<!DOCTYPE html><html lang="en"><head><meta http-equiv="Content-Type" content="text/html charset=UTF-8"><meta charset="UTF-8"><meta name="viewport" content="width=device-width"><meta name="x-apple-disable-message-reformatting"><title>TLDR InfoSec</title><meta name="color-scheme" content="light dark"><meta name="supported-color-schemes" content="light dark"><style type="text/css">
:root {
color-scheme: light dark; supported-color-schemes: light dark;
}
*,
*:after,
*:before {
-webkit-box-sizing: border-box; -moz-box-sizing: border-box; box-sizing: border-box;
}
* {
-ms-text-size-adjust: 100%; -webkit-text-size-adjust: 100%;
}
html,
body,
.document {
width: 100% !important; height: 100% !important; margin: 0; padding: 0;
}
body {
-webkit-font-smoothing: antialiased; -moz-osx-font-smoothing: grayscale; text-rendering: optimizeLegibility;
}
div[style*="margin: 16px 0"] {
margin: 0 !important;
}
table,
td {
mso-table-lspace: 0pt; mso-table-rspace: 0pt;
}
table {
border-spacing: 0; border-collapse: collapse; table-layout: fixed; margin: 0 auto;
}
img {
-ms-interpolation-mode: bicubic; max-width: 100%; border: 0;
}
*[x-apple-data-detectors] {
color: inherit !important; text-decoration: none !important;
}
.x-gmail-data-detectors,
.x-gmail-data-detectors *,
.aBn {
border-bottom: 0 !important; cursor: default !important;
}
.btn {
-webkit-transition: all 200ms ease; transition: all 200ms ease;
}
.btn:hover {
background-color: #f67575; border-color: #f67575;
}
* {
font-family: Arial, Helvetica, sans-serif; font-size: 18px;
}
@media screen and (max-width: 600px) {
.container {
width: 100%; margin: auto;
}
.stack {
display: block!important; width: 100%!important; max-width: 100%!important;
}
.btn {
display: block; width: 100%; text-align: center;
}
}
body,
p,
td,
tr,
.body,
table,
h1,
h2,
h3,
h4,
h5,
h6,
div,
span {
background-color: #FEFEFE !important; color: #010101 !important;
}
@media (prefers-color-scheme: dark) {
body,
p,
td,
tr,
.body,
table,
h1,
h2,
h3,
h4,
h5,
h6,
div,
span {
background-color: #27292D !important; color: #FEFEFE !important;
}
}
a {
color: inherit !important; text-decoration: underline !important;
}
</style><!--[if mso | ie]>
<style type="text/css">
a {
background-color: #FEFEFE !important; color: #010101 !important;
}
@media (prefers-color-scheme: dark) {
a {
background-color: #27292D !important; color: #FEFEFE !important;
}
}
</style>
<![endif]--></head><body class="">
<div style="display: none; max-height: 0px; overflow: hidden;">Token security involved chaining known primitives, from Zapier's Python sandbox: os.system ran freely, regex scraping recovered orphaned STS tokens β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β </div>
<div style="display: none; max-height: 0px; overflow: hidden;">
<br>
</div>
<table align="center" class="document"><tbody><tr><td valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" class="container" width="600"><tbody><tr class="inner-body"><td>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr class="header"><td bgcolor="" class="container">
<table width="100%"><tbody><tr><td class="container">
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" style="margin-top: 0px;" width="100%"><tbody><tr><td style="padding: 0px;">
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div style="text-align: center;">
<span style="margin-right: 0px;"><a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Ftldr.tech%2Finfosec%3Futm_source=tldrinfosec/1/0100019e97e440ec-75516ed4-8662-4598-b50a-078843631126-000000/x-dpeSy_EIo-dKCaKfKuL2lb7kXWyEctJr_w9hgWIsM=452" rel="noopener noreferrer" target="_blank"><span>Sign Up</span></a>
|<span style="margin-right: 2px; margin-left: 2px;"><a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fadvertise.tldr.tech%2F%3Futm_source=tldrinfosec%26utm_medium=newsletter%26utm_campaign=advertisetopnav/1/0100019e97e440ec-75516ed4-8662-4598-b50a-078843631126-000000/5avBD9x3TjqB_y5KR0tRXihbETpyCkaxu2OoXSCKcQU=452" rel="noopener noreferrer" target="_blank"><span>Advertise</span></a></span>|<span style="margin-left: 2px;"><a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fa.tldrnewsletter.com%2Fweb-version%3Fep=1%26lc=156924ca-84b7-11f0-8d58-47c5c04ad337%26p=42132bf2-60a2-11f1-83aa-a54e0d06fd55%26pt=campaign%26t=1780664778%26s=b854a9f7f5573bedfb919edb5d9375042316b814640b8f6730f9259cc4ff1edd/1/0100019e97e440ec-75516ed4-8662-4598-b50a-078843631126-000000/oOr7vc5IvBh4DW3QW4xHWnHaUzmw0swMSdWuKb1zbW4=452"><span>View Online</span></a></span>
<br>
</span></div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="text-align: center;"><span data-darkreader-inline-color="" style="--darkreader-inline-color:#3db3ff; color: rgb(51, 175, 255) !important; font-size: 30px;">T</span><span style="font-size: 30px;"><span data-darkreader-inline-color="" style="color: rgb(232, 192, 96) !important; --darkreader-inline-color:#e8c163; font-size:30px;">L</span><span data-darkreader-inline-color="" style="color: rgb(101, 195, 173) !important; --darkreader-inline-color:#6ec7b2; font-size:30px;">D</span></span><span data-darkreader-inline-color="" style="--darkreader-inline-color:#dd6e6e; color: rgb(220, 107, 107) !important; font-size: 30px;">R</span>
<br>
</td></tr></tbody></table>
<br>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody></tbody></table>
<table style="table-layout: fixed; width:100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;">
<div style="text-align: center;">
<h1><strong>TLDR Information Security <span id="date">2026-06-05</span></strong></h1>
</div>
</td></tr></tbody></table>
<table style="table-layout: fixed; width:100%;" width="100%"><tbody></tbody></table>
</td></tr></tbody></table>
</td></tr></tbody></table>
</td></tr>
<tr bgcolor=""><td class="container">
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td style="padding: 0px;">
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">π</span></div></div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;">
<h1><strong>Attacks & Vulnerabilities</strong></h1>
</div>
</div>
</td></tr></tbody></table>
<table style="table-layout: fixed; width: 100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Flinks.tldrnewsletter.com%2FSVpmQ6/1/0100019e97e440ec-75516ed4-8662-4598-b50a-078843631126-000000/_pYB7aWoaeBou9zEFA5ARheXf8s8-51A_6Fo0MwsQCw=452">
<span>
<strong>Over 1.4 Million Accounts Disrupted in Cybercrime Crackdown (2 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Law enforcement and major tech firms ran "Disruption Week," taking down more than 1.4 million scam accounts, pages, Microsoft accounts, and Starlink kits tied to compounds in Cambodia, Laos, and Burma. Workers were trafficked into these sites and forced into scam operations, including crypto investment fraud, leading to 63 arrests and freezing of over 3.8 million dollars in cryptocurrency.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Flinks.tldrnewsletter.com%2FU2QsFH/1/0100019e97e440ec-75516ed4-8662-4598-b50a-078843631126-000000/TUqOKu9KRsy3eLiAWr6T79QPBfQ_ZQwFmoNCiv_bDkg=452">
<span>
<strong>Ultrahuman Data Breach Exposes User Info via Internal Tool (2 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Health-tech wearables company Ultrahuman informed customers of a data breach affecting its systems. The company stated that the attackers breached an internal analytics system. The breached data includes contact and account details, order history, and transaction history, but the company stated that it does not contain any financial or wellness data.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Flinks.tldrnewsletter.com%2FSFLldM/1/0100019e97e440ec-75516ed4-8662-4598-b50a-078843631126-000000/CREhJ_nI0uyTM9StavHAyq3TvdKijiHACSRVTeSQHXg=452">
<span>
<strong>DentaQuest Data Breach Exposed Info of 2.6M Accounts (2 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
The ShinyHunters ransomware gang claimed to have stolen and then leaked 234GB of data from the dental benefits provider DentaQuest after they refused to pay a ransom. The breached data includes email addresses, full names, phone numbers, government-issued IDs, health insurance information, dates of birth, and gender. Have I Been Pwned confirmed the breach and stated that it includes 2.6M records, though roughly 66% of the accounts already existed in their database.
</span>
</span>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">π§ </span></div>
</div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;">
<h1><strong>Strategies & Tactics</strong></h1>
</div>
</div>
</td></tr></tbody></table>
<table style="table-layout: fixed; width: 100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fclearbluejar.github.io%2Fposts%2Fsystem-over-model-tested-mythos-freebsd-local-openweight%2F%3Futm_source=tldrinfosec/1/0100019e97e440ec-75516ed4-8662-4598-b50a-078843631126-000000/GMjqM94Hd0D27fjByyiSt6OsTeWqs9Due_ZQgwwvyhg=452">
<span>
<strong>System Over Model, Tested: Reproducing Mythos's FreeBSD Find on Local Open-Weight Models (15 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Anthropic's Mythos preview highlighted a 17-year-old FreeBSD RCE. AISLE then reproduced it cheaply with a structured nano-analyzer pipeline and pushed that test onto local open-weight models using Gemma and GPT-OSS across the full FreeBSD sys/rpc subsystem. Both models can identify the stack overflow in the vulnerable file alone, but broader scans drown it out with false positives and inconsistent triage votes. A simple extra reachability stage filters findings based on attacker-controlled paths and preserves the real CVE, turning noisy output into a shortlist that a single analyst can review.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fpushsecurity.com%2Fblog%2Fllmshare-malvertising-campaign%2F%3Futm_source=tldrinfosec/1/0100019e97e440ec-75516ed4-8662-4598-b50a-078843631126-000000/6kcffxt1JoINoSO7LQdQQdsGSQcEK72Q0_ZjyILuW2E=452">
<span>
<strong>LLMShare: How Attackers Are Turning AI Chatbot Pages Into Malware Delivery Platforms (9 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Push Security detected a new malvertising campaign that builds on previous campaigns, which used shared ChatGPT conversations to mimic Apple Support information and trick users into downloading malware. The new campaigns that Push detected utilize ChatGPT's rendering feature to present a page that claims to show a service disruption and prompts users to click a button to download the desktop application. The malicious page then redirects the user to a phishing page that mimics the desktop application download page, leading the user to install an infostealer.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.token.security%2Fblog%2Fzapocalypse-the-attack-chain-that-could-have-hijacked-zapier%3Futm_source=tldrinfosec/1/0100019e97e440ec-75516ed4-8662-4598-b50a-078843631126-000000/U_PAZUcJePvKVjIhvQVN-wHKjppPjhVTscvKnMWhOkU=452">
<span>
<strong>Zapocalypse: The Attack Chain That Could Have Hijacked Zapier (7 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Token security involved chaining known primitives, from Zapier's Python sandbox: os.system ran freely, regex scraping recovered orphaned STS tokens from Lambda heap, belonging to allow_nothing_role with permissions for ECR and other actions across 1,111 private repos. Due to GetAuthorizationToken denial, images were pulled via raw ECR API calls, avoiding Docker monitoring. High-privilege NPM publish tokens leaked via build-time ARG/ENV, enabling account takeover. Defenders should validate IAM permissions, isolate untrusted code, use BuildKit secrets, scope and rotate CI NPM tokens, pin dependencies with npm ci, and monitor egress to private ECR or NPM.
</span>
</span>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">π§βπ»</span></div>
</div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;">
<h1><strong>Launches & Tools</strong></h1>
</div>
</div>
</td></tr></tbody></table>
<table style="table-layout: fixed; width: 100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwithwillow.ai%2F%3Futm_source=tldrinfosec/1/0100019e97e440ec-75516ed4-8662-4598-b50a-078843631126-000000/zdEhNXv-X02XWSBRGuPG9PaaunPmwzCaX5yY24u7Hrk=452">
<span>
<strong>Willow (Product Launch)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Willow provides an identity and access layer for enterprise AI agents and systems. It centralizes access to tools such as Claude, Gemini, ChatGPT, and custom models, enforces leastβprivilege policies, and discovers and audits unauthorized AI use across corporate networks.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fgithub.com%2FOWASP%2FDockSec%3Futm_source=tldrinfosec/1/0100019e97e440ec-75516ed4-8662-4598-b50a-078843631126-000000/aCao3SNITOR-CESDdneuTudIIwTvdfgLr_VFeKFFA60=452">
<span>
<strong>DockSec (GitHub Repo)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
DockSec is an OWASP incubator project that provides a Docker container that uses AI to deliver context-aware security analysis with industry-standard scanners.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fgithub.com%2Fvinsk0h%2FKQLab%3Futm_source=tldrinfosec/1/0100019e97e440ec-75516ed4-8662-4598-b50a-078843631126-000000/yEXjFSM1RZ1T79XuJ_rfMJL-CHJpkeDwUltcuyltKZc=452">
<span>
<strong>KQLab (GitHub Repo)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
KQLab is a self-hosted KQL query management platform for SOC teams.
</span>
</span>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">π</span></div></div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><strong><h1>Miscellaneous</h1></strong></div>
</div>
</td></tr></tbody></table>
<table bgcolor="" style="table-layout: fixed; width: 100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Farstechnica.com%2Ftech-policy%2F2026%2F06%2Fmy-ssn-was-exposed-in-a-breach-at-columbia-a-school-i-have-no-connection-with%2F%3Futm_source=tldrinfosec/1/0100019e97e440ec-75516ed4-8662-4598-b50a-078843631126-000000/yn99JAhPyF7-AdUGtCAloAwttNA6Nx6f4Mvc7A-CyLM=452">
<span>
<strong>My SSN was exposed in a breach at Columbiaβa school I have no connection with (4 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Columbia's 2025 breach exposed 1.8 million SSNs, including people who never applied to or studied at the university, because decades-old recruitment and testing data stayed in a legacy database. Columbia missed that database during SSN removal efforts, then took months to answer basic questions from affected people, and now faces a proposed class action and regulatory scrutiny over long-term SSN hoarding.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fvincenzoiozzo.com%2Fblog%2Foss-models-vuln-research%3Futm_source=tldrinfosec/1/0100019e97e440ec-75516ed4-8662-4598-b50a-078843631126-000000/U94LVqK6M3nS_Pd4ZKySJClMdEx0VQ0iPBr-1mtkBf4=452">
<span>
<strong>How Harnesses and Post-Training Close the Open-Weight Bug Finding Gap (6 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
The author tested several open-weight models and Opus 4.7's ability to find the crackaddr vulnerability in four different variants. When using the Claude Code harness, only Opus 4.7 and GLM-5.1 consistently found all variants. However, other models performed better with the IronCurtain harness, which is specifically designed for security testing. GLM-5.1 performing significantly better than GLM-5 also speaks to the importance of post-training.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fblog.yaelwrites.com%2Fwhat-my-privacy-and-security-stack-actually-looks-like%2F%3Futm_source=tldrinfosec/1/0100019e97e440ec-75516ed4-8662-4598-b50a-078843631126-000000/GPp6S2mucpA7qm5gBJHOYhQpTkqi2aR5nUZsvtw0odM=452">
<span>
<strong>What My Privacy and Security Stack Actually Looks Like (6 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
A privacy-focused journalist documents the practices she personally uses rather than recommends, anchored by a "vibes first" rule that treats a sense of pressure or urgency as a red flag and verifies via a separate channel, plus operational habits like meeting new contacts in public, using a PO Box, scrubbing her address with EasyOptOuts, and delaying event posts. The technical stack favors physical security keys (three YubiKeys with backups) over passkeys, two password managers (1Password and Bitwarden), Authy for TOTP with email MFA preferred over SMS, full-disk encryption, Mullvad VPN, Privacy Badger plus uBlock Origin, Google Advanced Protection, Apple Lockdown Mode, Google Fi for SIM-swap resistance, and iCloud Hide My Email aliases. She also avoids biometrics and AI-based browsers in her specific threat model, freezes her credit, uses Signal with disappearing messages, and monitors exposure via HaveIBeenPwned, framing the whole setup as a way to reduce unnecessary exposure without making life unworkable.
</span>
</span>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">β‘</span></div></div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;">
<h1><strong>Quick Links</strong></h1>
</div>
</div>
</td></tr></tbody></table>
<table bgcolor="" style="table-layout: fixed; width: 100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Flinks.tldrnewsletter.com%2FdZjIda/1/0100019e97e440ec-75516ed4-8662-4598-b50a-078843631126-000000/X8ZHcBOet_6aW1wSPyXxdPb6omxWWMfne6DVGhSk2J0=452">
<span>
<strong>Gemini Voice Assistant Hijacked via Messaging Notifications (2 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
SafeBreach's Fake Context Alignment attack abused WhatsApp, Slack, and SMS notifications to silently inject hidden instructions that Gemini processes but never reads aloud, letting attackers control Google Home devices, launch Zoom calls, spoof trusted contacts, and poison the assistant's long-term memory before Google patched it in mid-November 2025 with classifier improvements.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Flinks.tldrnewsletter.com%2FBLOIIX/1/0100019e97e440ec-75516ed4-8662-4598-b50a-078843631126-000000/WoKHf4Elj7MN61zNz3FPXj4KrJzuMFaa2ZRrKvWHwuo=452">
<span>
<strong>Hola Browser for Windows compromised to deliver cryptominer (2 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
A supply chain compromise of Hola Browser's Windows build planted an undeclared, unsigned Monero miner (me.exe) that adds a Windows Defender exclusion, copies itself to Program Files as HolaMonitorService.exe, and runs as an auto-starting service named hola_monitor_svc when the machine is idle.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.cyberkendra.com%2F2026%2F06%2Fan-ai-security-tool-dug-up-2-year-old.html%3Futm_source=tldrinfosec/1/0100019e97e440ec-75516ed4-8662-4598-b50a-078843631126-000000/YtVHg4O4T74rZjgNHc0UECnRL6vfWCHUYbQ6YtVDLqE=452">
<span>
<strong>An AI Security Tool Dug Up a 2-Year-Old Redis Bug That Lets Attackers Take Over Servers (2 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
CVE-2026-23479, a use-after-free in unblockClientOnKey() present in every Redis stable release since 7.2.0 and rated 7.7 (High), lets authenticated attackers chain a Lua heap leak, forced eviction, and GOT overwrite of strcasecmp() with system() to gain full code execution as the Redis daemon, so self-managed deployments should upgrade to 7.2.14, 7.4.9, 8.2.6, 8.4.3, or 8.6.3 or restrict CONFIG, @scripting, and stream commands until they can.
</span>
</span>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td align="left" style="word-break: break-word; vertical-align: top; padding: 5px 10px;">
<p style="padding: 0; margin: 0; font-size: 22px; color: #000000; line-height: 1.6; font-weight: bold;">
Love TLDR? Tell your friends and get rewards!
</p>
</td></tr>
<tr><td class="container" style="padding: 0px 10px 15px;">
<div class="text-block">
Share your referral link below with friends to get free TLDR swag!
</div>
</td></tr>
<tr><td align="left" style="padding: 10px;">
<div class="text-block">
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Frefer.tldr.tech%2F78de0e20%2F8/1/0100019e97e440ec-75516ed4-8662-4598-b50a-078843631126-000000/gx1d7FVH4pS8YSfiOCr4pYFMmAvI5C48bDbYV14lJPo=452" style="color: #464ba4; text-decoration: underline;">https://refer.tldr.tech/78de0e20/8</a>
</div>
</td></tr>
<tr></tr>
<tr><td align="left" style="padding:5px 10px;">
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fhub.sparklp.co%2Fsub_d62447d5a74a%2F8/1/0100019e97e440ec-75516ed4-8662-4598-b50a-078843631126-000000/ypDMp5PdZwGagr5GAcuQeDP3a-siks829b4vnUTJnAU=452" style="font-size: 16px; line-height: 1.6; padding: 10px 0; display: inline-block; text-decoration: underline;"><span style="mso-text-raise:13pt; text-decoration: underline;">Track your referrals here.</span></a>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td align="left" style="word-break: break-word; vertical-align: top; padding: 5px 10px;">
<p style="padding: 0; margin: 0; font-size: 22px; color: #000000; line-height: 1.6; font-weight: bold;">
Want to advertise in TLDR? π°
</p>
<div class="text-block" style="margin-top: 10px;">
If your company is interested in reaching an audience of cybersecurity professionals and decision makers, you may want to <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fadvertise.tldr.tech%2F%3Futm_source=tldrinfosec%26utm_medium=newsletter%26utm_campaign=advertisecta/1/0100019e97e440ec-75516ed4-8662-4598-b50a-078843631126-000000/bCEgLbPUfkrV1DGX_Wgu5YXNkpRaCAYWIFrsMUfd4IA=452"><strong><span>advertise with us</span></strong></a>.
</div>
<br>
<!-- New "Want to work at TLDR?" section -->
<p style="padding: 0; margin: 0; font-size: 22px; color: #000000; line-height: 1.6; font-weight: bold;">
Want to work at TLDR? πΌ
</p>
<div class="text-block" style="margin-top: 10px;">
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fjobs.ashbyhq.com%2Ftldr.tech/1/0100019e97e440ec-75516ed4-8662-4598-b50a-078843631126-000000/o9qyC7WjSJIk52SaqTqBBFnu9Ow512Z_DB4vKxwHMDA=452" rel="noopener noreferrer" style="color: #0000EE; text-decoration: underline;" target="_blank"><strong>Apply here</strong></a>,
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fjobs.ashbyhq.com%2Ftldr.tech%2Fc227b917-a6a4-40ce-8950-d3e165357871/1/0100019e97e440ec-75516ed4-8662-4598-b50a-078843631126-000000/tpm6TSrIrY8mT2ZFeJDQtg7Zqhkrt159g8gzf8Ep5bw=452" rel="noopener noreferrer" style="color: #0000EE; text-decoration: underline;" target="_blank"><strong>create your own role</strong></a> or send a friend's resume to <a href="mailto:jobs@tldr.tech" style="color: #0000EE; text-decoration: underline;">jobs@tldr.tech</a> and get $1k if we hire them! TLDR is one of <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.linkedin.com%2Ffeed%2Fupdate%2Furn:li:activity:7401699691039830016%2F/1/0100019e97e440ec-75516ed4-8662-4598-b50a-078843631126-000000/P58-0JWIYvc-SjYP-E6PqXm1yiuX9JnpJhWH2ZhRmwc=452" rel="noopener noreferrer" style="color: #0000EE; text-decoration: underline;" target="_blank"><strong>Inc.'s Best Bootstrapped businesses</strong></a> of 2025.
</div>
<br>
<div class="text-block">
If you have any comments or feedback, just respond to this email!
<br>
<br> Thanks for reading,
<br>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.linkedin.com%2Fin%2Fprasannagautam%2F/1/0100019e97e440ec-75516ed4-8662-4598-b50a-078843631126-000000/Ebl4jgW3MWei5tYAaGM8qzTfisTZ2_TKV-3FWtIOW3c=452"><span>Prasanna Gautam</span></a>, <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.linkedin.com%2Fin%2Fericfernandezdelcampo%2F/1/0100019e97e440ec-75516ed4-8662-4598-b50a-078843631126-000000/itwXf2gwb0MNg224b8GYepAIWfX-P6rcvXCHbpZD-9A=452"><span>Eric Fernandez</span></a> & <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.linkedin.com%2Fin%2Fsammy-tbeile%2F/1/0100019e97e440ec-75516ed4-8662-4598-b50a-078843631126-000000/NKZKAQ113u5P1xLp43nSqhHGx2PPfMx2tsQQATTKC3I=452"><span>Sammy Tbeile</span></a>
<br>
<br>
</div>
<br>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block" id="testing-id">
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Ftldr.tech%2Finfosec%2Fmanage%3Femail=silk.theater.56%2540fwdnl.com/1/0100019e97e440ec-75516ed4-8662-4598-b50a-078843631126-000000/1k6ik1QVKA-TlMnCkn49J0jGMq2UlKfkIZaprb7M2_0=452">Manage your subscriptions</a> to our other newsletters on tech, startups, and programming. Or if TLDR Information Security isn't for you, please <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fa.tldrnewsletter.com%2Funsubscribe%3Fep=1%26l=8d9cea11-3e94-11ed-9a32-0241b9615763%26lc=156924ca-84b7-11f0-8d58-47c5c04ad337%26p=42132bf2-60a2-11f1-83aa-a54e0d06fd55%26pt=campaign%26pv=4%26spa=1780664468%26t=1780664778%26s=c9485bf4fdcf2a970caa4f2ce6c02e7fb3fe562bc4dd9ee83784ddcfc83448bc/1/0100019e97e440ec-75516ed4-8662-4598-b50a-078843631126-000000/XTJZAFELxBYehAbntvkYWFJxQvuPWflneFgZo3tbBzA=452">unsubscribe</a>.
<br>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
</td></tr></tbody></table>
</td></tr></tbody></table>
</td></tr></tbody></table>
<img alt="" src="http://tracking.tldrnewsletter.com/CI0/0100019e97e440ec-75516ed4-8662-4598-b50a-078843631126-000000/7Yq3bO8r-4_R9M03kfEY4Yyxfif_w3CnO9jdONUsx8k=452" style="display: none; width: 1px; height: 1px;">
</body></html>