https://threatdigest.io/article/drupal-vulnerability-in-hacker-crosshairs-shortly-after-disclosure/ Threat Digest en 2026-05-23T10:32:10.077036+00:00 Drupal Exploit Found in the Wild Hours After Patch SQL injection, cve-2026-9082, cyber attack, drupal, postgresql, website security https://threatdigest.io/article/foul-play-fake-fifa-websites-target-soccer-fans-looking-for-world-cup-tickets-merchandise/ Threat Digest en 2026-05-23T08:42:40.981010+00:00 Fake FIFA Sites Fleece Fans FIFA, World Cup 2026, cybersecurity, phishing, scams, typosquatting https://threatdigest.io/article/litespeed-cpanel-plugin-cve-2026-48172-exploited-to-run-scripts-as-root/ Threat Digest en 2026-05-23T07:36:49.298249+00:00 LiteSpeed Plugin Exploited for Root Access CVE-2026-48172, LiteSpeed, cPanel, root access, script execution, vulnerability exploitation https://threatdigest.io/article/daily-briefing-may-23-2026/ Threat Digest en 2026-05-23T07:00:00.420243+00:00 Daily Briefing: May 23, 2026 https://threatdigest.io/article/microsoft-recognized-as-a-leader-in-the-forrester-wavetm-for-workforce-identity-security-platforms/ Threat Digest en 2026-05-23T05:55:51.372221+00:00 Microsoft Entra: Leader in Workforce Identity Security? ai identity, cybersecurity, forrester wave, identity-security, microsoft entra, workforce identity https://threatdigest.io/article/from-edge-appliance-to-enterprise-compromise-multi-stage-linux-intrusion-via-f5-and-confluence/ Threat Digest en 2026-05-23T05:47:34.320649+00:00 Linux Breached via F5 & Confluence [New Tactics] Active Directory compromise, Confluence vulnerability, F5 BIG-IP, Linux intrusion, edge appliance compromise, edge appliance security, identity-centric attacks, multi-stage attack https://threatdigest.io/article/ghostwriter-targets-ukraine-government-entities-with-prometheus-phishing-malware/ Threat Digest en 2026-05-23T05:43:06.442250+00:00 Ghostwriter's Prometheus Play: Ukraine Govt Targeted with New Phishing Malware cobalt strike, cyber warfare, ghostwriter, phishing, prometheus malware, ukraine government https://threatdigest.io/article/microsoft-security-success-stories-how-st-lukes-and-manpowergroup-are-securing-ai-foundations/ Threat Digest en 2026-05-23T05:31:52.197866+00:00 AI Security: St. Luke's & ManpowerGroup Success Stories AI security, ManpowerGroup, Microsoft Security Copilot, St. Luke's University Health Network, cloud security, zero trust https://threatdigest.io/article/metasploit-wrap-up-05222026/ Threat Digest en 2026-05-22T19:02:15.525531+00:00 Metasploit Adds 5 New Exploits, Including Auth Bypass on Cisco SD-WAN Barracuda ESG, Cisco SD-WAN, HUSTOJ, Metasploit, cPanel, cve-2026-20182 https://threatdigest.io/article/netherlands-seizes-800-servers-of-hosting-firm-enabling-cyberattacks/ Threat Digest en 2026-05-22T18:17:50.269412+00:00 Dutch Cops Seize 800 Servers Enabling Cyberattacks FIOD, Netherlands, Stark Industries, WorkTitans B.V., cyberattack hosting, sanctions https://threatdigest.io/article/sentinels-league-2026-live-rankings-for-the-threat-hunting-world-championship-30de93ff5122/ Threat Digest en 2026-05-22T17:05:45.169115+00:00 Threat Hunting Championship: $100K Prize Pool & New 30-Min Format AI in cybersecurity, SentinelOne, capture the flag, cybersecurity competition, sentinels league, threat hunting https://threatdigest.io/article/the-good-the-bad-and-the-ugly-in-cybersecurity-week-21/ Threat Digest en 2026-05-22T16:04:30.787467+00:00 Microsoft Defender Zero-Days: SYSTEM Privileges & DoS Chaos cve-2026-41091, cybercrime, infostealer, macOS malware, microsoft-defender, zero-day https://threatdigest.io/article/first-vpn-cybercrime-service-disrupted-administrator-arrested/ Threat Digest en 2026-05-22T13:36:33.255494+00:00 First VPN Takedown: Cybercrime's Anonymity Shaken anonymity, cybercrime, dark web, first vpn, law enforcement, ransomware https://threatdigest.io/article/how-cisos-should-prep-for-agentic-ready-ai-boms/ Threat Digest en 2026-05-22T13:25:24.264513+00:00 AI BOMs: CISOs Scramble for Visibility AI security, CISOs, agentic AI, ai bom, nist https://threatdigest.io/article/ubiquiti-patches-three-max-severity-unifi-os-vulnerabilities/ Threat Digest en 2026-05-22T12:21:21.343283+00:00 Ubiquiti Patches Max-Severity UniFi OS Flaws command injection, cve, cybersecurity, ubiquiti, unifi os, vulnerabilities https://threatdigest.io/article/cloud-atlas-activity-in-the-second-half-of-2025-and-early-2026-new-tools-and-a-new-payload/ Threat Digest en 2026-05-22T10:57:48.684460+00:00 Cloud Atlas Shifts Tactics [2026] cloud atlas, phishing, powershell, powershower, ssh tunneling, vbcloud https://threatdigest.io/article/paved-with-intent-roadtools-and-nation-state-tactics-in-the-cloud/ Threat Digest en 2026-05-22T10:18:44.855138+00:00 ROADtools: Cloud's New Shadow Play Revealed cloud security, entra id, identity and access management, nation-state threats, roadtools https://threatdigest.io/article/us-and-canada-arrest-and-charge-suspected-kimwolf-botnet-admin/ Threat Digest en 2026-05-22T09:24:13.494547+00:00 KimWolf Botnet Admin Arrested: 2 Million Devices Compromised DDoS attack, IoT security, Kimwolf botnet, cybercrime-as-a-service, law enforcement https://threatdigest.io/article/chinas-webworm-uses-discord-microsoft-graphs-to-hack-eu-govts/ Threat Digest en 2026-05-22T07:50:17.012751+00:00 Webworm's Discord/Graph Tactics: Hacking EU Govts APT, China, cyber espionage, discord, microsoft graph, webworm https://threatdigest.io/article/daily-briefing-may-22-2026/ Threat Digest en 2026-05-22T07:00:00.462039+00:00 Daily Briefing: May 22, 2026 https://threatdigest.io/article/google-api-keys-remain-active-after-deletion/ Threat Digest en 2026-05-22T05:48:51.817983+00:00 Google API Keys Linger Post-Deletion [Security Flaw] API keys, credential management, distributed systems, google cloud, security vulnerability https://threatdigest.io/article/why-security-in-2026-requires-continuous-threat-and-exposure-management-ctem-at-scale/ Threat Digest en 2026-05-22T05:48:45.362946+00:00 CTEM 2026: Is Your Patch Window Still Open? CTEM, Rapid7, attack surface management, cybersecurity strategy, vulnerability management https://threatdigest.io/article/alleged-kimwolf-botmaster-dort-arrested-charged-in-us-and-canada/ Threat Digest en 2026-05-22T05:46:47.630264+00:00 Kimwolf Botnet Master Busted [Criminal Charges Filed] DDoS attacks, Jacob Butler, cybercrime, dort, iot botnet, kimwolf https://threatdigest.io/article/cisco-patches-cvss-100-secure-workload-rest-api-flaw-enabling-data-access/ Threat Digest en 2026-05-22T05:29:27.339209+00:00 Cisco Patches CVSS 10.0 Flaw: Data Access at Risk cisco, cve-2026-20223, cvss 10.0, data access, rest api, secure workload https://threatdigest.io/article/microsoft-defender-vulnerabilities-are-being-exploited-in-the-wild/ Threat Digest en 2026-05-21T19:27:51.822825+00:00 Microsoft Defender Exploited [2026] CISA, KEV, cybersecurity, exploitation, microsoft-defender, vulnerabilities https://threatdigest.io/article/whats-new-in-microsoft-security-may-2026/ Threat Digest en 2026-05-21T17:52:08.520776+00:00 Microsoft Security's AI Gambit: More Visibility or More Blind Spots? AI security, data security posture management, microsoft entra id, microsoft purview, microsoft-security, windows 365 https://threatdigest.io/article/varonis-announces-integration-with-the-claude-compliance-api/ Threat Digest en 2026-05-21T16:39:22.784470+00:00 Varonis Adds Claude AI Activity to Atlas Platform AI security, Anthropic, Varonis, claude, compliance, data governance https://threatdigest.io/article/mini-shai-hulud-frequently-asked-questions-about-the-teampcp-npm-and-pypi-supply-chain-campaign/ Threat Digest en 2026-05-21T16:12:22.263943+00:00 170+ Packages Wormed: TeamPCP's Mini Shai-Hulud Campaign Explained PyPI, TeamPCP, mini shai-hulud, npm, supply chain attack, worm https://threatdigest.io/article/showboat-linux-malware-hits-middle-east-telecom-with-socks5-proxy-backdoor/ Threat Digest en 2026-05-21T14:32:35.985210+00:00 Showboat Malware: China-Linked Linux Backdoor Targets Telecoms SOCKS5 proxy, china nexus, cybersecurity, linux malware, showboat malware, threat intelligence https://threatdigest.io/article/cve-2026-9082-highly-critical-sql-injection-vulnerability-in-drupal-core-sa-core-2026-004/ Threat Digest en 2026-05-21T13:30:30.111385+00:00 Drupal Core SQL Injection: Is Your PostgreSQL Site Next? SQL injection, cve-2026-9082, drupal, postgresql, web security https://threatdigest.io/article/tenable-one-deepens-third-party-integrations-with-new-open-connector-for-unified-risk-visibility/ Threat Digest en 2026-05-21T12:47:00.214970+00:00 Tenable One Connector: Breaking Down Silos or Just More Buzz? Tenable One, cyber risk visibility, data integration, exposure management, open connector, vendor lock-in https://threatdigest.io/article/when-identity-is-the-attack-path/ Threat Digest en 2026-05-21T11:02:01.873927+00:00 Identity is the New Attack Path [Security Blind Spot] AI security, attack path mapping, cloud security, credential theft, cybersecurity tools, identity-security