Weekly Tech Digest – 22-05-2026

The tech world never sleeps, and this week is no exception. From data breaches to the latest in cybersecurity, there’s plenty to unpack. Here’s a roundup of the most pressing stories that have emerged recently.
[Virtual Event] Anatomy of a Data Breach: What to Do if it Happens to You
This virtual event aims to equip attendees with knowledge on handling data breaches effectively.
-
[Virtual Event] Anatomy of a Data Breach: What to Do if it Happens to You
Details about the event are currently unavailable.
Infosecurity Europe
Infosecurity Europe is set to showcase the latest innovations and discussions in the field of information security.
-
Infosecurity Europe
Details about the event are currently unavailable.
First VPN Dismantled in Global Takedown Over Use by 25 Ransomware Groups
Authorities in Europe and North America have announced the dismantling of a criminal virtual private network (VPN) service used by criminal actors to obscure the origins of ransomware attacks, data theft, scanning, and denial-of-service attacks.
-
First VPN Dismantled in Global Takedown Over Use by 25 Ransomware Groups
Authorities have taken significant action against a VPN service linked to numerous cybercrimes.
Lawmakers Demand Answers as CISA Tries to Contain Data Leak
Lawmakers in both houses of Congress are demanding answers from the U.S. Cybersecurity & Infrastructure Security Agency (CISA) after a contractor published sensitive agency secrets on a public GitHub account.
-
Lawmakers Demand Answers as CISA Tries to Contain Data Leak
Concerns are rising over the implications of this data leak for national security.
Ghostwriter Targets Ukraine Government Entities with Prometheus Phishing Malware
The Belarus-aligned threat actor known as Ghostwriter has been observed using lures related to Prometheus, a Ukrainian online learning platform, to target government organisations in the country.
-
Ghostwriter Targets Ukraine Government Entities with Prometheus Phishing Malware
This attack highlights ongoing cyber threats to Ukrainian governmental structures.
Akamai Joins Growing Chorus of Vendors Betting Big on Secure Enterprise Browsers
Akamai’s recent acquisition of LayerX marks its entry into the secure enterprise browser market, joining a trend among vendors.
-
Akamai Joins Growing Chorus of Vendors Betting Big on Secure Enterprise Browsers
Vendors are increasingly focusing on secure browsing solutions for enterprises.
Verizon DBIR: Healthcare Fends Off Increased Social Engineering Attacks
The 2026 Data Breach Investigations Report (DBIR) reveals that while ransomware and vendor breaches continue, the healthcare sector is adapting to evolving social engineering tactics.
-
Verizon DBIR: Healthcare Fends Off Increased Social Engineering Attacks
The report underscores the healthcare sector’s resilience against growing threats.
Megalodon GitHub Attack Targets 5,561 Repos with Malicious CI/CD Workflows
Cybersecurity researchers have disclosed details of a new automated campaign called Megalodon that has pushed 5,718 malicious commits to 5,561 GitHub repositories within a six-hour window.
-
Megalodon GitHub Attack Targets 5,561 Repos with Malicious CI/CD Workflows
This attack raises alarms about the security of open-source repositories.
Making Vulnerable Drivers Exploitable Without Hardware – The BYOVD Perspective
This article provides a technical analysis of how many Windows kernel mode drivers can be interacted with from user mode without the hardware they were developed for.
-
Making Vulnerable Drivers Exploitable Without Hardware – The BYOVD Perspective
An insightful look into the exploitation of drivers in a virtual environment.
Kimwolf DDoS Botnet Operator Arrested in Canada Over DDoS-for-Hire Attacks
The U.S. Department of Justice (DoJ) announced the arrest of a Canadian man allegedly operating a DDoS botnet known as Kimwolf.
-
Kimwolf DDoS Botnet Operator Arrested in Canada Over DDoS-for-Hire Attacks
This arrest marks a significant step in combatting DDoS-for-hire services.
China’s Webworm Uses Discord, Microsoft Graphs to Hack EU Governments
The advanced persistent threat group has been using SOCKS proxies like SoftEther VPN to facilitate their attacks.
-
China’s Webworm Uses Discord, Microsoft Graphs to Hack EU Governments
This highlights the evolving tactics of cyber adversaries targeting government entities.
CISA Adds Exploited Langflow and Trend Micro Apex One Vulnerabilities to KEV
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added two security flaws impacting Langflow and Trend Micro Apex One to its Known Exploited Vulnerabilities (KEV) catalog.
-
CISA Adds Exploited Langflow and Trend Micro Apex One Vulnerabilities to KEV
Organisations are urged to take immediate action to address these vulnerabilities.
Cisco Patches CVSS 10.0 Secure Workload REST API Flaw Enabling Data Access
Cisco has rolled out updates for a severe security flaw impacting Secure Workload that could allow an unauthenticated, remote attacker to access sensitive data.
-
Cisco Patches CVSS 10.0 Secure Workload REST API Flaw Enabling Data Access
Users are advised to update their systems promptly to mitigate risks.
Google API Keys Remain Active After Deletion
A security researcher discovered that API keys can still be used for up to 23 minutes after deletion, despite claims of immediate removal by the cloud provider.
-
Google API Keys Remain Active After Deletion
This raises concerns about the security of API management practices.
We welcome your thoughts on these developments. Share your comments below.


