<!DOCTYPE html><html lang="en"><head><meta http-equiv="Content-Type" content="text/html charset=UTF-8"><meta charset="UTF-8"><meta name="viewport" content="width=device-width"><meta name="x-apple-disable-message-reformatting"><title>TLDR InfoSec</title><meta name="color-scheme" content="light dark"><meta name="supported-color-schemes" content="light dark"><style type="text/css">
:root {
color-scheme: light dark; supported-color-schemes: light dark;
}
*,
*:after,
*:before {
-webkit-box-sizing: border-box; -moz-box-sizing: border-box; box-sizing: border-box;
}
* {
-ms-text-size-adjust: 100%; -webkit-text-size-adjust: 100%;
}
html,
body,
.document {
width: 100% !important; height: 100% !important; margin: 0; padding: 0;
}
body {
-webkit-font-smoothing: antialiased; -moz-osx-font-smoothing: grayscale; text-rendering: optimizeLegibility;
}
div[style*="margin: 16px 0"] {
margin: 0 !important;
}
table,
td {
mso-table-lspace: 0pt; mso-table-rspace: 0pt;
}
table {
border-spacing: 0; border-collapse: collapse; table-layout: fixed; margin: 0 auto;
}
img {
-ms-interpolation-mode: bicubic; max-width: 100%; border: 0;
}
*[x-apple-data-detectors] {
color: inherit !important; text-decoration: none !important;
}
.x-gmail-data-detectors,
.x-gmail-data-detectors *,
.aBn {
border-bottom: 0 !important; cursor: default !important;
}
.btn {
-webkit-transition: all 200ms ease; transition: all 200ms ease;
}
.btn:hover {
background-color: #f67575; border-color: #f67575;
}
* {
font-family: Arial, Helvetica, sans-serif; font-size: 18px;
}
@media screen and (max-width: 600px) {
.container {
width: 100%; margin: auto;
}
.stack {
display: block!important; width: 100%!important; max-width: 100%!important;
}
.btn {
display: block; width: 100%; text-align: center;
}
}
body,
p,
td,
tr,
.body,
table,
h1,
h2,
h3,
h4,
h5,
h6,
div,
span {
background-color: #FEFEFE !important; color: #010101 !important;
}
@media (prefers-color-scheme: dark) {
body,
p,
td,
tr,
.body,
table,
h1,
h2,
h3,
h4,
h5,
h6,
div,
span {
background-color: #27292D !important; color: #FEFEFE !important;
}
}
a {
color: inherit !important; text-decoration: underline !important;
}
</style><!--[if mso | ie]>
<style type="text/css">
a {
background-color: #FEFEFE !important; color: #010101 !important;
}
@media (prefers-color-scheme: dark) {
a {
background-color: #27292D !important; color: #FEFEFE !important;
}
}
</style>
<![endif]--></head><body class="">
<div style="display: none; max-height: 0px; overflow: hidden;">Illinoisβ Department of Human Services left an internal mapping site publicly accessible for more than four years, exposing data on over 700K people β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β </div>
<div style="display: none; max-height: 0px; overflow: hidden;">
<br>
</div>
<table align="center" class="document"><tbody><tr><td valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" class="container" width="600"><tbody><tr class="inner-body"><td>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr class="header"><td bgcolor="" class="container">
<table width="100%"><tbody><tr><td class="container">
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" style="margin-top: 0px;" width="100%"><tbody><tr><td style="padding: 0px;">
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div style="text-align: center;">
<span style="margin-right: 0px;"><a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Ftldr.tech%2Finfosec%3Futm_source=tldrinfosec/1/0100019ba3157d3b-d9b6be51-f133-4b3e-8064-7240159245b1-000000/F1SNq7-iUxEm3GUMdHV7tj-Z8CoiNViHoutF3sSmdCE=439" rel="noopener noreferrer" target="_blank"><span>Sign Up</span></a>
|<span style="margin-right: 2px; margin-left: 2px;"><a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fadvertise.tldr.tech%2F%3Futm_source=tldrinfosec%26utm_medium=newsletter%26utm_campaign=advertisetopnav/1/0100019ba3157d3b-d9b6be51-f133-4b3e-8064-7240159245b1-000000/5jt6TCsAMLyWfjyZeEQSvxVkr_EAG7MZnO_9fBTC1mA=439" rel="noopener noreferrer" target="_blank"><span>Advertise</span></a></span>|<span style="margin-left: 2px;"><a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fa.tldrnewsletter.com%2Fweb-version%3Fep=1%26lc=156924ca-84b7-11f0-8d58-47c5c04ad337%26p=dc4cf092-ed2d-11f0-bab0-afc9b65908b7%26pt=campaign%26t=1767967653%26s=ffbfd2c71470a4e96cafd11c38f4d241f2647dc3705cf28fc23678d3db5f6ff0/1/0100019ba3157d3b-d9b6be51-f133-4b3e-8064-7240159245b1-000000/8l6t4gS7OkEimskl5EjkwM4zgzm4U_Zo2IZwofSRxk8=439"><span>View Online</span></a></span>
<br>
</span></div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="text-align: center;"><span data-darkreader-inline-color="" style="--darkreader-inline-color:#3db3ff; color: rgb(51, 175, 255) !important; font-size: 30px;">T</span><span style="font-size: 30px;"><span data-darkreader-inline-color="" style="color: rgb(232, 192, 96) !important; --darkreader-inline-color:#e8c163; font-size:30px;">L</span><span data-darkreader-inline-color="" style="color: rgb(101, 195, 173) !important; --darkreader-inline-color:#6ec7b2; font-size:30px;">D</span></span><span data-darkreader-inline-color="" style="--darkreader-inline-color:#dd6e6e; color: rgb(220, 107, 107) !important; font-size: 30px;">R</span>
<br>
</td></tr></tbody></table>
<br>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr id="together-with"><td align="center" height="20" style="vertical-align:middle !important;" valign="middle" width="100%"><strong style="vertical-align:middle !important; height: 100%;">Together With </strong>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.vectra.ai%2Fplatform%3Futm_source=tldr%26utm_medium=display%26utm_campaign=26Q3_C_AMS_PRO_TLDR-Newletter-aws/1/0100019ba3157d3b-d9b6be51-f133-4b3e-8064-7240159245b1-000000/w5PGNGgscVrxHpGKhwWwBE5Cnz5jZm17AvT0Pq5IxxA=439"><img src="https://images.tldr.tech/vectra.png" valign="middle" style="vertical-align: middle !important; height: 100%;" alt="Vectra"> and <img src="https://images.tldr.tech/vectraaws.png" valign="middle" style="vertical-align: middle !important; height: 100%;" alt="Vectra"></a></td></tr></tbody></table>
<table style="table-layout: fixed; width:100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;">
<div style="text-align: center;">
<h1><strong>TLDR Information Security <span id="date">2026-01-09</span></strong></h1>
</div>
</td></tr></tbody></table>
<table style="table-layout: fixed; width:100%;" width="100%"><tbody><tr id="sponsy-copy"><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.vectra.ai%2Fplatform%3Futm_source=tldr%26utm_medium=display%26utm_campaign=26Q3_C_AMS_PRO_TLDR-Newletter-aws/2/0100019ba3157d3b-d9b6be51-f133-4b3e-8064-7240159245b1-000000/usqGfxyi2nn8UtfHw-BAswP0cEjPQOYHch5V9HdMHEg=439">
<span>
<strong>AWS secures AWS. Everything else is your attack surface. (Sponsor) </strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
AWS-native tools protect what's inside AWS. But modern attacks move across identity, SaaS, on-prem, and other clouds, before and after they ever touch AWS.<p></p><p><strong>Vectra AI delivers high-fidelity behavioral threat detection and automated response in AWS at runtime. No noise. Just action.</strong></p><p>AWS customers like KPMG, Under Armour, and many government organizations use Vectra AI to:</p><ul><li>Cut false positives by up to 85%</li><li>Investigate threats 5X faster with full attack path context</li><li>Detect hybrid attacks in real time </li></ul><p>Lower risk. Higher ROI. Less analyst burnout.</p><p><a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.vectra.ai%2Flp%2Fdemo-aws%3Futm_source=tldr%26utm_medium=display%26utm_campaign=26Q3_C_AMS_PRO_TLDR-Newletter-aws/1/0100019ba3157d3b-d9b6be51-f133-4b3e-8064-7240159245b1-000000/nzeDiT_vgA3VaPNtKuXmYRwOPlU4yNvx2Ar_L67QLKg=439" rel="noopener noreferrer nofollow" target="_blank"><span><strong>Schedule a demo β</strong></span></a>
</p>
</span></span></div>
</td></tr></tbody></table>
</td></tr></tbody></table>
</td></tr></tbody></table>
</td></tr>
<tr bgcolor=""><td class="container">
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td style="padding: 0px;">
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">π</span></div></div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;">
<h1><strong>Attacks & Vulnerabilities</strong></h1>
</div>
</div>
</td></tr></tbody></table>
<table style="table-layout: fixed; width: 100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Ftechcrunch.com%2F2026%2F01%2F08%2Fillinois-health-department-exposed-over-700000-residents-personal-data-for-years%2F%3Futm_source=tldrinfosec/1/0100019ba3157d3b-d9b6be51-f133-4b3e-8064-7240159245b1-000000/bQ-HNorObxZ8BPwtch9ctp_Vmq190U81zGDY41rvwnc=439">
<span>
<strong>Illinois health department exposed over 700,000 residents' personal data for years (1 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Illinois' Department of Human Services left an internal mapping site publicly accessible for more than four years, exposing data on over 700,000 people receiving state benefits. The leak revealed addresses, case numbers, demographic details for Medicaid and Medicare Savings Program recipients, and names and case information for tens of thousands of individuals receiving rehabilitation services.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.theregister.com%2F2026%2F01%2F07%2Feuropean_space_agency_breach_criminal_probe%2F%3Futm_source=tldrinfosec/1/0100019ba3157d3b-d9b6be51-f133-4b3e-8064-7240159245b1-000000/LyFBAW2fpI9Fex7jw5D0oRnNEUpme2sAX4C5BLGQw5k=439">
<span>
<strong>ESA calls cops as crims lift off 500 GB of files, say security black hole still open (2 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
The European Space Agency faces a new breach after Scattered/Shiny Lapsus$ Hunters claimed to have stolen 500 GB of highly sensitive operational, spacecraft, and contractor data from ESA systems, including information on missions involving partners such as SpaceX and Airbus. The attackers say their access remains open. The ESA has referred the case for a criminal inquiry amid a history of prior security incidents dating back to 2011.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.bleepingcomputer.com%2Fnews%2Fsecurity%2Fcritical-jspdf-flaw-lets-hackers-steal-secrets-via-generated-pdfs%2F%3Futm_source=tldrinfosec/1/0100019ba3157d3b-d9b6be51-f133-4b3e-8064-7240159245b1-000000/nsNGXB7-aO8eR_B6RzKv6dtYNQ8OjIDCga3-m3nmAIY=439">
<span>
<strong>Critical jsPDF Flaws Lets Hackers Steal Secrets via Generated PDFs (2 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
The popular jsPDF library is vulnerable to a local file inclusion and path traversal attack that can allow attackers to steal secrets. The flaw allows attackers to pass unsanitized paths directly to the loadFile function or any functions that call it. The vulnerability was fixed in version 4.0.0, but it may not be comprehensive on Node 20 and earlier.
</span>
</span>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">π§ </span></div>
</div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;">
<h1><strong>Strategies & Tactics</strong></h1>
</div>
</div>
</td></tr></tbody></table>
<table style="table-layout: fixed; width: 100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fsecuritylabs.datadoghq.com%2Farticles%2Fdecoding-the-recommendations-for-npm-maintainers%2F%3Futm_source=tldrinfosec/1/0100019ba3157d3b-d9b6be51-f133-4b3e-8064-7240159245b1-000000/mWYJFzubub8k-RFtSExrnGNtSDf5kb4514MkzKNyGHI=439">
<span>
<strong>Decoding the GitHub recommendations for npm maintainers (13 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Following recent npm supply chain attacks, GitHub's hardening guidance centers on three controls: adopting Trusted Publishing Framework (OIDC-based short-lived credentials instead of long-lived tokens), enforcing 2FA for all publishing operations, and using WebAuthn/passkeys instead of TOTP for phishing-resistant authentication. npm deprecated new TOTP setups in October and disabled legacy tokens in November, requiring maintainers to use granular access tokens with expiration for CI/CD automation. Maintainers should configure trusted publisher relationships in package settings, enable 2FA across all sensitive operations, and enroll WebAuthn authenticators while maintaining repository access controls.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Flabs.watchtowr.com%2Fdo-smart-people-ever-say-theyre-smart-smartertools-smartermail-pre-auth-rce-cve-2025-52691%2F%3Futm_source=tldrinfosec/1/0100019ba3157d3b-d9b6be51-f133-4b3e-8064-7240159245b1-000000/Qti7VK6qs4GdYaiPY_GdTh1VoosOk9UjNuqdbgzUb4E=439">
<span>
<strong>Do Smart People Ever Say They're Smart? (SmarterTools SmarterMail Pre-Auth RCE CVE-2025-52691) (14 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
A critical pre-auth remote code execution flaw (CVE-2025-52691) in SmarterTools SmarterMail, a business email and collaboration server for Windows and Linux, arises from an unauthenticated file upload endpoint that accepts attacker-controlled parameters. It includes a GUID used to construct file paths, enabling arbitrary file writes via path traversal and by crafting a multipart/form-data request with specific context and contextData values. With a malicious file, an attacker can place a web shell in the webroot and gain full remote code execution.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.exaforce.com%2Fblogs%2Flog-rings-dont-lie-historical-enumeration-in-plain-sight%3Futm_source=tldrinfosec/1/0100019ba3157d3b-d9b6be51-f133-4b3e-8064-7240159245b1-000000/dQYKEDXk0duXj9CTicND9XvkyeC_JwSY9joZUEc6Lgw=439">
<span>
<strong>The Log Rings Don't Lie: Historical Enumeration In Plain Sight (12 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Logs are an essential tool for defenders to monitor for breaches and investigate incidents. However, they can also be a valuable enumeration tool for attackers. This article provides a comprehensive overview of how attackers can abuse logs for enumeration in AWS, Azure, and GCP. Security teams should treat logs with care and enforce the principle of least privilege where possible.
</span>
</span>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">π§βπ»</span></div>
</div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;">
<h1><strong>Launches & Tools</strong></h1>
</div>
</div>
</td></tr></tbody></table>
<table style="table-layout: fixed; width: 100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.sumologic.com%2Flp%2Faws-logs-security%3Futm_medium=email%26utm_source=TLDR%26utm_term=cloud-siem%26utm_id=701VK00000KhKeHYAV%26utm_campaign=20251204-global-awsmp-TLDR-secondary/1/0100019ba3157d3b-d9b6be51-f133-4b3e-8064-7240159245b1-000000/46Sh8gsF70-Q_C3L8ei3p4wPlRFbdQxedymyzqAOQ3Q=439">
<span>
<strong>An active incident is the worst time to stitch together log data (Sponsor)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
You don't want to deal with data visibility nightmares to understand if a threat is real. Sumo Logic unifies AWS, GCP, Azure, and 450+ other tools into a single platform - powered by <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.sumologic.com%2Fblog%2Fwelcome-dojo-ai-agents-soc%3Futm_medium=email%26utm_source=TLDR%26utm_term=cloud-siem%26utm_id=701VK00000KhKeHYAV%26utm_campaign=20251204-global-awsmp-TLDR-secondary/1/0100019ba3157d3b-d9b6be51-f133-4b3e-8064-7240159245b1-000000/-AyvfNnENBfaa1YUWvWUQIF4osAxt7l2uHP-Uw_Eu9E=439" rel="noopener noreferrer" target="_blank"><span>multi-agent AI</span></a> that surfaces root causes, prioritizes key events, and guides analysts through resolution. Read the <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.sumologic.com%2Fbriefs%2Fgartner-siem-critical-capabilities%3Futm_medium=email%26utm_source=TLDR%26utm_term=cloud-siem%26utm_id=701VK00000KhKeHYAV%26utm_campaign=20251204-global-awsmp-TLDR-secondary/1/0100019ba3157d3b-d9b6be51-f133-4b3e-8064-7240159245b1-000000/902-yrHUx35yzvH7pfzSVTcg8ez-VI18XE_WTSQyMYo=439" rel="noopener noreferrer" target="_blank"><span>Gartner Critical Capabilities report</span></a> to learn how Sumo Logic compares to other SIEM competitors.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fblackbird.ai%2F%3Futm_source=tldrinfosec/1/0100019ba3157d3b-d9b6be51-f133-4b3e-8064-7240159245b1-000000/S2x28IeAafoVln1Xoe18350DnCnuVPHwYBINUU7tWFU=439">
<span>
<strong>Blackbird.AI (Product Launch)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Blackbird.AI provides an AI-powered narrative intelligence platform that helps organizations detect, analyze, and respond to harmful or misleading online narratives and influence campaigns that threaten reputation, operations, and security.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fgithub.com%2Fcyberjez%2FPQC-Scanner%3Futm_source=tldrinfosec/1/0100019ba3157d3b-d9b6be51-f133-4b3e-8064-7240159245b1-000000/VCmGVvu3OqyCMjBnSXXv54iLXrgLWF75OR4EzRX5_dw=439">
<span>
<strong>PQC Network Scanner (GitHub Repo)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
The PQC Network Scanner is a quantum-focused network assessment tool that scans TLS/SSL certificates across environments to identify systems vulnerable to future quantum attacks.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fgithub.com%2FLLNL%2FOGhidra%3Futm_source=tldrinfosec/1/0100019ba3157d3b-d9b6be51-f133-4b3e-8064-7240159245b1-000000/eO7oyxEZN92aPw5CcI8jhXOjMYi_WUBTa7aGW04qoPI=439">
<span>
<strong>OGhidra (GitHub Repo)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
OGhidra bridges LLMs via Ollama with Ghidra to enable AI-driven binary analysis through natural language.
</span>
</span>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">π</span></div></div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><strong><h1>Miscellaneous</h1></strong></div>
</div>
</td></tr></tbody></table>
<table bgcolor="" style="table-layout: fixed; width: 100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwords.filippo.io%2Fgosum%2F%3Futm_source=tldrinfosec/1/0100019ba3157d3b-d9b6be51-f133-4b3e-8064-7240159245b1-000000/KqXct_9oskAs0I4YC8T76FaGYeuHnYRR2lCCc37m6tI=439">
<span>
<strong>go.sum Is Not a Lockfile (4 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Go's go.sum file is not a lockfile and has no effect on version resolutionβit's purely a local cache for the Go Checksum Database to ensure cryptographic integrity. Developers should use go.mod for dependency analysis, which, since Go 1.17, lists all transitive dependencies with exact versions and functions as both a manifest and lockfile. This design eliminates diamond dependency conflicts and prevents automatic upgrades to potentially compromised dependency versions.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fpebblebed.com%2Fblog%2Fkernel-bugs%3Futm_source=tldrinfosec/1/0100019ba3157d3b-d9b6be51-f133-4b3e-8064-7240159245b1-000000/VgwdplODKpjjXvTtQCN3klHVskvodwIoJs0MmoBGeL0=439">
<span>
<strong>Kernel bugs hide for 2 years on average. Some hide for 20 (18 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Analysis of 125,183 Linux kernel bugs with Fixes: tags revealed an average bug lifetime of 2.1 years, with race conditions averaging 5.1 years, and the longest-lived bug persisted for 20.7 years. Detection rates improved dramatically, from 0% bugs found within one year in 2010 to 69% in 2022, driven by tools such as Syzkaller and kernel sanitizers. The VulnBERT model achieved 92.2% recall and a 1.2% false-positive rate by combining CodeBERT embeddings with 51 handcrafted features targeting patterns such as unbalanced refcounts and missing NULL checks.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Farstechnica.com%2Fsecurity%2F2026%2F01%2Fchatgpt-falls-to-new-data-pilfering-attack-as-a-vicious-cycle-in-ai-continues%2F%3Futm_source=tldrinfosec/1/0100019ba3157d3b-d9b6be51-f133-4b3e-8064-7240159245b1-000000/YhEW7oDdJY54aDnv_hmkM0QwiFdrmY_nbtWrY8ontls=439">
<span>
<strong>ChatGPT falls to new data-pilfering attack as a vicious cycle in AI continues (4 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Security researchers at Radware show how a new βZombieAgentβ attack revives a previously blocked ChatGPT dataβexfiltration technique by tweaking prompts to bypass URL restrictions and leak information character by character. Indirect prompt injection and weak separation between user instructions and embedded content keep LLM agents vulnerable, forcing vendors into an endless patch-and-bypass cycle rather than a fundamental fix.
</span>
</span>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">β‘</span></div></div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;">
<h1><strong>Quick Links</strong></h1>
</div>
</div>
</td></tr></tbody></table>
<table bgcolor="" style="table-layout: fixed; width: 100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fblog.google%2Finnovation-and-ai%2Ftechnology%2Fsafety-security%2Fserpapi-lawsuit%2F%3Futm_source=tldrinfosec/1/0100019ba3157d3b-d9b6be51-f133-4b3e-8064-7240159245b1-000000/Ik9floOsa2F2Ra__4El0HujdL-ptqMqe88tzwp6bYhM=439">
<span>
<strong>Why we're taking legal action against SerpApi's unlawful scraping (1 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Google filed a lawsuit against SerpApi for circumventing security measures through bot networks, cloaking techniques, and fake crawler identities to scrape and resell copyrighted content from search results.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fhackread.com%2Fdata-breach-us-gas-stations-company%2F%3Futm_source=tldrinfosec/1/0100019ba3157d3b-d9b6be51-f133-4b3e-8064-7240159245b1-000000/Yfn5B2ObTz7OKQ98hReL4O5YdyRTnXPYuXVOXNoVxo8=439">
<span>
<strong>Major Data Breach Hits Company Operating 150 Gas Stations in the US (2 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Gulshan Management Services, operator of Handi Plus and Handi Stop gas stations, disclosed a September 2025 breach exposing SSNs, financial data, and government IDs of 377,000+ individuals.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fthehackernews.com%2F2026%2F01%2Fcoolify-discloses-11-critical-flaws.html%3Futm_source=tldrinfosec/1/0100019ba3157d3b-d9b6be51-f133-4b3e-8064-7240159245b1-000000/IQENVaujontN1LYQIvw3uWKmCpb3ywi4O4jHEaTRAFo=439">
<span>
<strong>Coolify Discloses 11 Critical Flaws Enabling Full Server Compromise on Self-Hosted Instances (4 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Cybersecurity researchers reveal 11 critical vulnerabilities in Coolify, a popular selfβhosting platform, that enable authenticated lowβprivileged users to achieve root command execution, escape containers, and even obtain the server's root SSH key, potentially compromising entire infrastructures.
</span>
</span>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td align="left" style="word-break: break-word; vertical-align: top; padding: 5px 10px;">
<p style="padding: 0; margin: 0; font-size: 22px; color: #000000; line-height: 1.6; font-weight: bold;">
Love TLDR? Tell your friends and get rewards!
</p>
</td></tr>
<tr><td class="container" style="padding: 0px 10px 15px;">
<div class="text-block">
Share your referral link below with friends to get free TLDR swag!
</div>
</td></tr>
<tr><td align="left" style="padding: 10px;">
<div class="text-block">
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Frefer.tldr.tech%2F78de0e20%2F8/1/0100019ba3157d3b-d9b6be51-f133-4b3e-8064-7240159245b1-000000/S6N4061lviD1NFVeJ3jHHI9tdgpX5r81uP0mdDoqcdg=439" style="color: #464ba4; text-decoration: underline;">https://refer.tldr.tech/78de0e20/8</a>
</div>
</td></tr>
<tr></tr>
<tr><td align="left" style="padding:5px 10px;">
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fhub.sparklp.co%2Fsub_d62447d5a74a%2F8/1/0100019ba3157d3b-d9b6be51-f133-4b3e-8064-7240159245b1-000000/38pkl9eHhVfmNwvjiLdPKz-BNKu2Bo7F70l1o6nT2fo=439" style="font-size: 16px; line-height: 1.6; padding: 10px 0; display: inline-block; text-decoration: underline;"><span style="mso-text-raise:13pt; text-decoration: underline;">Track your referrals here.</span></a>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td align="left" style="word-break: break-word; vertical-align: top; padding: 5px 10px;">
<p style="padding: 0; margin: 0; font-size: 22px; color: #000000; line-height: 1.6; font-weight: bold;">
Want to advertise in TLDR? π°
</p>
<div class="text-block" style="margin-top: 10px;">
If your company is interested in reaching an audience of cybersecurity professionals and decision makers, you may want to <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fadvertise.tldr.tech%2F%3Futm_source=tldrinfosec%26utm_medium=newsletter%26utm_campaign=advertisecta/1/0100019ba3157d3b-d9b6be51-f133-4b3e-8064-7240159245b1-000000/rO4o3KwqGmUuJLewmY4bf9nhE5oYqpJtSNmYsVheX9Q=439"><strong><span>advertise with us</span></strong></a>.
</div>
<br>
<!-- New "Want to work at TLDR?" section -->
<p style="padding: 0; margin: 0; font-size: 22px; color: #000000; line-height: 1.6; font-weight: bold;">
Want to work at TLDR? πΌ
</p>
<div class="text-block" style="margin-top: 10px;">
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fjobs.ashbyhq.com%2Ftldr.tech/1/0100019ba3157d3b-d9b6be51-f133-4b3e-8064-7240159245b1-000000/ePGGsFKr3Fl978izuG3zldm2JWSE8FQd5v5mRPoy3Go=439" rel="noopener noreferrer" style="color: #0000EE; text-decoration: underline;" target="_blank"><strong>Apply here</strong></a>,
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fjobs.ashbyhq.com%2Ftldr.tech%2Fc227b917-a6a4-40ce-8950-d3e165357871/1/0100019ba3157d3b-d9b6be51-f133-4b3e-8064-7240159245b1-000000/vshSZBOzqkKZlGLGeTkRyl2JJz-Visw_D-Gvos4VUh4=439" rel="noopener noreferrer" style="color: #0000EE; text-decoration: underline;" target="_blank"><strong>create your own role</strong></a> or send a friend's resume to <a href="mailto:jobs@tldr.tech" style="color: #0000EE; text-decoration: underline;">jobs@tldr.tech</a> and get $1k if we hire them! TLDR is one of <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.linkedin.com%2Ffeed%2Fupdate%2Furn:li:activity:7401699691039830016%2F/1/0100019ba3157d3b-d9b6be51-f133-4b3e-8064-7240159245b1-000000/MUzWG3C_vtJSct4XsTXr4h5mRdaYxlAZ8TSpr2_m59U=439" rel="noopener noreferrer" style="color: #0000EE; text-decoration: underline;" target="_blank"><strong>Inc.'s Best Bootstrapped businesses</strong></a> of 2025.
</div>
<br>
<div class="text-block">
If you have any comments or feedback, just respond to this email!
<br>
<br> Thanks for reading,
<br>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.linkedin.com%2Fin%2Fprasannagautam%2F/1/0100019ba3157d3b-d9b6be51-f133-4b3e-8064-7240159245b1-000000/qV7MpW7EzHP4AtuuOxaZ82vg341yzc9IGsJ58FMAJCo=439"><span>Prasanna Gautam</span></a>, <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.linkedin.com%2Fin%2Fericfernandezdelcampo%2F/1/0100019ba3157d3b-d9b6be51-f133-4b3e-8064-7240159245b1-000000/SC5bdUiCt0BxkwOsRgDY-QA72URfPaVhpGJ_jTCR2Uk=439"><span>Eric Fernandez</span></a> & <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.linkedin.com%2Fin%2Fsammy-tbeile%2F/1/0100019ba3157d3b-d9b6be51-f133-4b3e-8064-7240159245b1-000000/HvqoKr4g-9fVpEMLgLMNIGiMDWt0toNU5cKBT360GtM=439"><span>Sammy Tbeile</span></a>
<br>
<br>
</div>
<br>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block" id="testing-id">
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Ftldr.tech%2Finfosec%2Fmanage%3Femail=silk.theater.56%2540fwdnl.com/1/0100019ba3157d3b-d9b6be51-f133-4b3e-8064-7240159245b1-000000/BGHkPGXjGvEIG-zIO8pbD8zplYnzldKe4wMKSdm5Gjk=439">Manage your subscriptions</a> to our other newsletters on tech, startups, and programming. Or if TLDR Information Security isn't for you, please <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fa.tldrnewsletter.com%2Funsubscribe%3Fep=1%26l=8d9cea11-3e94-11ed-9a32-0241b9615763%26lc=156924ca-84b7-11f0-8d58-47c5c04ad337%26p=dc4cf092-ed2d-11f0-bab0-afc9b65908b7%26pt=campaign%26pv=4%26spa=1767967337%26t=1767967653%26s=3dec417d1ff36aee34c0d9418fc7ea280346cffb651c5b5f4647534f48021d7d/1/0100019ba3157d3b-d9b6be51-f133-4b3e-8064-7240159245b1-000000/ve9-2mkBXkIU_qwGCEU7GWVREmQRuYWF-4U_EzTE3Zs=439">unsubscribe</a>.
<br>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
</td></tr></tbody></table>
</td></tr></tbody></table>
</td></tr></tbody></table>
<img alt="" src="http://tracking.tldrnewsletter.com/CI0/0100019ba3157d3b-d9b6be51-f133-4b3e-8064-7240159245b1-000000/FObIyRHEuxHWYkScHWeMpdUH0hhiif7_2THNit43DG0=439" style="display: none; width: 1px; height: 1px;">
</body></html>