The provided report outlines critical cybersecurity threats and regulatory shifts affecting the technology and gambling industries as of May 2026. A primary focus is the looming EU AI Act deadline in August, which remains a strict requirement for high-risk systems after political negotiations for a delay failed. The text details sophisticated attack methods, such as indirect prompt injection against AI models and the exploitation of cloud management consoles by threat actors like Scattered Spider. Additionally, it highlights significant data breaches in the hospitality and healthcare sectors, where extortion groups are increasingly prioritising data theft over traditional encryption. Infrastructure vulnerabilities in remote support tools and digital signage are also identified as urgent patching priorities to prevent ransomware deployment. Ultimately, the source serves as a strategic briefing to help organisations navigate the intersection of evolving digital risks and mandatory legal compliance.