<!DOCTYPE html><html lang="en"><head><meta http-equiv="Content-Type" content="text/html charset=UTF-8"><meta charset="UTF-8"><meta name="viewport" content="width=device-width"><meta name="x-apple-disable-message-reformatting"><title>TLDR InfoSec</title><meta name="color-scheme" content="light dark"><meta name="supported-color-schemes" content="light dark"><style type="text/css">
:root {
color-scheme: light dark; supported-color-schemes: light dark;
}
*,
*:after,
*:before {
-webkit-box-sizing: border-box; -moz-box-sizing: border-box; box-sizing: border-box;
}
* {
-ms-text-size-adjust: 100%; -webkit-text-size-adjust: 100%;
}
html,
body,
.document {
width: 100% !important; height: 100% !important; margin: 0; padding: 0;
}
body {
-webkit-font-smoothing: antialiased; -moz-osx-font-smoothing: grayscale; text-rendering: optimizeLegibility;
}
div[style*="margin: 16px 0"] {
margin: 0 !important;
}
table,
td {
mso-table-lspace: 0pt; mso-table-rspace: 0pt;
}
table {
border-spacing: 0; border-collapse: collapse; table-layout: fixed; margin: 0 auto;
}
img {
-ms-interpolation-mode: bicubic; max-width: 100%; border: 0;
}
*[x-apple-data-detectors] {
color: inherit !important; text-decoration: none !important;
}
.x-gmail-data-detectors,
.x-gmail-data-detectors *,
.aBn {
border-bottom: 0 !important; cursor: default !important;
}
.btn {
-webkit-transition: all 200ms ease; transition: all 200ms ease;
}
.btn:hover {
background-color: #f67575; border-color: #f67575;
}
* {
font-family: Arial, Helvetica, sans-serif; font-size: 18px;
}
@media screen and (max-width: 600px) {
.container {
width: 100%; margin: auto;
}
.stack {
display: block!important; width: 100%!important; max-width: 100%!important;
}
.btn {
display: block; width: 100%; text-align: center;
}
}
body,
p,
td,
tr,
.body,
table,
h1,
h2,
h3,
h4,
h5,
h6,
div,
span {
background-color: #FEFEFE !important; color: #010101 !important;
}
@media (prefers-color-scheme: dark) {
body,
p,
td,
tr,
.body,
table,
h1,
h2,
h3,
h4,
h5,
h6,
div,
span {
background-color: #27292D !important; color: #FEFEFE !important;
}
}
a {
color: inherit !important; text-decoration: underline !important;
}
</style><!--[if mso | ie]>
<style type="text/css">
a {
background-color: #FEFEFE !important; color: #010101 !important;
}
@media (prefers-color-scheme: dark) {
a {
background-color: #27292D !important; color: #FEFEFE !important;
}
}
</style>
<![endif]--></head><body class="">
<div style="display: none; max-height: 0px; overflow: hidden;">SonicWall has revealed that every firewall configuration backup stored in its cloud service was breached, a leap from the earlier estimate of just 5% </div>
<div style="display: none; max-height: 0px; overflow: hidden;">
<br>
</div>
<table align="center" class="document"><tbody><tr><td valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" class="container" width="600"><tbody><tr class="inner-body"><td>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr class="header"><td bgcolor="" class="container">
<table width="100%"><tbody><tr><td class="container">
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" style="margin-top: 0px;" width="100%"><tbody><tr><td style="padding: 0px;">
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div style="text-align: center;">
<span style="margin-right: 0px;"><a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Ftldr.tech%2Finfosec%3Futm_source=tldrinfosec/1/01000199ce380927-e9ff039e-b25c-40f7-bd11-a15cf9d6aa64-000000/viV32kwjg-7kX4LDw8p6wEBq3_VJID_N8FoaSHV8cPs=426" rel="noopener noreferrer" target="_blank"><span>Sign Up</span></a>
|<span style="margin-right: 2px; margin-left: 2px;"><a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fadvertise.tldr.tech%2F%3Futm_source=tldrinfosec%26utm_medium=newsletter%26utm_campaign=advertisetopnav/1/01000199ce380927-e9ff039e-b25c-40f7-bd11-a15cf9d6aa64-000000/a4yzd3QpbtDqatTK0yW1xhHgCMOrCB4pHQdFksSQ4lI=426" rel="noopener noreferrer" target="_blank"><span>Advertise</span></a></span>|<span style="margin-left: 2px;"><a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fa.tldrnewsletter.com%2Fweb-version%3Fep=1%26lc=156924ca-84b7-11f0-8d58-47c5c04ad337%26p=5dc6e948-a5b2-11f0-9d80-37d1bc6ba14c%26pt=campaign%26t=1760101402%26s=745c5b5e8d727a7e2c7538c64e6eb64cd876b315b02571be30207eb0c7f98bb4/1/01000199ce380927-e9ff039e-b25c-40f7-bd11-a15cf9d6aa64-000000/i5B_i5QVumLzwjWsYul-3B5ytHPY0j1Kh5jEUrC0yb0=426"><span>View Online</span></a></span>
<br>
</span></div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="text-align: center;"><span data-darkreader-inline-color="" style="--darkreader-inline-color:#3db3ff; color: rgb(51, 175, 255) !important; font-size: 30px;">T</span><span style="font-size: 30px;"><span data-darkreader-inline-color="" style="color: rgb(232, 192, 96) !important; --darkreader-inline-color:#e8c163; font-size:30px;">L</span><span data-darkreader-inline-color="" style="color: rgb(101, 195, 173) !important; --darkreader-inline-color:#6ec7b2; font-size:30px;">D</span></span><span data-darkreader-inline-color="" style="--darkreader-inline-color:#dd6e6e; color: rgb(220, 107, 107) !important; font-size: 30px;">R</span>
<br>
</td></tr></tbody></table>
<br>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr id="together-with"><td align="center" height="20" style="vertical-align:middle !important;" valign="middle" width="100%"><strong style="vertical-align:middle !important; height: 100%;">Together With </strong>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fsemgrep.dev%2Fresources%2Fsemgrep-vs-snyk%3Futm_source=tldr%26utm_medium=paidsocial/1/01000199ce380927-e9ff039e-b25c-40f7-bd11-a15cf9d6aa64-000000/pz7EEKnB-IzlFOe-aG6LL-vR9dWeQXGUzXZnYQGslyE=426"><img src="https://images.tldr.tech/semgrep.png" valign="middle" style="vertical-align: middle !important; height: 100%;" alt="Semgrep"></a></td></tr></tbody></table>
<table style="table-layout: fixed; width:100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;">
<div style="text-align: center;">
<h1><strong>TLDR Information Security <span id="date">2025-10-10</span></strong></h1>
</div>
</td></tr></tbody></table>
<table style="table-layout: fixed; width:100%;" width="100%"><tbody><tr id="sponsy-copy"><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fsemgrep.dev%2Fresources%2Fsemgrep-vs-snyk%3Futm_source=tldr%26utm_medium=paidsocial/2/01000199ce380927-e9ff039e-b25c-40f7-bd11-a15cf9d6aa64-000000/-1AmTltBCTnuHejY0wMAbfTISXSDuKZzpyLADCyusk8=426">
<span>
<strong>Comparing Semgrep vs. AppSec Alternatives (Sponsor)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Independent reviewers confirm that using Semgrep can <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fsemgrep.dev%2Fresources%2Fsemgrep-vs-snyk%3Futm_source=tldr%26utm_medium=paidsocial/3/01000199ce380927-e9ff039e-b25c-40f7-bd11-a15cf9d6aa64-000000/Ls3xCKlcMaqYBVrxp18sHul3lDYDwsWlpzTBXVhx6w8=426" rel="noopener noreferrer nofollow" target="_blank"><span>cut false positives by over 90%</span></a> compared to popular alternatives:
<p></p>
<ul>
<li>With Semgrep, there's no need to manually filter and prioritize findings because developers only see exploitable, high-priority issues.</li>
<li>Instead of asking devs to trust a black box, Semgrep offers explainable findings with rule-level visibility.</li>
<li>Semgrep then delivers AI-assisted, step-by-step fix guidance to reduce issue resolution time. </li>
</ul>
<p>👉 <strong>The bottom line?</strong> Developers spend <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fsemgrep.dev%2Fresources%2Fsemgrep-vs-snyk%3Futm_source=tldr%26utm_medium=paidsocial/4/01000199ce380927-e9ff039e-b25c-40f7-bd11-a15cf9d6aa64-000000/iC9BjW1s6AzlE5jb818UvZmQD83erLG_6rde9hoYnS4=426" rel="noopener noreferrer nofollow" target="_blank"><span>86% less time reviewing findings</span></a> and sifting through alert noise. That's 15+ hours saved every week.</p>
<p><a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fsemgrep.dev%2Fresources%2Fsemgrep-vs-snyk%3Futm_source=tldr%26utm_medium=paidsocial/5/01000199ce380927-e9ff039e-b25c-40f7-bd11-a15cf9d6aa64-000000/rIG80C7zT69PXk_jp70xUnLvGYSCxYuTEjVWOHtP66Q=426" rel="noopener noreferrer nofollow" target="_blank"><span>See the difference and start shipping faster</span></a>
</p>
</span></span></div>
</td></tr></tbody></table>
</td></tr></tbody></table>
</td></tr></tbody></table>
</td></tr>
<tr bgcolor=""><td class="container">
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td style="padding: 0px;">
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">🔓</span></div></div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;">
<h1><strong>Attacks & Vulnerabilities</strong></h1>
</div>
</div>
</td></tr></tbody></table>
<table style="table-layout: fixed; width: 100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Flinks.tldrnewsletter.com%2F9Vmo9J/1/01000199ce380927-e9ff039e-b25c-40f7-bd11-a15cf9d6aa64-000000/Mq0BM2mXRurK6d7Gs439YteOLiasZfzf9i0653v47aI=426">
<span>
<strong>SonicWall: 100% of Firewall Backups Were Breached (3 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
SonicWall has revealed that every firewall configuration backup stored in its cloud service was breached, a leap from the earlier estimate of just 5%. The files contain encrypted credentials, which increase the risk of targeted attacks, although no such incidents have been reported so far. The company is urging all affected customers to reset credentials and follow guidance.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.bleepingcomputer.com%2Fnews%2Fsecurity%2Fhackers-exploit-auth-bypass-in-service-finder-wordpress-theme%2F%3Futm_source=tldrinfosec/1/01000199ce380927-e9ff039e-b25c-40f7-bd11-a15cf9d6aa64-000000/dcrw-GlB0-fVRsg6KztBMx7Oytu8mEEka4cRxhVEhyY=426">
<span>
<strong>Hackers Exploit Auth Bypass in Service Finder WordPress Theme (3 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
WordPress security firm, Wordfence, is warning users of the Service Finder premium WordPress theme of a critical (CVSS 9.8/10) vulnerability. The vulnerability is an authentication bypass vulnerability that allows attackers to bypass authentication and log in as administrators. Although a patch was released in July, Wordfence is reporting a sharp uptick in exploitation starting in September.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.securityweek.com%2Fgithub-copilot-chat-flaw-leaked-data-from-private-repositories%2F%3Futm_source=tldrinfosec/1/01000199ce380927-e9ff039e-b25c-40f7-bd11-a15cf9d6aa64-000000/pVtKlNqzRfsx7-kzRaeR90BoPJAExHR83VL1o8Z2SWQ=426">
<span>
<strong>GitHub Copilot Chat Flaw Leaked Data From Private Repositories (2 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
A vulnerability in GitHub Copilot Chat allowed attackers to combine Content Security Policy bypass with remote prompt injection to leak sensitive data from private repositories, including AWS keys and zero-day vulnerabilities. The attack exploited hidden HTML comments and GitHub's Camo proxy system by creating a dictionary of pre-generated Camo URLs for each alphabet character, allowing data to be exfiltrated when victims clicked on malicious URLs. GitHub addressed the issue on August 14 by preventing Camo from being used to leak sensitive user information.
</span>
</span>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">🧠</span></div>
</div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;">
<h1><strong>Strategies & Tactics</strong></h1>
</div>
</div>
</td></tr></tbody></table>
<table style="table-layout: fixed; width: 100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fcloud.google.com%2Fblog%2Ftopics%2Fthreat-intelligence%2Func6040-proactive-hardening-recommendations%3Futm_source=tldrinfosec/1/01000199ce380927-e9ff039e-b25c-40f7-bd11-a15cf9d6aa64-000000/LCxI4rXPEngGpk-PoK_AvJvBhgyfb4Us3x1_PlHOG2k=426">
<span>
<strong>Cybercrime Observations from the Frontlines: UNC6040 Proactive Hardening Recommendations (18 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
UNC6040 is a financially motivated threat group that uses voice phishing (vishing) to trick employees into authorizing malicious Salesforce Data Loader applications, enabling large-scale data theft from corporate Salesforce instances. The attackers impersonate IT support personnel to manipulate victims into granting OAuth access to fake connected apps, then systematically exfiltrate sensitive data using legitimate Salesforce tools. Organizations should implement phishing-resistant MFA, restrict API access to approved applications only, enforce network-based login restrictions, and deploy real-time detection rules that monitor for suspicious OAuth authorizations followed by bulk data exports.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fcloud.google.com%2Fblog%2Ftopics%2Fthreat-intelligence%2Foracle-ebusiness-suite-zero-day-exploitation%3Futm_source=tldrinfosec/1/01000199ce380927-e9ff039e-b25c-40f7-bd11-a15cf9d6aa64-000000/HTKv1-B9wFSE06DCqGHfTbiyFiiSv8auH0YwAxI3ruI=426">
<span>
<strong>Oracle E-Business Suite Zero-Day Exploited in Widespread Extortion Campaign (8 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
A threat actor linked to the CL0P group exploited a previously unknown vulnerability in Oracle E-Business Suite, stealing sensitive data from targeted organizations and launching a mass extortion email campaign. Attackers leverage sophisticated multi-stage Java payloads and compromised third-party accounts. Although Oracle issued critical emergency patches to mitigate the risk, this is still being actively exploited.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Faws.amazon.com%2Fblogs%2Fcontainers%2Fimplementing-usage-and-security-reporting-for-amazon-ecr%2F%3Futm_source=tldrinfosec/1/01000199ce380927-e9ff039e-b25c-40f7-bd11-a15cf9d6aa64-000000/D3iiV8ZoQXfEYbXTRIOj2Tt4AlbRyy2x80gcRuhYHfU=426">
<span>
<strong>Implementing Usage and Security Reporting for Amazon ECR (5 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Amazon Elastic Container Registry (ECR) provides both repository and image-level usage and security scan information. This walkthrough provides sample code for generating centralized reports to aggregate this data across both images and repositories. The walkthrough also includes information for setting up Athena tables and queries to analyze the data.
</span>
</span>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">🧑💻</span></div>
</div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;">
<h1><strong>Launches & Tools</strong></h1>
</div>
</div>
</td></tr></tbody></table>
<table style="table-layout: fixed; width: 100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.revealdata.com%2Fcase-study%2Fhow-benlabs-avoids-seven-figure-ediscovery-costs-with-onnas-prophylactic-approach%3Futm_campaign=19424793-25Q3%2520BENlabs%2520Case%2520Study%26utm_source=email%26utm_medium=Email%2520ads%26utm_content=tldr/1/01000199ce380927-e9ff039e-b25c-40f7-bd11-a15cf9d6aa64-000000/hX9x9udk2MacZbhKE3N4bqo-Map1hiO98UKcb4FrLNQ=426">
<span>
<strong>Slack Can Cost Millions in Litigation. Are You Ready? (Sponsor)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Slack data is a ticking time bomb when litigation & investigations arise. Learn how one high-flying company avoids 7-figure legal bills with Onna's automated Slack collection and search tool.<p></p><p><a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.revealdata.com%2Fcase-study%2Fhow-benlabs-avoids-seven-figure-ediscovery-costs-with-onnas-prophylactic-approach%3Futm_campaign=19424793-25Q3%2520BENlabs%2520Case%2520Study%26utm_source=email%26utm_medium=Email%2520ads%26utm_content=tldr/2/01000199ce380927-e9ff039e-b25c-40f7-bd11-a15cf9d6aa64-000000/UN5KvVRkcANjbpLeFb8A2d7sQ32SX2_KEYSGkvFgCOM=426" rel="noopener noreferrer nofollow" target="_blank"><span>Download the full case study</span></a>.
</p>
</span></span></div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.bleepingcomputer.com%2Fnews%2Fmicrosoft%2Fmicrosoft-windows-backup-now-available-for-enterprise-users%2F%3Futm_source=tldrinfosec/1/01000199ce380927-e9ff039e-b25c-40f7-bd11-a15cf9d6aa64-000000/XoZRRBf8KYqqYU1tz_iVm59CpoZLBwlHCPjm3wCO88Q=426">
<span>
<strong>Microsoft: Windows Backup now available for enterprise users (2 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Microsoft's Windows Backup for Organizations is an enterprise-grade backup tool that backs up Windows settings, preferences, and Microsoft Store apps to Exchange Online cloud storage, simplifying Windows 10 to Windows 11 migrations. The feature is opt-in and disabled by default, requiring IT administrator configuration through backup and restore policy settings on Entra-joined devices. Microsoft encrypts the backed-up data but retains access for troubleshooting and legal compliance purposes under strict management oversight.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.intruder.io%2Fresearch%2Fbroken-authorization-apis-autoswagger%3Futm_source=tldrinfosec/1/01000199ce380927-e9ff039e-b25c-40f7-bd11-a15cf9d6aa64-000000/2vaDdEOHAQDqRk_dJYqUkRcPSuEnxWxaDg7-Fu-FY1w=426">
<span>
<strong>Broken Authorization in APIs: Introducing Autoswagger (7 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Intruder's Autoswagger is a free open-source tool that automatically scans APIs for authorization vulnerabilities by parsing OpenAPI/Swagger documentation to identify endpoints lacking proper authentication checks. The tool discovered critical security flaws across major organizations during bug bounty testing, including exposed credentials, customer data, and database access at companies like Microsoft, multinational tech firms, and beverage corporations. Autoswagger highlights how self-documenting APIs increase attack surface by providing attackers with detailed endpoint information, making these simple authorization weaknesses easier to exploit at scale.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fgithub.com%2FCERT-Polska%2FArtemis%3Futm_source=tldrinfosec/1/01000199ce380927-e9ff039e-b25c-40f7-bd11-a15cf9d6aa64-000000/novm9tjw5VExYzBDAAZEsXUlFaRYFig-anHPHIqxgVc=426">
<span>
<strong>Artemis (GitHub Repo)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Artemis is a tool from CERT Polska, Poland's computer emergency response team. It is a modular vulnerability scanner with automatic report-generation capabilities.
</span>
</span>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">🎁</span></div></div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><strong><h1>Miscellaneous</h1></strong></div>
</div>
</td></tr></tbody></table>
<table bgcolor="" style="table-layout: fixed; width: 100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Ffly.io%2Fblog%2Fkurt-got-got%2F%3Futm_source=tldrinfosec/1/01000199ce380927-e9ff039e-b25c-40f7-bd11-a15cf9d6aa64-000000/yKa_HavXxB4UUUcdcIXsy08K2O25JeQpGBZferZbF_s=426">
<span>
<strong>Kurt Got Got (8 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Fly.io's CEO, Kurt Mackey, fell victim to a sophisticated phishing attack that compromised their company's Twitter account. Fly.io's core infrastructure remained safe due to robust, phishing-resistant authentication. The incident exploited generational gaps and social engineering rather than technical flaws.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Ftechcrunch.com%2F2025%2F10%2F09%2Fitalian-businessmans-phone-reportedly-targeted-with-paragon-spyware%2F%3Futm_source=tldrinfosec/1/01000199ce380927-e9ff039e-b25c-40f7-bd11-a15cf9d6aa64-000000/SoS3yj-28KWrsE7qmqjDGpkNPlQBlp18HCn23U-b5Ms=426">
<span>
<strong>Italian businessman's phone reportedly targeted with Paragon spyware (2 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Francesco Gaetano Caltagirone, a well-known Italian businessman, was notified by WhatsApp that his phone was targeted with Paragon spyware, extending the scandal in Italy beyond journalists and activists to business leaders. Caltagirone is the first businessman on the list of victims. The news comes after Paragon cut ties with the Italian government amid growing controversy.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Ftherecord.media%2Fcalifornia-signs-law-opt-out-browsers%3Futm_source=tldrinfosec/1/01000199ce380927-e9ff039e-b25c-40f7-bd11-a15cf9d6aa64-000000/PnahVZCbvqSCZC_cGglQOsGv74mqETEc3dgdFbPpRzg=426">
<span>
<strong>California Enacts Law Giving Consumers Ability to Universally Opt Out of Data Sharing (2 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
California Governor Gavin Newsom signed a law requiring browsers to make it easier for Californians to opt out of allowing third-party data sharing. The California Consumer Privacy Act (CCPA) requires websites to allow Californians to opt out of data sharing, but it also mandates that browsers universally support this. Previously, this had to be done using third-party extensions.
</span>
</span>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">⚡</span></div></div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;">
<h1><strong>Quick Links</strong></h1>
</div>
</div>
</td></tr></tbody></table>
<table bgcolor="" style="table-layout: fixed; width: 100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fzeronetworks.com%2Flanding%2Fcontainment-island%3Futm_medium=email%26utm_source=tldr%26utm_campaign=containisland%26utm_content=friday%26cid=701Uc00000kNANiIAO/1/01000199ce380927-e9ff039e-b25c-40f7-bd11-a15cf9d6aa64-000000/gQ1fmeg8r7EfhjbRnPVqmYk4ApiyNYzYNZULkshvkWU=426">
<span>
<strong>🌴 Zero Trust & Mai Tais? 🍹 Only on Containment Island. (Sponsor)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
The only security webinar serving strategy with a side of sunshine. <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fzeronetworks.com%2Flanding%2Fcontainment-island%3Futm_medium=email%26utm_source=tldr%26utm_campaign=containisland%26utm_content=friday%26cid=701Uc00000kNANiIAO/2/01000199ce380927-e9ff039e-b25c-40f7-bd11-a15cf9d6aa64-000000/IqLl4gB-2H4RhCuq034BxdIGrjeUmsAcCM81yBbq8fc=426" rel="noopener noreferrer nofollow" target="_blank"><span>Join the challenge</span></a>. Learn. Compete. Win a trip to the Bahamas.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.bleepingcomputer.com%2Fnews%2Fmicrosoft%2Fazure-outage-blocks-access-to-microsoft-365-services-admin-portals%2F%3Futm_source=tldrinfosec/1/01000199ce380927-e9ff039e-b25c-40f7-bd11-a15cf9d6aa64-000000/xUQz0Yc32kYw6XUxTclyMeJwKzKd6BZn__UTQ6qjeFE=426">
<span>
<strong>Azure outage blocks access to Microsoft 365 services, admin portals (2 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
A Microsoft Azure Front Door CDN outage caused widespread access issues to Microsoft 365 services and admin portals across Europe, Africa, and the Middle East for several hours.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fhackread.com%2Ffake-tiktok-whatsapp-apps-android-clayrat-spyware%2F%3Futm_source=tldrinfosec/1/01000199ce380927-e9ff039e-b25c-40f7-bd11-a15cf9d6aa64-000000/8qoq6vBvWzJHAxt1GAq_FVWsUwzTY6hyAVWD9X-F1JA=426">
<span>
<strong>Fake TikTok and WhatsApp Apps Infect Android Devices with ClayRat Spyware (2 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
ClayRat is an Android spyware targeting Russian users that spreads through fake popular apps on Telegram, stealing personal data, taking photos, making calls, and self-propagating by sending malicious messages.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fcyberscoop.com%2Fgary-peters-cyber-threat-information-sharing-law-rand-paul%2F%3Futm_source=tldrinfosec/1/01000199ce380927-e9ff039e-b25c-40f7-bd11-a15cf9d6aa64-000000/XXlSte5Yu1mEIieJ0boOY6ArrSVacWFKhHUvfBlWmgA=426">
<span>
<strong>Sen. Peters tries another approach to extend expired cyber threat information-sharing law (4 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Senator Gary Peters introduced the Protecting America from Cyber Threats (PACT) Act to replace the expired Cybersecurity and Information Sharing Act of 2015, renaming it to avoid confusion with the CISA agency amid Republican concerns about social media censorship.
</span>
</span>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td align="left" style="word-break: break-word; vertical-align: top; padding: 5px 10px;">
<p style="padding: 0; margin: 0; font-size: 22px; color: #000000; line-height: 1.6; font-weight: bold;">
Love TLDR? Tell your friends and get rewards!
</p>
</td></tr>
<tr><td class="container" style="padding: 0px 10px 15px;">
<div class="text-block">
Share your referral link below with friends to get free TLDR swag!
</div>
</td></tr>
<tr><td align="left" style="padding: 10px;">
<div class="text-block">
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Frefer.tldr.tech%2F78de0e20%2F8/1/01000199ce380927-e9ff039e-b25c-40f7-bd11-a15cf9d6aa64-000000/ScVr5IjLjzZ0W0QeFAKMkXmaxHfaVi6Xjsxdkecjm0U=426" style="color: #464ba4; text-decoration: underline;">https://refer.tldr.tech/78de0e20/8</a>
</div>
</td></tr>
<tr></tr>
<tr><td align="left" style="padding:5px 10px;">
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fhub.sparklp.co%2Fsub_d62447d5a74a%2F8/1/01000199ce380927-e9ff039e-b25c-40f7-bd11-a15cf9d6aa64-000000/ThgdRnHfkTlK4tSaKHpHP_b5Uh0LergKWgORCCIwVBA=426" style="font-size: 16px; line-height: 1.6; padding: 10px 0; display: inline-block; text-decoration: underline;"><span style="mso-text-raise:13pt; text-decoration: underline;">Track your referrals here.</span></a>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td align="left" style="word-break: break-word; vertical-align: top; padding: 5px 10px;">
<p style="padding: 0; margin: 0; font-size: 22px; color: #000000; line-height: 1.6; font-weight: bold;">
Want to advertise in TLDR? 📰
</p>
<div class="text-block" style="margin-top: 10px;">
If your company is interested in reaching an audience of cybersecurity professionals and decision makers, you may want to <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fadvertise.tldr.tech%2F%3Futm_source=tldrinfosec%26utm_medium=newsletter%26utm_campaign=advertisecta/1/01000199ce380927-e9ff039e-b25c-40f7-bd11-a15cf9d6aa64-000000/NMEaBP-N5fCu69MJ8Vq8mz-Qnwx5gKvMAbNcGeS8nkI=426"><strong><span>advertise with us</span></strong></a>.
</div>
<br>
<!-- New "Want to work at TLDR?" section -->
<p style="padding: 0; margin: 0; font-size: 22px; color: #000000; line-height: 1.6; font-weight: bold;">
Want to work at TLDR? 💼
</p>
<div class="text-block" style="margin-top: 10px;">
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fjobs.ashbyhq.com%2Ftldr.tech/1/01000199ce380927-e9ff039e-b25c-40f7-bd11-a15cf9d6aa64-000000/Wow_MmmtaXQHTdxitJB2C_8iMnL_LXtlhHtRHUJCuyE=426" rel="noopener noreferrer" style="color: #0000EE; text-decoration: underline;" target="_blank"><strong>Apply here</strong></a> or send a friend's resume to <a href="mailto:jobs@tldr.tech" style="color: #0000EE; text-decoration: underline;">jobs@tldr.tech</a> and get $1k if we hire them!
</div>
<br>
<div class="text-block">
If you have any comments or feedback, just respond to this email!
<br>
<br> Thanks for reading,
<br>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.linkedin.com%2Fin%2Fprasannagautam%2F/1/01000199ce380927-e9ff039e-b25c-40f7-bd11-a15cf9d6aa64-000000/2ee0-errLaL8Gb71rrFCIUWqED4qphGJUM8yoJVW2Kc=426"><span>Prasanna Gautam</span></a>, <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.linkedin.com%2Fin%2Fericfernandezdelcampo%2F/1/01000199ce380927-e9ff039e-b25c-40f7-bd11-a15cf9d6aa64-000000/OquOay8lPiQp_QeMXXCnd55E0oe1U__LFwY6eZ8EHwY=426"><span>Eric Fernandez</span></a> & <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.linkedin.com%2Fin%2Fsammy-tbeile%2F/1/01000199ce380927-e9ff039e-b25c-40f7-bd11-a15cf9d6aa64-000000/oklaKt-iaGZYqvWylOhrNsSwilNqhAhlpeVE7vW9FVc=426"><span>Sammy Tbeile</span></a>
<br>
<br>
</div>
<br>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block" id="testing-id">
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Ftldr.tech%2Finfosec%2Fmanage%3Femail=silk.theater.56%2540fwdnl.com/1/01000199ce380927-e9ff039e-b25c-40f7-bd11-a15cf9d6aa64-000000/v59FzyGZCZIRGG3bot2I4-MxL9hDJgvkv_gpsVnEI_c=426">Manage your subscriptions</a> to our other newsletters on tech, startups, and programming. Or if TLDR Information Security isn't for you, please <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fa.tldrnewsletter.com%2Funsubscribe%3Fep=1%26l=8d9cea11-3e94-11ed-9a32-0241b9615763%26lc=156924ca-84b7-11f0-8d58-47c5c04ad337%26p=5dc6e948-a5b2-11f0-9d80-37d1bc6ba14c%26pt=campaign%26pv=4%26spa=1760101256%26t=1760101402%26s=78871d1f3b1db9cf734dd9df28e95fbd12285d9766284833b4bc03ea36de0fbb/1/01000199ce380927-e9ff039e-b25c-40f7-bd11-a15cf9d6aa64-000000/Fxob9_ozgYJd1itaOpUZkdj3g1FciLQTBkNpmA2-0EI=426">unsubscribe</a>.
<br>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
</td></tr></tbody></table>
</td></tr></tbody></table>
</td></tr></tbody></table>
<img alt="" src="http://tracking.tldrnewsletter.com/CI0/01000199ce380927-e9ff039e-b25c-40f7-bd11-a15cf9d6aa64-000000/xve6J0yW8ahAV5HuNIOUIRKxGGKji9OE_5Sx2yyM1CY=426" style="display: none; width: 1px; height: 1px;">
</body></html>