https://threatdigest.io/article/friday-squid-blogging-regulating-squid-fishing-in-the-south-pacific/ Threat Digest en 2026-05-23T18:10:25.132184+00:00 Squid Overfishing: A South Pacific Crisis SPRFMO, South Pacific, marine conservation, overfishing, squid fishing https://threatdigest.io/article/how-enverus-secures-salesforce-data-and-prevents-data-breaches-with-varonis/ Threat Digest en 2026-05-23T16:40:21.463116+00:00 Enverus Dodges SaaS Attack [Varonis Insight] SaaS security, Varonis, data breach prevention, enverus, identity threat detection, salesforce security https://threatdigest.io/article/megalodon-github-attack-targets-5561-repos-with-malicious-cicd-workflows/ Threat Digest en 2026-05-23T15:03:38.670171+00:00 GitHub Attack [5,561 Repos] Uses Malicious CI/CD Workflows ci/cd, github attack, malicious workflows, megalodon, secrets exfiltration, supply chain attack https://threatdigest.io/article/verizon-dbir-healthcare-fends-off-increased-social-engineering-attacks/ Threat Digest en 2026-05-23T14:24:29.490053+00:00 Healthcare Under Fire: Social Engineering Dominates Verizon DBIR AI in cyberattacks, Verizon DBIR, data breaches, healthcare cybersecurity, ransomware, social engineering https://threatdigest.io/article/cve-2026-46333-local-root-privilege-escalation-and-credential-disclosure-in-the-linux-kernel-ptrace-path/ Threat Digest en 2026-05-23T13:52:20.521525+00:00 Linux Kernel Root Exploit Revealed [CVE-2026-46333] cve-2026-46333, linux kernel, local privilege escalation, ptrace, root access https://threatdigest.io/article/underminr-vulnerability-lets-attackers-hide-malicious-connections-behind-trusted-domains/ Threat Digest en 2026-05-23T12:46:53.918989+00:00 Underminr Flaw Lets Bad Actors Hide in Plain Sight cdn, cybersecurity, domain fronting, malicious connections, underminr, vulnerability https://threatdigest.io/article/laravel-lang-php-packages-compromised-to-deliver-cross-platform-credential-stealer/ Threat Digest en 2026-05-23T11:34:18.296514+00:00 Laravel-Lang Packages Hit by Supply Chain Attack [2026] https://threatdigest.io/article/drupal-vulnerability-in-hacker-crosshairs-shortly-after-disclosure/ Threat Digest en 2026-05-23T10:32:10.077036+00:00 Drupal Exploit Found in the Wild Hours After Patch SQL injection, cve-2026-9082, cyber attack, drupal, postgresql, website security https://threatdigest.io/article/foul-play-fake-fifa-websites-target-soccer-fans-looking-for-world-cup-tickets-merchandise/ Threat Digest en 2026-05-23T08:42:40.981010+00:00 Fake FIFA Sites Fleece Fans FIFA, World Cup 2026, cybersecurity, phishing, scams, typosquatting https://threatdigest.io/article/litespeed-cpanel-plugin-cve-2026-48172-exploited-to-run-scripts-as-root/ Threat Digest en 2026-05-23T07:36:49.298249+00:00 LiteSpeed Plugin Exploited for Root Access CVE-2026-48172, LiteSpeed, cPanel, root access, script execution, vulnerability exploitation https://threatdigest.io/article/daily-briefing-may-23-2026/ Threat Digest en 2026-05-23T07:00:00.420243+00:00 Daily Briefing: May 23, 2026 https://threatdigest.io/article/microsoft-recognized-as-a-leader-in-the-forrester-wavetm-for-workforce-identity-security-platforms/ Threat Digest en 2026-05-23T05:55:51.372221+00:00 Microsoft Entra: Leader in Workforce Identity Security? ai identity, cybersecurity, forrester wave, identity-security, microsoft entra, workforce identity https://threatdigest.io/article/from-edge-appliance-to-enterprise-compromise-multi-stage-linux-intrusion-via-f5-and-confluence/ Threat Digest en 2026-05-23T05:47:34.320649+00:00 Linux Breached via F5 & Confluence [New Tactics] Active Directory compromise, Confluence vulnerability, F5 BIG-IP, Linux intrusion, edge appliance compromise, edge appliance security, identity-centric attacks, multi-stage attack https://threatdigest.io/article/ghostwriter-targets-ukraine-government-entities-with-prometheus-phishing-malware/ Threat Digest en 2026-05-23T05:43:06.442250+00:00 Ghostwriter's Prometheus Play: Ukraine Govt Targeted with New Phishing Malware cobalt strike, cyber warfare, ghostwriter, phishing, prometheus malware, ukraine government https://threatdigest.io/article/microsoft-security-success-stories-how-st-lukes-and-manpowergroup-are-securing-ai-foundations/ Threat Digest en 2026-05-23T05:31:52.197866+00:00 AI Security: St. Luke's & ManpowerGroup Success Stories AI security, ManpowerGroup, Microsoft Security Copilot, St. Luke's University Health Network, cloud security, zero trust https://threatdigest.io/article/metasploit-wrap-up-05222026/ Threat Digest en 2026-05-22T19:02:15.525531+00:00 Metasploit Adds 5 New Exploits, Including Auth Bypass on Cisco SD-WAN Barracuda ESG, Cisco SD-WAN, HUSTOJ, Metasploit, cPanel, cve-2026-20182 https://threatdigest.io/article/netherlands-seizes-800-servers-of-hosting-firm-enabling-cyberattacks/ Threat Digest en 2026-05-22T18:17:50.269412+00:00 Dutch Cops Seize 800 Servers Enabling Cyberattacks FIOD, Netherlands, Stark Industries, WorkTitans B.V., cyberattack hosting, sanctions https://threatdigest.io/article/sentinels-league-2026-live-rankings-for-the-threat-hunting-world-championship-30de93ff5122/ Threat Digest en 2026-05-22T17:05:45.169115+00:00 Threat Hunting Championship: $100K Prize Pool & New 30-Min Format AI in cybersecurity, SentinelOne, capture the flag, cybersecurity competition, sentinels league, threat hunting https://threatdigest.io/article/the-good-the-bad-and-the-ugly-in-cybersecurity-week-21/ Threat Digest en 2026-05-22T16:04:30.787467+00:00 Microsoft Defender Zero-Days: SYSTEM Privileges & DoS Chaos cve-2026-41091, cybercrime, infostealer, macOS malware, microsoft-defender, zero-day https://threatdigest.io/article/first-vpn-cybercrime-service-disrupted-administrator-arrested/ Threat Digest en 2026-05-22T13:36:33.255494+00:00 First VPN Takedown: Cybercrime's Anonymity Shaken anonymity, cybercrime, dark web, first vpn, law enforcement, ransomware https://threatdigest.io/article/how-cisos-should-prep-for-agentic-ready-ai-boms/ Threat Digest en 2026-05-22T13:25:24.264513+00:00 AI BOMs: CISOs Scramble for Visibility AI security, CISOs, agentic AI, ai bom, nist https://threatdigest.io/article/ubiquiti-patches-three-max-severity-unifi-os-vulnerabilities/ Threat Digest en 2026-05-22T12:21:21.343283+00:00 Ubiquiti Patches Max-Severity UniFi OS Flaws command injection, cve, cybersecurity, ubiquiti, unifi os, vulnerabilities https://threatdigest.io/article/cloud-atlas-activity-in-the-second-half-of-2025-and-early-2026-new-tools-and-a-new-payload/ Threat Digest en 2026-05-22T10:57:48.684460+00:00 Cloud Atlas Shifts Tactics [2026] cloud atlas, phishing, powershell, powershower, ssh tunneling, vbcloud https://threatdigest.io/article/paved-with-intent-roadtools-and-nation-state-tactics-in-the-cloud/ Threat Digest en 2026-05-22T10:18:44.855138+00:00 ROADtools: Cloud's New Shadow Play Revealed cloud security, entra id, identity and access management, nation-state threats, roadtools https://threatdigest.io/article/us-and-canada-arrest-and-charge-suspected-kimwolf-botnet-admin/ Threat Digest en 2026-05-22T09:24:13.494547+00:00 KimWolf Botnet Admin Arrested: 2 Million Devices Compromised DDoS attack, IoT security, Kimwolf botnet, cybercrime-as-a-service, law enforcement https://threatdigest.io/article/chinas-webworm-uses-discord-microsoft-graphs-to-hack-eu-govts/ Threat Digest en 2026-05-22T07:50:17.012751+00:00 Webworm's Discord/Graph Tactics: Hacking EU Govts APT, China, cyber espionage, discord, microsoft graph, webworm https://threatdigest.io/article/daily-briefing-may-22-2026/ Threat Digest en 2026-05-22T07:00:00.462039+00:00 Daily Briefing: May 22, 2026 https://threatdigest.io/article/google-api-keys-remain-active-after-deletion/ Threat Digest en 2026-05-22T05:48:51.817983+00:00 Google API Keys Linger Post-Deletion [Security Flaw] API keys, credential management, distributed systems, google cloud, security vulnerability https://threatdigest.io/article/why-security-in-2026-requires-continuous-threat-and-exposure-management-ctem-at-scale/ Threat Digest en 2026-05-22T05:48:45.362946+00:00 CTEM 2026: Is Your Patch Window Still Open? CTEM, Rapid7, attack surface management, cybersecurity strategy, vulnerability management https://threatdigest.io/article/alleged-kimwolf-botmaster-dort-arrested-charged-in-us-and-canada/ Threat Digest en 2026-05-22T05:46:47.630264+00:00 Kimwolf Botnet Master Busted [Criminal Charges Filed] DDoS attacks, Jacob Butler, cybercrime, dort, iot botnet, kimwolf https://threatdigest.io/article/cisco-patches-cvss-100-secure-workload-rest-api-flaw-enabling-data-access/ Threat Digest en 2026-05-22T05:29:27.339209+00:00 Cisco Patches CVSS 10.0 Flaw: Data Access at Risk cisco, cve-2026-20223, cvss 10.0, data access, rest api, secure workload https://threatdigest.io/article/microsoft-defender-vulnerabilities-are-being-exploited-in-the-wild/ Threat Digest en 2026-05-21T19:27:51.822825+00:00 Microsoft Defender Exploited [2026] CISA, KEV, cybersecurity, exploitation, microsoft-defender, vulnerabilities