Weekly Cybersecurity Digest [July, Week 5]
Posted on July 29, 2025
Dear Valued Clients,
Welcome to this week’s cybersecurity digest, curated by Make Sense to keep you informed about the latest developments in information security across Europe. From naval secrets to hospital records, this week’s cyber breaches hit Europe’s most sensitive sectors. NATO flags escalating threats to ports, while ENISA urges urgent action on exploited SharePoint flaws and NIS2 readiness gaps. Meanwhile, Europe’s digital sovereignty agenda is pivoting toward resilience and open-source.
As always, we bring you the most relevant updates to help strengthen your operational defenses.
✅ Top Stories of the Week
i. France’s Naval Group Hit by Cyber Breach—Submarine Secrets Exposed
French defence giant Naval Group confirmed that hackers accessed sensitive internal data, including submarine combat management systems and source code. The attackers are now extorting the company. If verified, this breach poses serious national security implications. [Read more via Cybernews]
ii. NATO Warns: State-Linked Hackers Target European Ports
A new NATO CCDCOE brief warns that European ports face escalating cyberattacks from state-linked actors, including Russia, Iran, and China. These attacks target access control and vessel traffic systems, exposing critical vulnerabilities. NATO calls for urgent maritime strategy updates, civil-military coordination, and threat-sharing frameworks to protect port infrastructure central to military logistics and global trade. [Read more via Industrial Cyber]
iii. Major Healthcare Breach at AMEOS Group Affects Patients & Staff
AMEOS, operating over 100 healthcare facilities in Germany, Switzerland, and Austria, suffered an unauthorized intrusion that exposed patient and employee data. While no public leak has yet occurred, investigations are ongoing and affected individuals advised to remain vigilant. [Read more via Bleeping Computer]
✅ Industry Trends & Insights
Europe’s Digital Sovereignty Push Shifts Toward Resilience and Open-Source Infrastructure
Europe is redefining digital sovereignty through initiatives like Gaia-X and the EU AI Act, focusing on resilience over regulation. Open-source and decentralized technologies are central to reducing reliance on foreign systems. True sovereignty requires EU-hosted, encrypted, and transparent platforms—backed not just by public funding but by a bold, innovation-driven environment that empowers European tech to scale securely and independently. [Read more via Help Net Security]
EU Agencies Urge Immediate Action on Actively Exploited SharePoint Vulnerabilities
The EU Commission, ENISA, and CERT-EU warn of active exploitation of new zero-day vulnerabilities (CVE-2025-53770, CVE-2025-53771) in on-prem SharePoint servers. Urging immediate isolation and forensic assessment, agencies stress prompt patching only after compromise is ruled out. The incident highlights the upcoming Cyber Resilience Act’s urgency in enforcing security-by-design and timely vulnerability remediation across EU digital infrastructure. [Read more via ENISA]
✅ Regulatory & Policy Updates
Europe Struggles with NIS2 Implementation—ENISA Sounds the Alarm
A new ENISA-backed analysis (published July 22) reveals that six critical infrastructure sectors — including maritime, healthcare, public administration, space, gas, and ICT services — are lagging in NIS2 compliance. Key hurdles include outdated legacy systems, fragmented regulation across Member States, and insufficient cybersecurity investment. Experts stress the need for asset mapping, appointing compliance leads, and tightening supplier vetting to avoid future penalties and vulnerabilities. [Read more via ITPro]
✅ Cyber IQ Challenge + Proactive Security Hacks
Cyber IQ Quiz: Which sector was most directly impacted by this week’s high-profile breaches?
A) Aerospace
B) Maritime & Defence
C) Retail
D) Energy
Answer below!
Smart Security Move of the Week: Strengthen Maritime & Industrial Cyber Resilience
-
Implement visibility into OT systems and apply segmentation between maritime networks and enterprise IT.
-
Conduct tabletop simulations for port and facility incident response.
-
Increase anomaly detection and threat monitoring at critical junctions.
-
Encourage regional partners to share intelligence with national CERTs.
✅ Quiz Answer: B) Maritime & Defence
This week saw breaches targeting naval combat systems and freight port infrastructure—underlining the tactical shift toward maritime-targeted cyber threats.
✅ Conclusion
Cyberattacks targeting European defense, healthcare, and transport systems underscore a critical truth—resilience can’t wait. As SharePoint exploits rise and NIS2 compliance lags, proactive audits and sector-wide coordination are no longer optional. Make Sense helps you translate urgency into action through expert-led training, strategic guidance, and practical compliance programs. Don’t forget to explore our Make Sense trainings modules to guide your next move.
Stay secure,
The Make Sense SRL Team & CyberTania
