus: strategic alignment through the EU–Canada cybersecurity pact, and urgent resilience measures against credential dumps and high-risk software vulnerabilities. It’s a clear reminder that effective cyber posture requires both geopolitical collaboration and concrete technical action.
Consider reviewing your patch management and MFA deployment—and explore our Make Sense training modules to reinforce your incident readiness and infrastructure resilience.
Stay secure,
The Make Sense SRL Team & CyberTania
