Weekly Tech Digest | 04 Feb 2026

Weekly Tech Digest – 04-02-2026

The landscape of technology continues to evolve at a rapid pace, with significant developments in AI security, cybersecurity threats, and privacy laws. This week, we delve into the latest advancements and incidents that are shaping the industry, providing insights that are crucial for professionals and enthusiasts alike.

From tools that enhance trust in AI systems to alarming malware campaigns, the information presented here is essential for anyone looking to stay informed about the current state of tech.

AI Security and Trust

This post covers advancements in AI security, focusing on tools developed to detect vulnerabilities and backdoors in AI models, as well as the implications of these developments for trust in AI systems.

• Microsoft Develops Scanner to Detect Backdoors in Open-Weight Large Language Models

  Microsoft on Wednesday said it built a lightweight scanner that it said can detect backdoors in open-weight large language models (LLMs) and improve the overall trust in artificial intelligence (AI) systems.

• Orchid Security Introduces Continuous Identity Observability for Enterprise Applications

  An innovative approach to discovering, analyzing, and governing identity usage beyond traditional IAM controls.

Cybersecurity Threats and Incidents

This post highlights various cybersecurity threats and incidents, including malware campaigns, data breaches, and vulnerabilities being exploited by threat actors.

• DEAD#VAX Malware Campaign Deploys AsyncRAT via IPFS-Hosted VHD Phishing Files

  Threat hunters have disclosed details of a new, stealthy malware campaign dubbed DEAD#VAX that employs a mix of “disciplined tradecraft and clever abuse of legitimate system features” to bypass traditional detection mechanisms.

• China-Linked Amaranth-Dragon Exploits WinRAR Flaw in Espionage Campaigns

  Threat actors affiliated with China have been attributed to a fresh set of cyber espionage campaigns targeting government and law enforcement agencies across Southeast Asia throughout 2025.

• Big Breach or Smooth Sailing? Mexican Gov’t Faces Leak Allegations

  A hacktivist group claims a 2.3-terabyte data breach exposes the information of 36 million Mexicans.

• Google Looker Bugs Allow Cross-Tenant RCE, Data Exfil

  Attackers could even have used one vulnerable Lookout user to gain access to other GCP tenants’ environments.

Privacy and Data Governance

This post discusses recent developments in privacy laws and data governance, including court rulings and corporate responsibilities regarding personal data.

• Tax authorities’ access to individuals’ banking data: the European Court of Human Rights sets privacy limits in the case of Ferrieri and Bonassisa v. Italy

  The 2026 opened with a notable decision by the European Court of Human Rights (ECtHR) in the case of Ferrieri and Bonassisa v. Italy.

• India’s Supreme Court to WhatsApp: ‘You cannot play with the right to privacy’

  India’s Supreme Court on Tuesday delivered an unusually sharp rebuke to Meta, warning that it would not allow the social media giant to “play with the right to privacy” of Indian users.

Incident Response and Security Practices

This post focuses on best practices for incident response and security measures that organizations should adopt to handle cybersecurity incidents effectively.

• The First 90 Seconds: How Early Decisions Shape Incident Response Investigations

  Many incident response failures do not come from a lack of tools, intelligence, or technical skills. They come from what happens immediately after detection, when pressure is high, and information is incomplete.

• Microsoft Warns Python Infostealers Target macOS via Fake Ads and Installers

  Microsoft has warned that information-stealing attacks are “rapidly expanding” beyond Windows to target Apple macOS environments.

We welcome your thoughts on these topics. Feel free to share your insights or questions in the comments below.