<!DOCTYPE html><html lang="en"><head><meta http-equiv="Content-Type" content="text/html charset=UTF-8"><meta charset="UTF-8"><meta name="viewport" content="width=device-width"><meta name="x-apple-disable-message-reformatting"><title>TLDR InfoSec</title><meta name="color-scheme" content="light dark"><meta name="supported-color-schemes" content="light dark"><style type="text/css">
:root {
color-scheme: light dark; supported-color-schemes: light dark;
}
*,
*:after,
*:before {
-webkit-box-sizing: border-box; -moz-box-sizing: border-box; box-sizing: border-box;
}
* {
-ms-text-size-adjust: 100%; -webkit-text-size-adjust: 100%;
}
html,
body,
.document {
width: 100% !important; height: 100% !important; margin: 0; padding: 0;
}
body {
-webkit-font-smoothing: antialiased; -moz-osx-font-smoothing: grayscale; text-rendering: optimizeLegibility;
}
div[style*="margin: 16px 0"] {
margin: 0 !important;
}
table,
td {
mso-table-lspace: 0pt; mso-table-rspace: 0pt;
}
table {
border-spacing: 0; border-collapse: collapse; table-layout: fixed; margin: 0 auto;
}
img {
-ms-interpolation-mode: bicubic; max-width: 100%; border: 0;
}
*[x-apple-data-detectors] {
color: inherit !important; text-decoration: none !important;
}
.x-gmail-data-detectors,
.x-gmail-data-detectors *,
.aBn {
border-bottom: 0 !important; cursor: default !important;
}
.btn {
-webkit-transition: all 200ms ease; transition: all 200ms ease;
}
.btn:hover {
background-color: #f67575; border-color: #f67575;
}
* {
font-family: Arial, Helvetica, sans-serif; font-size: 18px;
}
@media screen and (max-width: 600px) {
.container {
width: 100%; margin: auto;
}
.stack {
display: block!important; width: 100%!important; max-width: 100%!important;
}
.btn {
display: block; width: 100%; text-align: center;
}
}
body,
p,
td,
tr,
.body,
table,
h1,
h2,
h3,
h4,
h5,
h6,
div,
span {
background-color: #FEFEFE !important; color: #010101 !important;
}
@media (prefers-color-scheme: dark) {
body,
p,
td,
tr,
.body,
table,
h1,
h2,
h3,
h4,
h5,
h6,
div,
span {
background-color: #27292D !important; color: #FEFEFE !important;
}
}
a {
color: inherit !important; text-decoration: underline !important;
}
</style><!--[if mso | ie]>
<style type="text/css">
a {
background-color: #FEFEFE !important; color: #010101 !important;
}
@media (prefers-color-scheme: dark) {
a {
background-color: #27292D !important; color: #FEFEFE !important;
}
}
</style>
<![endif]--></head><body class="">
<div style="display: none; max-height: 0px; overflow: hidden;">Aikido Security found that the npm package codexui-android, a remote web UI for OpenAI Codex pulling roughly 27,000 weekly downloads โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ </div>
<div style="display: none; max-height: 0px; overflow: hidden;">
<br>
</div>
<table align="center" class="document"><tbody><tr><td valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" class="container" width="600"><tbody><tr class="inner-body"><td>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr class="header"><td bgcolor="" class="container">
<table width="100%"><tbody><tr><td class="container">
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" style="margin-top: 0px;" width="100%"><tbody><tr><td style="padding: 0px;">
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div style="text-align: center;">
<span style="margin-right: 0px;"><a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Ftldr.tech%2Finfosec%3Futm_source=tldrinfosec/1/0100019e8874548a-61a5d93e-2496-4ba0-b892-529fd4509547-000000/NBDmRy2I98J7tz4u0vyhcv6ylOPOfx2-WIPOjuNhMNI=452" rel="noopener noreferrer" target="_blank"><span>Sign Up</span></a>
|<span style="margin-right: 2px; margin-left: 2px;"><a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fadvertise.tldr.tech%2F%3Futm_source=tldrinfosec%26utm_medium=newsletter%26utm_campaign=advertisetopnav/1/0100019e8874548a-61a5d93e-2496-4ba0-b892-529fd4509547-000000/OV4l2zeX9x5cRW86nSnpnMiHnMjhal9dnNs0jVjN7FA=452" rel="noopener noreferrer" target="_blank"><span>Advertise</span></a></span>|<span style="margin-left: 2px;"><a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fa.tldrnewsletter.com%2Fweb-version%3Fep=1%26lc=156924ca-84b7-11f0-8d58-47c5c04ad337%26p=f5eaa2c8-5e49-11f1-a40d-01a0ca6036a9%26pt=campaign%26t=1780405785%26s=3e33c9bffc111bfad597adac37b8005053a6df9686ed2676cd153c4bd3a4fa0a/1/0100019e8874548a-61a5d93e-2496-4ba0-b892-529fd4509547-000000/onU-1yzHP771ploauZAepDLKPQ7zeoUA60QQDbZ8oOs=452"><span>View Online</span></a></span>
<br>
</span></div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="text-align: center;"><span data-darkreader-inline-color="" style="--darkreader-inline-color:#3db3ff; color: rgb(51, 175, 255) !important; font-size: 30px;">T</span><span style="font-size: 30px;"><span data-darkreader-inline-color="" style="color: rgb(232, 192, 96) !important; --darkreader-inline-color:#e8c163; font-size:30px;">L</span><span data-darkreader-inline-color="" style="color: rgb(101, 195, 173) !important; --darkreader-inline-color:#6ec7b2; font-size:30px;">D</span></span><span data-darkreader-inline-color="" style="--darkreader-inline-color:#dd6e6e; color: rgb(220, 107, 107) !important; font-size: 30px;">R</span>
<br>
</td></tr></tbody></table>
<br>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr id="together-with"><td align="center" height="20" style="vertical-align:middle !important;" valign="middle" width="100%"><strong style="vertical-align:middle !important; height: 100%;">Together With </strong>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.nudgesecurity.com%2Fcontent%2Fpractitioners-guide-to-agentic-ai-security%3Futm_medium=sponsored%26utm_source=tldr2%26utm_content=newsletter%26utm_campaign=ai_security%26utm_term=agentic-ai-security-pdf_header/1/0100019e8874548a-61a5d93e-2496-4ba0-b892-529fd4509547-000000/Lz-Aek_MC8b9i2pTq-pQ2LauNoanQWnc26F904wkxxA=452"><img src="https://images.tldr.tech/nudge2.png" valign="middle" style="vertical-align: middle !important; height: 100%;" alt="Nudge"></a></td></tr></tbody></table>
<table style="table-layout: fixed; width:100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;">
<div style="text-align: center;">
<h1><strong>TLDR Information Security <span id="date">2026-06-02</span></strong></h1>
</div>
</td></tr></tbody></table>
<table style="table-layout: fixed; width:100%;" width="100%"><tbody><tr id="sponsy-copy"><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.nudgesecurity.com%2Fcontent%2Fpractitioners-guide-to-agentic-ai-security%3Futm_medium=sponsored%26utm_source=tldr2%26utm_content=newsletter%26utm_campaign=ai_security%26utm_term=agentic-ai-security-pdf_header/2/0100019e8874548a-61a5d93e-2496-4ba0-b892-529fd4509547-000000/rvq1u_kAxPzErJP0StTF5xlg7arxK6Jkv4PZkDD4n0A=452">
<span>
<strong>[Free Guide] Agentic AI is already in your org. Here's how to find and secure it. (Sponsor)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
๐จ Your workforce is saving time by connecting AI agents to email, file shares, and business workflowsโฆ<p></p><p><strong>And most of the time, nobody in IT or security approved it.</strong></p><p>This <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.nudgesecurity.com%2Fcontent%2Fpractitioners-guide-to-agentic-ai-security%3Futm_medium=sponsored%26utm_source=tldr2%26utm_content=newsletter%26utm_campaign=ai_security%26utm_term=agentic-ai-security-pdf_body/1/0100019e8874548a-61a5d93e-2496-4ba0-b892-529fd4509547-000000/3uD3y4cX7mhkQpxQOhb6rsMKzqDbAiVEtG1pZFvzgWE=452" rel="noopener noreferrer nofollow" target="_blank"><span>free guide from Nudge Security</span></a> breaks down what that means for your risk posture and what you can do about it right now - in four practical steps.</p>
<p>Who's the guide for? > Security, IT, and risk leaders who need to get ahead of agentic AI before it becomes a liability.</p>
<p>Get the <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.nudgesecurity.com%2Fcontent%2Fpractitioners-guide-to-agentic-ai-security%3Futm_medium=sponsored%26utm_source=tldr2%26utm_content=newsletter%26utm_campaign=ai_security%26utm_term=agentic-ai-security-pdf_body/2/0100019e8874548a-61a5d93e-2496-4ba0-b892-529fd4509547-000000/MO8u97H1gebcb9pPCnwwMRlyXwKOtDOECbaQYucg70w=452" rel="noopener noreferrer nofollow" target="_blank"><span><strong>Practitioner's Guide to Agentic AI Security</strong></span></a> today.</p>
<p><a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.nudgesecurity.com%2Fcontent%2Fpractitioners-guide-to-agentic-ai-security%3Futm_medium=sponsored%26utm_source=tldr2%26utm_content=newsletter%26utm_campaign=ai_security%26utm_term=agentic-ai-security-pdf_cta/1/0100019e8874548a-61a5d93e-2496-4ba0-b892-529fd4509547-000000/FoP3fGqtqbsBRQVuiYVIN3aDwGJJdB0xnY7PBcptENU=452" rel="noopener noreferrer nofollow" target="_blank"><span>Download Now <strong>โ</strong></span></a>
</p>
</span></span></div>
</td></tr></tbody></table>
</td></tr></tbody></table>
</td></tr></tbody></table>
</td></tr>
<tr bgcolor=""><td class="container">
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td style="padding: 0px;">
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">๐</span></div></div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;">
<h1><strong>Attacks & Vulnerabilities</strong></h1>
</div>
</div>
</td></tr></tbody></table>
<table style="table-layout: fixed; width: 100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fhackread.com%2Fcodex-ui-tool-secretly-stole-openai-refresh-tokens%2F%3Futm_source=tldrinfosec/1/0100019e8874548a-61a5d93e-2496-4ba0-b892-529fd4509547-000000/ZD8Fac1Q4dPNYHDh5EdhuoxNNSvNOjlJ1Y7txugiTmc=452">
<span>
<strong>27,000-Download Codex UI Tool Secretly Stole OpenAI Refresh Tokens (3 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Aikido Security's Charlie Eriksen found that the npm package codexui-android, a remote web UI for OpenAI Codex pulling roughly 27,000 weekly downloads, has been exfiltrating access_token, id_token, account ID, and the non-expiring refresh_token from auth.json since version 0.1.82, with the malicious chunk-PUR7OUAG.js loader present only in the published npm tarball and absent from the public GitHub repository. Stolen credentials are sent to sentry.anyclawstore to masquerade as Sentry telemetry, and the same operator (BrutalStrike, also publisher of a legitimate 5-million-download mobile game) ships Android apps codex.app and "OpenClaw Codex Claude AI Agent" that pass Play Store review as clean 26 MB APKs before extracting a Termux-derived Linux userland and pulling codexui-android@latest via pnpm under PRoot. Defenders should revoke and rotate OpenAI Codex tokens for any host that installed the package, block sentry.anyclawstore, and treat npm-only code paths absent from upstream repositories as a supply-chain red flag, since the package and apps remain live.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.theregister.com%2Fsecurity%2F2026%2F06%2F01%2Fpassword-manager-dashlane-suspends-customer-accounts-amid-brute-force-attacks%2F5248991%3Futm_source=tldrinfosec/1/0100019e8874548a-61a5d93e-2496-4ba0-b892-529fd4509547-000000/Sa7Qrj_iGySNN0mEUlQ8Ie0p7c2LirhHfvok3-Ve3OY=452">
<span>
<strong>Password manager Dashlane suspends customer accounts amid brute-force attacks (2 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Dashlane temporarily suspended some accounts after automated protections detected repeated failed attempts to register new devices and enter tokens, starting Sunday afternoon. Accounts and 2FA access were briefly disrupted, then restored, while the status page moved from resolved to monitoring. Users reported login attempts from countries like Korea and Russia and confusion over suspension emails that looked legitimate but used an old logo.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Ftechcrunch.com%2F2026%2F06%2F01%2Fgrand-theft-auto-v-cheat-service-gets-hacked-exposing-thousands-of-gamers%2F%3Futm_source=tldrinfosec/1/0100019e8874548a-61a5d93e-2496-4ba0-b892-529fd4509547-000000/CPBmWJ1c0p1Ak613uivzjQrxzZXdvOpl9GODJ0SzDpo=452">
<span>
<strong>Grand Theft Auto V cheat service gets hacked, exposing thousands of gamers (2 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Atlas Menu, a popular Grand Theft Auto V cheat provider, was breached, exposing nearly 64,000 users' email addresses, usernames, hashed passwords, IP addresses, and support tickets. The attacker posted the data on GitHub, apparently targeting a scammer. Atlas Menu's site is now down. Accounts that reused passwords on other services face the highest risk and should reset credentials and check for suspicious logins.
</span>
</span>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">๐ง </span></div>
</div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;">
<h1><strong>Strategies & Tactics</strong></h1>
</div>
</div>
</td></tr></tbody></table>
<table style="table-layout: fixed; width: 100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.cyberkendra.com%2F2026%2F05%2Fa-forged-kernel-key-and-rootful-helper.html%3Futm_source=tldrinfosec/1/0100019e8874548a-61a5d93e-2496-4ba0-b892-529fd4509547-000000/GVvAWKHQZJ9kfwJ_BmcJ_yGchE6Se-4eaLADI8Z_SSw=452">
<span>
<strong>A Forged Kernel Key and a Rootful Helper: Inside the CIFSwitch Linux Privilege Escalation (4 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Researcher Asim Manizada revealed CIFSwitch, a longstanding logic flaw in the Linux kernel CIFS client and cifs-utils dating back to 2007. This vulnerability allows unprivileged processes to exploit request_key calls, enabling attackers to elevate privileges to root by manipulating mount namespace and NSS configurations. Until kernel patches are adopted, recommended mitigations include blocking the cifs module, removing cifs-utils when not needed, and overriding specific request-key rules.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fflatt.tech%2Fresearch%2Fposts%2Fpoisoning-claude-code-one-github-issue-to-break-the-supply-chain%2F%3Futm_source=tldrinfosec/1/0100019e8874548a-61a5d93e-2496-4ba0-b892-529fd4509547-000000/lC_Uz8FYuQlN71VLzP6u-MHaIpcaxSTgYASFyV4xA0I=452">
<span>
<strong>Poisoning Claude Code: One GitHub Issue to Break the Supply Chain (15 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Security researcher RyotaK analyzed Claude Code's GitHub Actions workflow and showed how a GitHub App permission bypass and prompt injection could allow an attacker to run workflows on public repos, read /proc/self/environ, and exfiltrate OIDC credentials to mint a privileged Claude GitHub App token with write access. Misconfigurations like allowed_non_write_users: "*" plus issues: write-enabled chaining two workflows to escalate from untrusted issue creation to full repository takeover, including potential compromise of Anthropic's own claude-code-action source. Anthropic patched the GitHub App trigger, tightened gh usage, disabled workflow summaries by default, and now ignores edited issues after the trigger. Teams should audit permissions and avoid exposing secrets when workflows can process untrusted input.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Faws.amazon.com%2Fblogs%2Fsecurity%2Fwell-architected-best-practices-for-software-supply-chain-security%2F%3Futm_source=tldrinfosec/1/0100019e8874548a-61a5d93e-2496-4ba0-b892-529fd4509547-000000/Hx8L84bRiObwngyHGaA9eKPvIfmgPK0f31yZAeZry6Q=452">
<span>
<strong>Well-Architected Best Practices for Software Supply Chain Security (7 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
In the wake of the recent supply chain attacks, AWS published a blog post on using defense in depth approaches to combating them. AWS suggests using short term credentials and MFA to reduce the impact of stolen credentials as well as centralizing dependencies in an artifact repository and using artifact signing. Teams should also deploy dependency scanning across the software development life cycle (SDLC) and configure appropriate monitoring and alerting.
</span>
</span>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">๐งโ๐ป</span></div>
</div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;">
<h1><strong>Launches & Tools</strong></h1>
</div>
</div>
</td></tr></tbody></table>
<table style="table-layout: fixed; width: 100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fgithub.com%2Ffalcosecurity%2Fprempti%3Futm_source=tldrinfosec/1/0100019e8874548a-61a5d93e-2496-4ba0-b892-529fd4509547-000000/OjIDI74mNIA9SgJalFECgzcdLLPA4vXP265mmEztfYg=452">
<span>
<strong>Prempti (GitHub Repo)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Prempti is an Apache 2.0 Falco Ecosystem sandbox project that intercepts AI coding agent tool calls (shell commands, file writes, reads, and MCP calls) and evaluates them against Falco YAML rules to produce allow, deny, or ask verdicts, with denials returned as LLM-friendly feedback the agent can adapt to. It ships a default ruleset covering working-directory boundaries, credential paths (.env, ~/.ssh/, and ~/.aws/), sandbox-disable attempts in Claude Code, Codex, and Gemini CLI, MCP, and slash-command poisoning, and persistence vectors, with installers for Linux, macOS, and Windows on x86_64 and aarch64, plus an experimental Codex interceptor. Operators should note that it is a cooperative hook-level policy layer rather than OS-level containment, so it inspects declared commands but not the runtime behavior of compiled binaries the agent executes.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fsecuritylabs.datadoghq.com%2Farticles%2Fintroducing-pathfinding-labs%2F%3Futm_source=tldrinfosec/1/0100019e8874548a-61a5d93e-2496-4ba0-b892-529fd4509547-000000/1iPzrSHmCI8lPZrqET5GON8La4wYhuHtkHhMNSUQFcY=452">
<span>
<strong>Pathfinding Labs: Deploy, test, and learn from 100+ intentionally vulnerable AWS environments (4 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Pathfinding Labs is an open-source collection of more than 100 intentionally vulnerable AWS environments covering self-escalation, one-hop, multi-hop, cross-account, misconfiguration, and toxic combination scenarios, deployable into a sandbox account via the plabs Go CLI. Each lab pairs a Terraform module with a demo_attack.sh script that validates the documented privilege escalation path end-to-end, letting blue teams measure CSPM coverage gaps and red teams test exploitation tooling against known graph-based attack paths. Deploy only in isolated sandbox accounts since the labs create administrative users, overly permissive roles, public S3 buckets, and internet-facing Lambda functions, and run plabs destroy to tear down every resource when finished.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fgithub.com%2FluckyPipewrench%2Fpipelock%3Futm_source=tldrinfosec/1/0100019e8874548a-61a5d93e-2496-4ba0-b892-529fd4509547-000000/NbOuPO_Z9EwIAlbPkHujUOYVaCl3GFIJWV2mluwf20I=452">
<span>
<strong>Pipelock (GitHub Repo)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Open-source AI agent firewall for Verifiable Egress Control (VEC). Pipelock sits between AI agents and the network, scanning mediated HTTP, MCP, A2A, and WebSocket traffic for exfiltration and prompt-injection paths, and emitting mediator-signed action receipts that third parties can verify outside the agent runtime.
</span>
</span>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">๐</span></div></div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><strong><h1>Miscellaneous</h1></strong></div>
</div>
</td></tr></tbody></table>
<table bgcolor="" style="table-layout: fixed; width: 100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fafine.com%2Fblogs%2Fstealing-passwords-via-html-injection-under-a-strict-csp%3Futm_source=tldrinfosec/1/0100019e8874548a-61a5d93e-2496-4ba0-b892-529fd4509547-000000/JddlXR1EzOJJy7ZmI8bKSXhrvFqnmZB1LUAWc1B7c1o=452">
<span>
<strong>Stealing Passwords via HTML Injection Under a Strict CSP (8 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Chrome, Safari, and Firefox can leak full URLs through the Referer header when HTML injection sets a permissive referrer policy and triggers redirects, even under strict CSP. An attacker could inject a fake login form, let the password manager autofill credentials, submit them via GET, then abuse meta referrer and refresh tags to send the URL with email and password to an attacker-controlled site. Chrome autofills most aggressively, but all three browsers enable this one-click password-theft path.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.theregister.com%2Fresearch%2F2026%2F05%2F29%2Fchatgpt-prompt-injection-turns-web-pages-into-phishing-lures%2F5248137%3Futm_source=tldrinfosec/1/0100019e8874548a-61a5d93e-2496-4ba0-b892-529fd4509547-000000/tZWpXv0OOnbe0z0qfTvI54srpZ2atkUL5_UG8HmbgIA=452">
<span>
<strong>ChatGPT Blindly Trusts Browser Content Turning the Page Into a Payload (3 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
A security researcher from Permiso disclosed a new vulnerability in ChatGPT where ChatGPT will follow instructions that are rendered in Markdown as if they are its own instructions leading to prompt injection. The researcher demonstrated that an embedded prompt in a GitHub repo could be used to have ChatGPT render convincing looking links or QR codes to attacker controlled sites. The researcher reported the bug to OpenAI on April 29 and it was closed as not reproducible and then a duplicate when the researchers added more details and resubmitted.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fcyberscoop.com%2Fnist-nvd-audit-mismanagement-duplication%2F%3Futm_source=tldrinfosec/1/0100019e8874548a-61a5d93e-2496-4ba0-b892-529fd4509547-000000/5ngQBg8jxl7-S4o-iK60Kd5INcJErnn13ILRg6fjmrg=452">
<span>
<strong>Federal Audit Reveals NIST's NVD is Plagued by Poor Planning and Duplication (4 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
A new report from a Department of Commerce inspector general identified severe mismanagement in NIST's handling of the NVD that led to wasted funds and a growing backlog. The inspector found that NIST analysts spend about 80% of their time calculating severity scores and identifying affected products even though vulnerabilities often include this information when sent to NIST. The inspector also found a significant amount of duplicated effort and expense between CISA and NIST with little communication between the two federal agencies.
</span>
</span>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">โก</span></div></div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;">
<h1><strong>Quick Links</strong></h1>
</div>
</div>
</td></tr></tbody></table>
<table bgcolor="" style="table-layout: fixed; width: 100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Flinks.tldrnewsletter.com%2FCEqBvH/1/0100019e8874548a-61a5d93e-2496-4ba0-b892-529fd4509547-000000/rYZQfiQ6Y8KJc035IqMlTaFNdjIgqRqXwM2Z6kATzBM=452">
<span>
<strong>People are using prompt injection to trick Meta's AI into handing over Instagram accounts (2 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Attackers spoofed location with a VPN matching the target and asked Meta's Instagram AI support assistant to "link my new email address" for a victim's @username, prompting the assistant to send a password reset link to the attacker-supplied address and enabling takeover of accounts.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Flinks.tldrnewsletter.com%2FKSiv7G/1/0100019e8874548a-61a5d93e-2496-4ba0-b892-529fd4509547-000000/D_LBzCjCAcTZE_WDsIxsFIrX0yvCVS8zdOnICJiIp1Y=452">
<span>
<strong>WordPress malware campaign hides payloads in Steam profiles (2 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
GoDaddy found roughly 1,980 WordPress sites infected with malware that abuses Steam Community profile comments as dead-drop C2, encoding payloads in six invisible Unicode characters that decode to a hello-mywordl[.]info URL serving JavaScript disguised as legitimate libraries before dropping a PHP backdoor triggered by the tEcaKKXEsb authentication cookie.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.csoonline.com%2Farticle%2F4179473%2Foracles-first-monthly-patch-release-fixes-35-flaws-including-11-rated-critical.html%3Futm_source=tldrinfosec/1/0100019e8874548a-61a5d93e-2496-4ba0-b892-529fd4509547-000000/Vg8vacGRc6CiLIWdPnrtzF3JVmVNae-AKA1MoY_Zn3I=452">
<span>
<strong>Oracle's first monthly patch release fixes 35 flaws, including 11 rated 'critical' (2 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Oracle's inaugural monthly Critical Security Patch Update fixes 35 flaws including the CVSS 10.0 CVE-2026-46840 unauthenticated gateway takeover in Oracle REST Data Services.
</span>
</span>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td align="left" style="word-break: break-word; vertical-align: top; padding: 5px 10px;">
<p style="padding: 0; margin: 0; font-size: 22px; color: #000000; line-height: 1.6; font-weight: bold;">
Love TLDR? Tell your friends and get rewards!
</p>
</td></tr>
<tr><td class="container" style="padding: 0px 10px 15px;">
<div class="text-block">
Share your referral link below with friends to get free TLDR swag!
</div>
</td></tr>
<tr><td align="left" style="padding: 10px;">
<div class="text-block">
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Frefer.tldr.tech%2F78de0e20%2F8/1/0100019e8874548a-61a5d93e-2496-4ba0-b892-529fd4509547-000000/OZuP3rXTF1wpTGnhmj26bMGECuSzKOD0AusDwkuzWhU=452" style="color: #464ba4; text-decoration: underline;">https://refer.tldr.tech/78de0e20/8</a>
</div>
</td></tr>
<tr></tr>
<tr><td align="left" style="padding:5px 10px;">
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fhub.sparklp.co%2Fsub_d62447d5a74a%2F8/1/0100019e8874548a-61a5d93e-2496-4ba0-b892-529fd4509547-000000/b1SMu16vHNZQXIPVoLLsZ6yrx6D6HeIlfIzby5JTQZs=452" style="font-size: 16px; line-height: 1.6; padding: 10px 0; display: inline-block; text-decoration: underline;"><span style="mso-text-raise:13pt; text-decoration: underline;">Track your referrals here.</span></a>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td align="left" style="word-break: break-word; vertical-align: top; padding: 5px 10px;">
<p style="padding: 0; margin: 0; font-size: 22px; color: #000000; line-height: 1.6; font-weight: bold;">
Want to advertise in TLDR? ๐ฐ
</p>
<div class="text-block" style="margin-top: 10px;">
If your company is interested in reaching an audience of cybersecurity professionals and decision makers, you may want to <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fadvertise.tldr.tech%2F%3Futm_source=tldrinfosec%26utm_medium=newsletter%26utm_campaign=advertisecta/1/0100019e8874548a-61a5d93e-2496-4ba0-b892-529fd4509547-000000/ULIhkTcwTo4Ok86g_RjG-F0npU6FUg_u2YE-10LMdpw=452"><strong><span>advertise with us</span></strong></a>.
</div>
<br>
<!-- New "Want to work at TLDR?" section -->
<p style="padding: 0; margin: 0; font-size: 22px; color: #000000; line-height: 1.6; font-weight: bold;">
Want to work at TLDR? ๐ผ
</p>
<div class="text-block" style="margin-top: 10px;">
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fjobs.ashbyhq.com%2Ftldr.tech/1/0100019e8874548a-61a5d93e-2496-4ba0-b892-529fd4509547-000000/STyx4_0qktQqvKSvC4KMInmJkP52O41ifiRZ7qtm1N4=452" rel="noopener noreferrer" style="color: #0000EE; text-decoration: underline;" target="_blank"><strong>Apply here</strong></a>,
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fjobs.ashbyhq.com%2Ftldr.tech%2Fc227b917-a6a4-40ce-8950-d3e165357871/1/0100019e8874548a-61a5d93e-2496-4ba0-b892-529fd4509547-000000/78K9wktIit_EzUwZc3Yfr-9cGNJQC_L5P67cMjzK6Aw=452" rel="noopener noreferrer" style="color: #0000EE; text-decoration: underline;" target="_blank"><strong>create your own role</strong></a> or send a friend's resume to <a href="mailto:jobs@tldr.tech" style="color: #0000EE; text-decoration: underline;">jobs@tldr.tech</a> and get $1k if we hire them! TLDR is one of <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.linkedin.com%2Ffeed%2Fupdate%2Furn:li:activity:7401699691039830016%2F/1/0100019e8874548a-61a5d93e-2496-4ba0-b892-529fd4509547-000000/85EA29xs0NjYHbfhcuq4FX6-bgp8AbI0rHHtqx-olgE=452" rel="noopener noreferrer" style="color: #0000EE; text-decoration: underline;" target="_blank"><strong>Inc.'s Best Bootstrapped businesses</strong></a> of 2025.
</div>
<br>
<div class="text-block">
If you have any comments or feedback, just respond to this email!
<br>
<br> Thanks for reading,
<br>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.linkedin.com%2Fin%2Fprasannagautam%2F/1/0100019e8874548a-61a5d93e-2496-4ba0-b892-529fd4509547-000000/Ih5OL0c0pF_DPFB-ZvPSkwuojwJRC24jcIN2cM1PX84=452"><span>Prasanna Gautam</span></a>, <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.linkedin.com%2Fin%2Fericfernandezdelcampo%2F/1/0100019e8874548a-61a5d93e-2496-4ba0-b892-529fd4509547-000000/ZcSEqxOQliE9LprqHCbLYBLO5RnYllxkNpz9-gwYtss=452"><span>Eric Fernandez</span></a> & <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.linkedin.com%2Fin%2Fsammy-tbeile%2F/1/0100019e8874548a-61a5d93e-2496-4ba0-b892-529fd4509547-000000/aJayr0T3qX06soeJUdB6hMC7-gIeRKknszfF6HRoAqk=452"><span>Sammy Tbeile</span></a>
<br>
<br>
</div>
<br>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block" id="testing-id">
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Ftldr.tech%2Finfosec%2Fmanage%3Femail=silk.theater.56%2540fwdnl.com/1/0100019e8874548a-61a5d93e-2496-4ba0-b892-529fd4509547-000000/NOcXaP_jY7YAkyDxsHEsQN6BV9cQV12K9OU5RCZdEvA=452">Manage your subscriptions</a> to our other newsletters on tech, startups, and programming. Or if TLDR Information Security isn't for you, please <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fa.tldrnewsletter.com%2Funsubscribe%3Fep=1%26l=8d9cea11-3e94-11ed-9a32-0241b9615763%26lc=156924ca-84b7-11f0-8d58-47c5c04ad337%26p=f5eaa2c8-5e49-11f1-a40d-01a0ca6036a9%26pt=campaign%26pv=4%26spa=1780405473%26t=1780405785%26s=0dd5664c48a4d8406ccc3f80e6111c3a5701fecc6a7ba48396dcfd98cff4f2b9/1/0100019e8874548a-61a5d93e-2496-4ba0-b892-529fd4509547-000000/zVulr6XGqJjblqPjxOQyH4oOeH1McBdEs0w693hJMHY=452">unsubscribe</a>.
<br>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
</td></tr></tbody></table>
</td></tr></tbody></table>
</td></tr></tbody></table>
<img alt="" src="http://tracking.tldrnewsletter.com/CI0/0100019e8874548a-61a5d93e-2496-4ba0-b892-529fd4509547-000000/qApsEFaJdo6c3gtjZ3J0pqCBy8-SunVDrrViJ7nbN9k=452" style="display: none; width: 1px; height: 1px;">
</body></html>