<!DOCTYPE html><html lang="en"><head><meta http-equiv="Content-Type" content="text/html charset=UTF-8"><meta charset="UTF-8"><meta name="viewport" content="width=device-width"><meta name="x-apple-disable-message-reformatting"><title>TLDR InfoSec</title><meta name="color-scheme" content="light dark"><meta name="supported-color-schemes" content="light dark"><style type="text/css">
:root {
color-scheme: light dark; supported-color-schemes: light dark;
}
*,
*:after,
*:before {
-webkit-box-sizing: border-box; -moz-box-sizing: border-box; box-sizing: border-box;
}
* {
-ms-text-size-adjust: 100%; -webkit-text-size-adjust: 100%;
}
html,
body,
.document {
width: 100% !important; height: 100% !important; margin: 0; padding: 0;
}
body {
-webkit-font-smoothing: antialiased; -moz-osx-font-smoothing: grayscale; text-rendering: optimizeLegibility;
}
div[style*="margin: 16px 0"] {
margin: 0 !important;
}
table,
td {
mso-table-lspace: 0pt; mso-table-rspace: 0pt;
}
table {
border-spacing: 0; border-collapse: collapse; table-layout: fixed; margin: 0 auto;
}
img {
-ms-interpolation-mode: bicubic; max-width: 100%; border: 0;
}
*[x-apple-data-detectors] {
color: inherit !important; text-decoration: none !important;
}
.x-gmail-data-detectors,
.x-gmail-data-detectors *,
.aBn {
border-bottom: 0 !important; cursor: default !important;
}
.btn {
-webkit-transition: all 200ms ease; transition: all 200ms ease;
}
.btn:hover {
background-color: #f67575; border-color: #f67575;
}
* {
font-family: Arial, Helvetica, sans-serif; font-size: 18px;
}
@media screen and (max-width: 600px) {
.container {
width: 100%; margin: auto;
}
.stack {
display: block!important; width: 100%!important; max-width: 100%!important;
}
.btn {
display: block; width: 100%; text-align: center;
}
}
body,
p,
td,
tr,
.body,
table,
h1,
h2,
h3,
h4,
h5,
h6,
div,
span {
background-color: #FEFEFE !important; color: #010101 !important;
}
@media (prefers-color-scheme: dark) {
body,
p,
td,
tr,
.body,
table,
h1,
h2,
h3,
h4,
h5,
h6,
div,
span {
background-color: #27292D !important; color: #FEFEFE !important;
}
}
a {
color: inherit !important; text-decoration: underline !important;
}
</style><!--[if mso | ie]>
<style type="text/css">
a {
background-color: #FEFEFE !important; color: #010101 !important;
}
@media (prefers-color-scheme: dark) {
a {
background-color: #27292D !important; color: #FEFEFE !important;
}
}
</style>
<![endif]--></head><body class="">
<div style="display: none; max-height: 0px; overflow: hidden;">ShinyHunters compromised the University of Nottingham's Oracle PeopleSoft instance via a zero-day gadget chain, exfiltrating 40GB of data </div>
<div style="display: none; max-height: 0px; overflow: hidden;">
<br>
</div>
<table align="center" class="document"><tbody><tr><td valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" class="container" width="600"><tbody><tr class="inner-body"><td>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr class="header"><td bgcolor="" class="container">
<table width="100%"><tbody><tr><td class="container">
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" style="margin-top: 0px;" width="100%"><tbody><tr><td style="padding: 0px;">
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div style="text-align: center;">
<span style="margin-right: 0px;"><a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Ftldr.tech%2Finfosec%3Futm_source=tldrinfosec/1/0100019ebbf05875-3f4fedce-8fe1-44ff-a45b-1fa73c102473-000000/KyNlE6WE9VIBAng_pTXjJR-Eo8voFHj8mcleu5MF4xc=452" rel="noopener noreferrer" target="_blank"><span>Sign Up</span></a>
|<span style="margin-right: 2px; margin-left: 2px;"><a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fadvertise.tldr.tech%2F%3Futm_source=tldrinfosec%26utm_medium=newsletter%26utm_campaign=advertisetopnav/1/0100019ebbf05875-3f4fedce-8fe1-44ff-a45b-1fa73c102473-000000/8qhMu3SFvei8D9cDLa6JNGRuxubbdcyhpc4uR0asads=452" rel="noopener noreferrer" target="_blank"><span>Advertise</span></a></span>|<span style="margin-left: 2px;"><a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fa.tldrnewsletter.com%2Fweb-version%3Fep=1%26lc=156924ca-84b7-11f0-8d58-47c5c04ad337%26p=05c6ebac-6633-11f1-8ef6-2b48d94c0181%26pt=campaign%26t=1781269551%26s=0fc18f94a11d1f963873fbf710cc789592b69074761b0b01472e01be54b2783a/1/0100019ebbf05875-3f4fedce-8fe1-44ff-a45b-1fa73c102473-000000/dT5LQIxBDAkVIF-9EblB-i2H8M5lB0JZYRTChc_RAd4=452"><span>View Online</span></a></span>
<br>
</span></div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="text-align: center;"><span data-darkreader-inline-color="" style="--darkreader-inline-color:#3db3ff; color: rgb(51, 175, 255) !important; font-size: 30px;">T</span><span style="font-size: 30px;"><span data-darkreader-inline-color="" style="color: rgb(232, 192, 96) !important; --darkreader-inline-color:#e8c163; font-size:30px;">L</span><span data-darkreader-inline-color="" style="color: rgb(101, 195, 173) !important; --darkreader-inline-color:#6ec7b2; font-size:30px;">D</span></span><span data-darkreader-inline-color="" style="--darkreader-inline-color:#dd6e6e; color: rgb(220, 107, 107) !important; font-size: 30px;">R</span>
<br>
</td></tr></tbody></table>
<br>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr id="together-with"><td align="center" height="20" style="vertical-align:middle !important;" valign="middle" width="100%"><strong style="vertical-align:middle !important; height: 100%;">Together With </strong>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fdr-resources.darkreading.com%2Ffree%2Fw_cato490%2F%3Futm_source=TLDR%26utm_medium=newsletter%26utm_campaign=2026-06-12_Primary_Cato%2BNetworks%26utm_content=header_ai_driven_attacks/1/0100019ebbf05875-3f4fedce-8fe1-44ff-a45b-1fa73c102473-000000/oQAemQL6ms3_Eog1DtGSLXNh46VJ4FqhRjSCqOrBKOU=452"><img src="https://images.tldr.tech/cato2.png" valign="middle" style="vertical-align: middle !important; height: 100%;" alt="Cato Networks"></a></td></tr></tbody></table>
<table style="table-layout: fixed; width:100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;">
<div style="text-align: center;">
<h1><strong>TLDR Information Security <span id="date">2026-06-12</span></strong></h1>
</div>
</td></tr></tbody></table>
<table style="table-layout: fixed; width:100%;" width="100%"><tbody><tr id="sponsy-copy"><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fdr-resources.darkreading.com%2Ffree%2Fw_cato490%2F%3Futm_source=TLDR%26utm_medium=newsletter%26utm_campaign=2026-06-12_Primary_Cato%2BNetworks%26utm_content=header_ai_driven_attacks/2/0100019ebbf05875-3f4fedce-8fe1-44ff-a45b-1fa73c102473-000000/4jDgZscyoVv9eSwnnOFaIetKDT5rAsWV23jgvC-URgQ=452">
<span>
<strong>AI-Driven Attacks Are Here. Is Your Architecture Ready? (Sponsor) </strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
AI is compressing the gap between vulnerability discovery and exploitation. Attacks that once took time and skill are now automated, adaptive, and continuous.<p></p><p>As that window shrinks, the limits of fragmented tools, manual workflows, and hardware-centric architectures are exposed.</p><p>Join Cato and DarkReading on June 23 to learn how to: </p><ul><li>Reduce time-to-protection against AI attacks</li><li>Eliminate blind spots created by fragmented security architectures</li><li>Enforce real-time protection across the full attack path </li></ul><p><a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fdr-resources.darkreading.com%2Ffree%2Fw_cato490%2F%3Futm_source=TLDR%26utm_medium=newsletter%26utm_campaign=2026-06-12_Primary_Cato%2BNetworks%26utm_content=cta_register/1/0100019ebbf05875-3f4fedce-8fe1-44ff-a45b-1fa73c102473-000000/EDtDyrpBrDOBAz84OL0f42vP0il5WDnp4Zajhr9eZJY=452" rel="noopener noreferrer nofollow" target="_blank"><span>→ Register now</span></a> </p>
<p><a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fdr-resources.darkreading.com%2Ffree%2Fw_cato490%2F%3Futm_source=TLDR%26utm_medium=newsletter%26utm_campaign=2026-06-12_Primary_Cato%2BNetwork%26utm_content=cta_recording_if_you/1/0100019ebbf05875-3f4fedce-8fe1-44ff-a45b-1fa73c102473-000000/JYurFO_WmPLOnLqh_6OhDrz8LfBc_-TktpkDZpN7Mec=452" rel="noopener noreferrer nofollow" target="_blank"><span>→ Get the recording if you can't attend live </span></a>
</p>
</span></span></div>
</td></tr></tbody></table>
</td></tr></tbody></table>
</td></tr></tbody></table>
</td></tr>
<tr bgcolor=""><td class="container">
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td style="padding: 0px;">
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">🔓</span></div></div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;">
<h1><strong>Attacks & Vulnerabilities</strong></h1>
</div>
</div>
</td></tr></tbody></table>
<table style="table-layout: fixed; width: 100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Flinks.tldrnewsletter.com%2Fo1BuY9/1/0100019ebbf05875-3f4fedce-8fe1-44ff-a45b-1fa73c102473-000000/c_wDswoYMpKRCRzEOoSTy8simogIixczNOz3GzWwPDc=452">
<span>
<strong>Nottingham University data breach affects over 450,000 students (3 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
ShinyHunters compromised the University of Nottingham's Oracle PeopleSoft instance via a zero-day gadget chain, exfiltrating 40GB of data on 454,600 students, including passport numbers, billing records, addresses, and disability details. This incident was part of a campaign that targeted 100+ organizations using chained zero-days and legacy vulnerabilities. Exploitation success depends on PeopleSoft configuration and exposure. Monitor PSAPPSRV.LOG and PS_HOME/appserv logs for anomalous SQL data extraction and access patterns, validate PeopleSoft patch versions, and enforce IP allow-listing with MFA on admin accounts.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Flinks.tldrnewsletter.com%2FXweku1/1/0100019ebbf05875-3f4fedce-8fe1-44ff-a45b-1fa73c102473-000000/SlHITZfbtnKSJY5YmFOBf26KJYCvWv16vRfRb6PamRk=452">
<span>
<strong>Japanese Energy Firm Loses Drive With Data of 10.9M Clients (2 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Kyushu Electric Power Co has disclosed a physical security incident that affects the private data of more than 10M customers. Due to capacity constraints during a routine backup, the company stored the data on an external drive. However, when they went to retrieve it the following month, it was missing. The data on the drive includes names, service-location addresses, electricity usage data, telephone numbers, names of retail electricity providers, and other related information.
</span>
</span>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">🧠</span></div>
</div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;">
<h1><strong>Strategies & Tactics</strong></h1>
</div>
</div>
</td></tr></tbody></table>
<table style="table-layout: fixed; width: 100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fblog.doyensec.com%2F2026%2F05%2F27%2Faikido-xbow.html%3Futm_source=tldrinfosec/1/0100019ebbf05875-3f4fedce-8fe1-44ff-a45b-1fa73c102473-000000/lLZpKmpvttQtLbIshcSntbN7f054gvJ-B24HAzTMnjc=452">
<span>
<strong>Comparing AI Application Security Testing Platforms: Aikido vs. XBOW (22 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Doyensec ran an Aikido-sponsored head-to-head of Aikido's Attack AI Pentest and XBOW's Lightspeed against two OSS web apps (Fider and Photoview), manually validating every finding as true or false positive. Aikido surfaced more true positives (49 vs. 31), set up in under 20 minutes, and ran cleanly, while XBOW edged it on false-positive ratio (3% vs. 4%) but suffered a sales-gated, week-long flow whose scans crashed, disabled auth, and deleted the test account, plus a single-admin-credential limitation that may have masked authorization bugs. Both platforms reliably overstated severities (corrections trended downward on review) and beat legacy SAST/DAST on ROI, though the two-app sample keeps this a test drive rather than a verdict.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fsafedep.io%2Finside-the-miasma-supply-chain-attack-toolkit%2F%3Futm_source=tldrinfosec/1/0100019ebbf05875-3f4fedce-8fe1-44ff-a45b-1fa73c102473-000000/Czo4kvVCLTnzvYgigXDFRExHEZDkQ_sMnlnpKnVMFL0=452">
<span>
<strong>Inside the Miasma Software Supply Chain Attack Toolkit (22 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Miasma exploits GitHub as C2 via three commit search channels ("DontRevokeOrItGoesBoom", "TheBeautifulSandsOfTime", and "firedalazer"), each delivering encrypted credentials, JavaScript payloads, or remote Python commands without touching traditional infrastructure. The kill chain harvests secrets from AWS/Azure/GCP/Kubernetes and password managers, then propagates via npm/PyPI/RubyGems OIDC or stolen tokens, SSH lateral movement, GitHub Actions orphan-commit hijacking, and injection into 13 AI coding tools via config poisoning. Detect by hunting GitHub commits for those three search terms, enforce OIDC token scope restrictions in Actions, revoke compromised PATs immediately (triggers the dead-man switch), and monitor for binding.gyp injections and .claude/.cursor/.vscode/.gemini/ config payloads.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fbrutecat.com%2Farticles%2Fhacking-google-with-ai%2F%3Futm_source=tldrinfosec/1/0100019ebbf05875-3f4fedce-8fe1-44ff-a45b-1fa73c102473-000000/jJ7GYKHfw7reF6rkFUMfDk6KFTAwUSrw0mtjpGafbQU=452">
<span>
<strong>Hacking Google with AI for $500,000 (42 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
A security researcher targeted Google's internal and public APIs using automated key collection, discovery document scraping, and a custom API explorer wired into an AI-driven fuzzer. They harvested thousands of valid Google API keys from apps, web traffic, and binaries, then mapped which keys unlocked more than 1,500 APIs with different visibility labels and restrictions. By replaying and clustering multi-key probes, parsing Google's standardized error patterns, and layering in strong authentication support, the system reliably surfaced real access control bugs, including internal-only endpoints leaking sensitive account, content, and configuration data, which translated into over $500,000 in bounties.
</span>
</span>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">🧑💻</span></div>
</div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;">
<h1><strong>Launches & Tools</strong></h1>
</div>
</div>
</td></tr></tbody></table>
<table style="table-layout: fixed; width: 100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Faws.amazon.com%2Fblogs%2Faws%2Fanthropic-claude-fable-5-on-aws-mythos-class-capabilities-with-built-in-safeguards-now-available%2F%3Futm_source=tldrinfosec/1/0100019ebbf05875-3f4fedce-8fe1-44ff-a45b-1fa73c102473-000000/Yc7Nli2SQk6SuNuhRKmZpawemhTKk2IUoID80rZZOdA=452">
<span>
<strong>Anthropic Claude Fable 5 on AWS: Mythos-class capabilities with built-in safeguards now available (3 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Claude Fable 5 has launched on Amazon Bedrock with Mythos-level performance in long-running tasks and vision, but enabling access requires opting into mandatory 30-day data retention and allowing inference data to exit AWS' security boundary for Anthropic's misuse detection.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fgithub.com%2Fseqra%2Fopentaint%3Futm_source=tldrinfosec/1/0100019ebbf05875-3f4fedce-8fe1-44ff-a45b-1fa73c102473-000000/IdVqvWTJMj-UrSdy-zjeBuzGF10dVsamPp_CNyF5Ork=452">
<span>
<strong>OpenTaint (GitHub Repo)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Formal taint analysis for application security — finds what AST-pattern matchers miss, lets LLM agents enact vulnerabilities as rules, and scales where neither can alone.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.emphere.com%2F%3Futm_source=tldrinfosec/1/0100019ebbf05875-3f4fedce-8fe1-44ff-a45b-1fa73c102473-000000/4u4SJR-7TytBZcE9xF0iDL1or2rQsfoGE4vZPGMFUFg=452">
<span>
<strong>Emphere (Product Launch)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Emphere provides a platform that scans software dependency graphs, identifies exploitable vulnerabilities, automatically applies and validates patches, and ships fixed components, enabling engineering teams to ship releases faster without manual remediation.
</span>
</span>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">🎁</span></div></div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><strong><h1>Miscellaneous</h1></strong></div>
</div>
</td></tr></tbody></table>
<table bgcolor="" style="table-layout: fixed; width: 100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Flinks.tldrnewsletter.com%2FPuL12d/1/0100019ebbf05875-3f4fedce-8fe1-44ff-a45b-1fa73c102473-000000/Og7qwVKMe8RqJ2mSHAIrTwCVFG8KHMwztLjCgyaXIYc=452">
<span>
<strong>Microsoft Exchange Flaw Lets Attackers Spoof Any Email Address (4 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
InfoGuard's "Ghost-Sender" lets attackers send spoofed internal or external email (including from real CEO or noreply addresses, with Outlook resolving profile pictures) to Exchange Online and hybrid on-prem tenants that use a third-party MX record via a one-line PowerShell command, bypassing SPF, DKIM, and DMARC entirely. It is reportedly being abused in the wild. Microsoft is treating it as an architectural limitation rather than a vulnerability. Defenders should disable Direct Send, deploy a partner connector with IP/certificate validation, or add a mail flow rule quarantining mail where X-MS-Exchange-Organization-AuthAs is not Internal from unexpected IPs.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.endorlabs.com%2Flearn%2Fclaude-fable-5-mythos-grade-hype%3Futm_source=tldrinfosec/1/0100019ebbf05875-3f4fedce-8fe1-44ff-a45b-1fa73c102473-000000/38YK19lBIuDN2Lzn3iTt7kSPZVp79126LnZMwqyv_o0=452">
<span>
<strong>Claude Fable 5: Mythos-grade hype, record cheating, and a few hall-of-fame entries (4 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Anthropic's Claude Fable 5 scored 59.8% functional and 19.0% security passes on 200 real-world vulnerability-fix tasks, with many runs timing out and 38 confirmed cheating cases, mostly training recall. The model still produced four novel, effective patches for real CVEs in Streamlit, jwcrypto, lxml, and scrapy-splash, which matter for anyone relying on AI agents to touch production security fixes.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.theregister.com%2Fsecurity%2F2026%2F06%2F11%2F24m-vrchat-users-data-accessed-following-cloud-breach%2F5254246%3Futm_source=tldrinfosec/1/0100019ebbf05875-3f4fedce-8fe1-44ff-a45b-1fa73c102473-000000/tA6LYv_mDKgV79qalYvp6FqPZdLpfgNEP-_x8Hptwsw=452">
<span>
<strong>VRChat says somebody faked a breach notice with the Maine AG's office (2 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Maine's AG site published a fake VRChat breach notice that named a non-existent employee and listed a dead phone line, prompting VRChat to deny any compromise and contact the AG to remove it. The bogus filing claimed access to cloud data for roughly 2.4 million users, including usernames, emails, login histories, and platform IDs, but not passwords or payment data.
</span>
</span>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">⚡</span></div></div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;">
<h1><strong>Quick Links</strong></h1>
</div>
</div>
</td></tr></tbody></table>
<table bgcolor="" style="table-layout: fixed; width: 100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fluma.com%2Fla76gltj%3Futm_campaign=adversarial_misuse_genai%26utm_medium=newsletter%26utm_source=tldr_infosec/1/0100019ebbf05875-3f4fedce-8fe1-44ff-a45b-1fa73c102473-000000/mnNsYYo5novnS1pJQY1VCDo8u3nlI8S3ITAzjF-eXFA=452">
<span>
<strong>AI crime will cost the US $40 billion by 2027. (Sponsor)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Pangram's hosting "How AI detection arms compliance and cybersecurity." Virtual on June 24 → <a class="notion-link-token notion-focusable-token notion-enable-hover" href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fluma.com%2Fla76gltj%3Futm_source=tldr_infosec%26utm_medium=newsletter%26utm_campaign=adversarial_misuse_genai/1/0100019ebbf05875-3f4fedce-8fe1-44ff-a45b-1fa73c102473-000000/0Eqy1p-UX4cR66b97trvDKoGH-TPw1CEVhPLqZMRij4=452" rel="noopener noreferrer" target="_blank"><span>Save your seat</span></a>
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.theregister.com%2Fdevops%2F2026%2F06%2F10%2Fgithub-pulls-pin-on-npms-auto-run-scripts%2F5253453%3Futm_source=tldrinfosec/1/0100019ebbf05875-3f4fedce-8fe1-44ff-a45b-1fa73c102473-000000/kuaI4mtCE95SERk6Idyi5eRp5gM4sSv1-Edhjz4ctSA=452">
<span>
<strong>GitHub pulls pin on npm's auto-run scripts (2 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
npm 12 (July) disables preinstall/install/postinstall scripts by default, requiring explicit allow-scripts allowlists.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.neowin.net%2Fnews%2Fgoogle-chrome-is-killing-all-ublock-origin-bypasses-microsoft-edge-opera-to-follow%2F%3Futm_source=tldrinfosec/1/0100019ebbf05875-3f4fedce-8fe1-44ff-a45b-1fa73c102473-000000/P_H_uWUJeoP8-vZFdxU4gwrN9Cd1QRGkZ7Wt5FtwmiM=452">
<span>
<strong>Google Chrome is killing all uBlock Origin bypasses, Microsoft Edge, Opera to follow (5 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Chromium 150 strips ExtensionManifestV2Disabled and version 151 removes ExtensionManifestV2Unsupported, AllowLegacyMV2Extensions, and related flags, permanently blocking MV2 extensions like uBlock Origin and all Windows Registry workarounds.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Flinks.tldrnewsletter.com%2F8GhAdU/1/0100019ebbf05875-3f4fedce-8fe1-44ff-a45b-1fa73c102473-000000/NEQRZnmMUC21U5Uwt6nMJ6TSS6pXWQtS3kBu5DJYmvs=452">
<span>
<strong>Microsoft fixes BitLocker recovery bug on Windows Server 2025 (3 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
KB5094125 (Windows Server 2025) and KB5093998 (Windows 11 23H2) patch BitLocker recovery prompts triggered by April 2026 updates on systems with TPM platform validation policy, including PCR7, Windows UEFI CA 2023 certificate in Secure Boot DB, and incompatible boot manager.
</span>
</span>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td align="left" style="word-break: break-word; vertical-align: top; padding: 5px 10px;">
<p style="padding: 0; margin: 0; font-size: 22px; color: #000000; line-height: 1.6; font-weight: bold;">
Love TLDR? Tell your friends and get rewards!
</p>
</td></tr>
<tr><td class="container" style="padding: 0px 10px 15px;">
<div class="text-block">
Share your referral link below with friends to get free TLDR swag!
</div>
</td></tr>
<tr><td align="left" style="padding: 10px;">
<div class="text-block">
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Frefer.tldr.tech%2F78de0e20%2F8/1/0100019ebbf05875-3f4fedce-8fe1-44ff-a45b-1fa73c102473-000000/rswj8QWoVqJvYFV_k8Opjm8PkIhDuXhkUxWBm00b25o=452" style="color: #464ba4; text-decoration: underline;">https://refer.tldr.tech/78de0e20/8</a>
</div>
</td></tr>
<tr></tr>
<tr><td align="left" style="padding:5px 10px;">
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fhub.sparklp.co%2Fsub_d62447d5a74a%2F8/1/0100019ebbf05875-3f4fedce-8fe1-44ff-a45b-1fa73c102473-000000/7TKZnEQWhD3azQoc9b2yaBqIHd-4YZc4WM9lZk7prz0=452" style="font-size: 16px; line-height: 1.6; padding: 10px 0; display: inline-block; text-decoration: underline;"><span style="mso-text-raise:13pt; text-decoration: underline;">Track your referrals here.</span></a>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td align="left" style="word-break: break-word; vertical-align: top; padding: 5px 10px;">
<p style="padding: 0; margin: 0; font-size: 22px; color: #000000; line-height: 1.6; font-weight: bold;">
Want to advertise in TLDR? 📰
</p>
<div class="text-block" style="margin-top: 10px;">
If your company is interested in reaching an audience of cybersecurity professionals and decision makers, you may want to <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fadvertise.tldr.tech%2F%3Futm_source=tldrinfosec%26utm_medium=newsletter%26utm_campaign=advertisecta/1/0100019ebbf05875-3f4fedce-8fe1-44ff-a45b-1fa73c102473-000000/hot_TjKVlZxRiKQ6Y-Kz3ZUJrA26mx7m1iR7EPbp6pA=452"><strong><span>advertise with us</span></strong></a>.
</div>
<br>
<!-- New "Want to work at TLDR?" section -->
<p style="padding: 0; margin: 0; font-size: 22px; color: #000000; line-height: 1.6; font-weight: bold;">
Want to work at TLDR? 💼
</p>
<div class="text-block" style="margin-top: 10px;">
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fjobs.ashbyhq.com%2Ftldr.tech/1/0100019ebbf05875-3f4fedce-8fe1-44ff-a45b-1fa73c102473-000000/6OLuv5Wx2Q7xvjq1mIiOOiLB5xgf4K8baajlo8Si5Mk=452" rel="noopener noreferrer" style="color: #0000EE; text-decoration: underline;" target="_blank"><strong>Apply here</strong></a>,
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fjobs.ashbyhq.com%2Ftldr.tech%2Fc227b917-a6a4-40ce-8950-d3e165357871/1/0100019ebbf05875-3f4fedce-8fe1-44ff-a45b-1fa73c102473-000000/nNvs3tQNJhp-99yO7fS_Kugu1JV9WyNabVPRLuZu3-I=452" rel="noopener noreferrer" style="color: #0000EE; text-decoration: underline;" target="_blank"><strong>create your own role</strong></a> or send a friend's resume to <a href="mailto:jobs@tldr.tech" style="color: #0000EE; text-decoration: underline;">jobs@tldr.tech</a> and get $1k if we hire them! TLDR is one of <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.linkedin.com%2Ffeed%2Fupdate%2Furn:li:activity:7401699691039830016%2F/1/0100019ebbf05875-3f4fedce-8fe1-44ff-a45b-1fa73c102473-000000/gL0vdEbeODaCHhkur5DIN1tGBv0VaVbncfQrE3VTyvA=452" rel="noopener noreferrer" style="color: #0000EE; text-decoration: underline;" target="_blank"><strong>Inc.'s Best Bootstrapped businesses</strong></a> of 2025.
</div>
<br>
<div class="text-block">
If you have any comments or feedback, just respond to this email!
<br>
<br> Thanks for reading,
<br>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.linkedin.com%2Fin%2Fprasannagautam%2F/1/0100019ebbf05875-3f4fedce-8fe1-44ff-a45b-1fa73c102473-000000/eHua2KzABcZBy3sPlLfvJCNzIV6McaBF6qYLMddKnzw=452"><span>Prasanna Gautam</span></a>, <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.linkedin.com%2Fin%2Fericfernandezdelcampo%2F/1/0100019ebbf05875-3f4fedce-8fe1-44ff-a45b-1fa73c102473-000000/svXoKGAPJfpMvuol5SxDCpJJDfrPgJBqaptD85HUhg8=452"><span>Eric Fernandez</span></a> & <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.linkedin.com%2Fin%2Fsammy-tbeile%2F/1/0100019ebbf05875-3f4fedce-8fe1-44ff-a45b-1fa73c102473-000000/3EVri0iEOM6m3wef3mVXMF5F6jw--BRnzwPJZitXHJc=452"><span>Sammy Tbeile</span></a>
<br>
<br>
</div>
<br>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block" id="testing-id">
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Ftldr.tech%2Finfosec%2Fmanage%3Femail=silk.theater.56%2540fwdnl.com/1/0100019ebbf05875-3f4fedce-8fe1-44ff-a45b-1fa73c102473-000000/9w4gsC0VjptaMZoE1yN_IdbUEVloSxWGo07oyEmT4mo=452">Manage your subscriptions</a> to our other newsletters on tech, startups, and programming. Or if TLDR Information Security isn't for you, please <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fa.tldrnewsletter.com%2Funsubscribe%3Fep=1%26l=8d9cea11-3e94-11ed-9a32-0241b9615763%26lc=156924ca-84b7-11f0-8d58-47c5c04ad337%26p=05c6ebac-6633-11f1-8ef6-2b48d94c0181%26pt=campaign%26pv=4%26spa=1781269235%26t=1781269551%26s=4afcf76251a40b0d4bcd2debbb2653579c382184a15d2b06dc674890937627dd/1/0100019ebbf05875-3f4fedce-8fe1-44ff-a45b-1fa73c102473-000000/HqgNvgVNpepVUFKqf-IWl99hTdPIY65EYasSb8ovEH8=452">unsubscribe</a>.
<br>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
</td></tr></tbody></table>
</td></tr></tbody></table>
</td></tr></tbody></table>
<img alt="" src="http://tracking.tldrnewsletter.com/CI0/0100019ebbf05875-3f4fedce-8fe1-44ff-a45b-1fa73c102473-000000/fTTIwVmKu-iQ13wIH_AP-8ndcZbn3C9NTNfSOJNzFNw=452" style="display: none; width: 1px; height: 1px;">
</body></html>