<!DOCTYPE html><html lang="en"><head><meta http-equiv="Content-Type" content="text/html charset=UTF-8"><meta charset="UTF-8"><meta name="viewport" content="width=device-width"><meta name="x-apple-disable-message-reformatting"><title>TLDR InfoSec</title><meta name="color-scheme" content="light dark"><meta name="supported-color-schemes" content="light dark"><style type="text/css">
:root {
color-scheme: light dark; supported-color-schemes: light dark;
}
*,
*:after,
*:before {
-webkit-box-sizing: border-box; -moz-box-sizing: border-box; box-sizing: border-box;
}
* {
-ms-text-size-adjust: 100%; -webkit-text-size-adjust: 100%;
}
html,
body,
.document {
width: 100% !important; height: 100% !important; margin: 0; padding: 0;
}
body {
-webkit-font-smoothing: antialiased; -moz-osx-font-smoothing: grayscale; text-rendering: optimizeLegibility;
}
div[style*="margin: 16px 0"] {
margin: 0 !important;
}
table,
td {
mso-table-lspace: 0pt; mso-table-rspace: 0pt;
}
table {
border-spacing: 0; border-collapse: collapse; table-layout: fixed; margin: 0 auto;
}
img {
-ms-interpolation-mode: bicubic; max-width: 100%; border: 0;
}
*[x-apple-data-detectors] {
color: inherit !important; text-decoration: none !important;
}
.x-gmail-data-detectors,
.x-gmail-data-detectors *,
.aBn {
border-bottom: 0 !important; cursor: default !important;
}
.btn {
-webkit-transition: all 200ms ease; transition: all 200ms ease;
}
.btn:hover {
background-color: #f67575; border-color: #f67575;
}
* {
font-family: Arial, Helvetica, sans-serif; font-size: 18px;
}
@media screen and (max-width: 600px) {
.container {
width: 100%; margin: auto;
}
.stack {
display: block!important; width: 100%!important; max-width: 100%!important;
}
.btn {
display: block; width: 100%; text-align: center;
}
}
body,
p,
td,
tr,
.body,
table,
h1,
h2,
h3,
h4,
h5,
h6,
div,
span {
background-color: #FEFEFE !important; color: #010101 !important;
}
@media (prefers-color-scheme: dark) {
body,
p,
td,
tr,
.body,
table,
h1,
h2,
h3,
h4,
h5,
h6,
div,
span {
background-color: #27292D !important; color: #FEFEFE !important;
}
}
a {
color: inherit !important; text-decoration: underline !important;
}
</style><!--[if mso | ie]>
<style type="text/css">
a {
background-color: #FEFEFE !important; color: #010101 !important;
}
@media (prefers-color-scheme: dark) {
a {
background-color: #27292D !important; color: #FEFEFE !important;
}
}
</style>
<![endif]--></head><body class="">
<div style="display: none; max-height: 0px; overflow: hidden;">Frontier coding agents have already collapsed the economics of exploit development. The consequence is that elite attention is no longer scarce β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β </div>
<div style="display: none; max-height: 0px; overflow: hidden;">
<br>
</div>
<table align="center" class="document"><tbody><tr><td valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" class="container" width="600"><tbody><tr class="inner-body"><td>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr class="header"><td bgcolor="" class="container">
<table width="100%"><tbody><tr><td class="container">
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" style="margin-top: 0px;" width="100%"><tbody><tr><td style="padding: 0px;">
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div style="text-align: center;">
<span style="margin-right: 0px;"><a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Ftldr.tech%2Finfosec%3Futm_source=tldrinfosec/1/0100019d9b9a12dc-5f71d5ab-92ef-480a-8f23-fb91f1b0ed65-000000/CbYHGE4QcWX_mQFV4akyroKJrFbyCa9vnt_BcBgAAS4=452" rel="noopener noreferrer" target="_blank"><span>Sign Up</span></a>
|<span style="margin-right: 2px; margin-left: 2px;"><a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fadvertise.tldr.tech%2F%3Futm_source=tldrinfosec%26utm_medium=newsletter%26utm_campaign=advertisetopnav/1/0100019d9b9a12dc-5f71d5ab-92ef-480a-8f23-fb91f1b0ed65-000000/meMgWdG_FEuFny1SOSgwWWPqs4dfYPhZ0tBIqziGIow=452" rel="noopener noreferrer" target="_blank"><span>Advertise</span></a></span>|<span style="margin-left: 2px;"><a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fa.tldrnewsletter.com%2Fweb-version%3Fep=1%26lc=156924ca-84b7-11f0-8d58-47c5c04ad337%26p=acc028d2-3a51-11f1-9b27-f3920ac6856d%26pt=campaign%26t=1776432059%26s=c71f4b7f21182bf70b7b90ef128c02aa45dfbd03d7792b454aaca39e4ab53be6/1/0100019d9b9a12dc-5f71d5ab-92ef-480a-8f23-fb91f1b0ed65-000000/eAsogczUHcJRRU1eoszQssjGh9yBjk0rtKtM6ZeESy8=452"><span>View Online</span></a></span>
<br>
</span></div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="text-align: center;"><span data-darkreader-inline-color="" style="--darkreader-inline-color:#3db3ff; color: rgb(51, 175, 255) !important; font-size: 30px;">T</span><span style="font-size: 30px;"><span data-darkreader-inline-color="" style="color: rgb(232, 192, 96) !important; --darkreader-inline-color:#e8c163; font-size:30px;">L</span><span data-darkreader-inline-color="" style="color: rgb(101, 195, 173) !important; --darkreader-inline-color:#6ec7b2; font-size:30px;">D</span></span><span data-darkreader-inline-color="" style="--darkreader-inline-color:#dd6e6e; color: rgb(220, 107, 107) !important; font-size: 30px;">R</span>
<br>
</td></tr></tbody></table>
<br>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr id="together-with"><td align="center" height="20" style="vertical-align:middle !important;" valign="middle" width="100%"><strong style="vertical-align:middle !important; height: 100%;">Together With </strong>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.catonetworks.com%2Fresources%2Fsasefy-2026%2F%3Futm_source=tldr-ai%26utm_medium=newsletter%26utm_campaign=ai-security%26utm_content=20260417/1/0100019d9b9a12dc-5f71d5ab-92ef-480a-8f23-fb91f1b0ed65-000000/yFSgZ4QhPTZXEH0H-C5ffg9Jh6PvhY54-yiYeu4XMH8=452"><img src="https://images.tldr.tech/cato2.png" valign="middle" style="vertical-align: middle !important; height: 100%;" alt="Cato Networks"></a></td></tr></tbody></table>
<table style="table-layout: fixed; width:100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;">
<div style="text-align: center;">
<h1><strong>TLDR Information Security <span id="date">2026-04-17</span></strong></h1>
</div>
</td></tr></tbody></table>
<table style="table-layout: fixed; width:100%;" width="100%"><tbody><tr id="sponsy-copy"><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.catonetworks.com%2Fresources%2Fsasefy-2026%2F%3Futm_source=tldr-ai%26utm_medium=newsletter%26utm_campaign=ai-security%26utm_content=20260417/2/0100019d9b9a12dc-5f71d5ab-92ef-480a-8f23-fb91f1b0ed65-000000/PBVUDewey4V3FKWbF8U7_gJmGq-Yo8Gzg0Jkh89Lz10=452">
<span>
<strong>SASEfy 2026: Take AI Security to the Edge with Cato, Microsoft, and Forrester (Sponsor)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
What does Zero Trust look like in the age of agents?<p></p><p>How can enterprises navigate AI risk without killing innovation?</p><p>What strategic opportunities does AI create?</p><p>Find answers to your most pressing AI security questions at <strong>SASEfy by Cato Networks</strong> - a <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.catonetworks.com%2Fresources%2Fsasefy-2026%2F%3Futm_source=tldr-ai%26utm_medium=newsletter%26utm_campaign=ai-security%26utm_content=20260417/3/0100019d9b9a12dc-5f71d5ab-92ef-480a-8f23-fb91f1b0ed65-000000/SsQZiQ29_bHHjPSoU8A4bTSy4SMQaAAzgaIiyTyRsw0=452" rel="noopener noreferrer nofollow" target="_blank"><span>free virtual summit</span></a> you won't want to miss, featuring speakers from Cato, Microsoft, Forrester, and Dayforce for</p>
<p><a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.catonetworks.com%2Fresources%2Fsasefy-2026%2F%3Futm_source=tldr-ai%26utm_medium=newsletter%26utm_campaign=ai-security%26utm_content=20260417/4/0100019d9b9a12dc-5f71d5ab-92ef-480a-8f23-fb91f1b0ed65-000000/iqzrZsVGg2Uv84vDtV3-rlirWho2ECvXFr5J36qqZug=452" rel="noopener noreferrer nofollow" target="_blank"><span>Join live on May 20</span></a> to learn how to: </p>
<ul>
<li>Identify where AI risk exists </li>
</ul>
<ul>
<li>Secure and govern AI without added complexity </li>
</ul>
<ul>
<li>Adapt Zero Trust for agentic AI </li>
</ul>
<p>Can't attend? <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.catonetworks.com%2Fresources%2Fsasefy-2026%2F%3Futm_source=tldr-ai%26utm_medium=newsletter%26utm_campaign=ai-security%26utm_content=20260417/5/0100019d9b9a12dc-5f71d5ab-92ef-480a-8f23-fb91f1b0ed65-000000/ovvtZU0o168W7xZGJ3q_bjbpVVflvnUUrFFfbXZaCyQ=452" rel="noopener noreferrer nofollow" target="_blank"><span>Register anyway to access the recording</span></a>
</p>
</span></span></div>
</td></tr></tbody></table>
</td></tr></tbody></table>
</td></tr></tbody></table>
</td></tr>
<tr bgcolor=""><td class="container">
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td style="padding: 0px;">
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">π</span></div></div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;">
<h1><strong>Attacks & Vulnerabilities</strong></h1>
</div>
</div>
</td></tr></tbody></table>
<table style="table-layout: fixed; width: 100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Ftechcrunch.com%2F2026%2F04%2F16%2Ffashion-retailer-express-left-customers-personal-data-and-order-details-exposed-to-the-internet%2F%3Futm_source=tldrinfosec/1/0100019d9b9a12dc-5f71d5ab-92ef-480a-8f23-fb91f1b0ed65-000000/c9HsHtp2mU-ljhzvA13FYKf6-1MDP0h5jjyLnhLifxk=452">
<span>
<strong>Fashion Retailer Express Left Customers' Personal Data and Order Details Exposed to the Internet (2 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Express exposed order confirmation pages that leaked customer names, contact details, addresses, order contents, and partial card data, using easily guessable sequential order numbers. The bug was found by Rey Bango while probing a fraudulent order and confirmed by TechCrunch, then patched after they notified Express.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Flinks.tldrnewsletter.com%2F1qJZPJ/1/0100019d9b9a12dc-5f71d5ab-92ef-480a-8f23-fb91f1b0ed65-000000/pYxKg67XkE7jVFwq-KWqAjO7aKkrpjCvx6QZQm_kfVE=452">
<span>
<strong>Data Breach at Tennessee Hospital Affects 337,000 (1 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Cookeville Regional Medical Center in Tennessee found a network intrusion on July 14, 2025, with files stolen in the days before. Exposed data may include names, dates of birth, addresses, SSNs, driver's license numbers, financial details, treatment records, and insurance information for over 337,000 people. Rhysida ransomware actors listed the hospital, tried to sell 500 GB of data, then released it after no sale.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fsecurityaffairs.com%2F190869%2Fintelligence%2Fsweden-reports-cyberattack-attempt-on-heating-plant-amid-rising-energy-threats.html%3Futm_source=tldrinfosec/1/0100019d9b9a12dc-5f71d5ab-92ef-480a-8f23-fb91f1b0ed65-000000/PChibMnZYTy8--q1Gn9erFDi1dWSv0YtX-9xBLi9T78=452">
<span>
<strong>Sweden Reports Cyberattack Attempt on Heating Plant Amid Rising Energy Threats (2 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Sweden's Civil Defense Minister Carl-Oskar Bohlin publicly confirmed for the first time a failed 2025 cyberattack on a western Swedish heating plant, attributing it to a pro-Russian group tied to Russian intelligence. The incident sits within a broader campaign of 150+ sabotage and malign activity events across Europe that Western officials have linked to Russia since the February 2022 invasion of Ukraine. Operators of district heating, water, and grid infrastructure should assume active targeting, segment OT/IT networks, audit remote-access paths into SCADA/ICS environments, enforce MFA on vendor and engineering accounts, and hunt for the TTPs tied to Sandworm and adjacent GRU-linked clusters that have dominated recent European ICS intrusions.
</span>
</span>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">π§ </span></div>
</div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;">
<h1><strong>Strategies & Tactics</strong></h1>
</div>
</div>
</td></tr></tbody></table>
<table style="table-layout: fixed; width: 100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fraymii.org%2Fs%2Ftutorials%2FPut_your_SSH_keys_in_your_TPM_chip.html%3Futm_source=tldrinfosec/1/0100019d9b9a12dc-5f71d5ab-92ef-480a-8f23-fb91f1b0ed65-000000/49qvLZnCTBvrFriSAJuyDPQox2O4cyfxsVZvTZE-AlI=452">
<span>
<strong>Put Your SSH Keys in Your TPM Chip! (5 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
This post walks through storing SSH private keys inside a TPM chip via the tpm2-pkcs11 stack on Linux, covering token creation, importing RSA/ECC256 keys generated offline, and wiring the PKCS#11 provider into ~/.ssh/config so keys never sit as plaintext files. Some tradeoffs of TPMs vs portable HSMs like Yubikeys: TPMs are device-bound with no physical-presence requirement, consumer motherboards often wipe the TPM on BIOS updates, and historical flaws like ROCA (CVE-2017-15361) weakened RSA keys generated by Infineon TPM chips. Defenders should prefer offline-generated, password-protected keys imported into the TPM with secure backups, add users to the tss group rather than running tooling as root, and validate token contents with tpm2_ptool verify and pkcs11-tool --list-objects before decommissioning filesystem-based keys.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fsockpuppet.org%2Fblog%2F2026%2F03%2F30%2Fvulnerability-research-is-cooked%2F%3Futm_source=tldrinfosec/1/0100019d9b9a12dc-5f71d5ab-92ef-480a-8f23-fb91f1b0ed65-000000/5nhRILsMVT4JLmn8Ftci_iGoPo5sjjYs-_w0os3Xplk=452">
<span>
<strong>Vulnerability Research Is Cooked (7 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Frontier coding agents have already collapsed the economics of exploit development. The consequence is that elite attention is no longer scarce: attackers will stop carefully picking Chrome-tier targets and instead aim agents at everything, with databases, routers, printers, hospital systems, and regional bank infrastructure, where patching requires someone physically showing up, sitting squarely in the blast radius. Defenders should assume full-chain exploits against layered sandboxes are imminent, accelerate memory-safe migrations and attack surface reduction, stand up agent loops against their own codebases before adversaries do, and start advocating now for vulnerability research rights before lawmakers react to the first AI-driven ransomware news cycle with bad policy.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fblog.alexbeals.com%2Fposts%2Freverse-engineering-ios-deeplinking-for-shortcuts%3Futm_source=tldrinfosec/1/0100019d9b9a12dc-5f71d5ab-92ef-480a-8f23-fb91f1b0ed65-000000/YuMPyfTq30UUpojrB6CeWbgjAiUxqaLYoOtyMTYRZik=452">
<span>
<strong>Reverse Engineering iOS Shortcuts Deeplinks (7 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
After a conversation with a friend, the author of this post set out to research whether iOS Shortcuts could be created using deeplinks. The post delves into the process of reverse engineering the URL scheme used by Shortcuts for deeplinking but unfortunately concludes that it isn't possible. Shortcuts is backed by a SQLite database that could possibly enable this work, but would require a jailbroken device to edit.
</span>
</span>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">π§βπ»</span></div>
</div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;">
<h1><strong>Launches & Tools</strong></h1>
</div>
</div>
</td></tr></tbody></table>
<table style="table-layout: fixed; width: 100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fdrata.com%2Fc%2Fdemo%2F%3Futm_source=TLDR_infosec%26utm_medium=display%26utm_campaign=20260220_drata_for_startups_DG_all_ALL/1/0100019d9b9a12dc-5f71d5ab-92ef-480a-8f23-fb91f1b0ed65-000000/f4odwRshlIiqpErgq_fKQbOoS2Mg86s5SFbngVHQjzk=452">
<span>
<strong>Manual GRC doesn't scale -- move to Agentic Trust Management with Drata (Sponsor)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Compliance doesn't end when you get your SOC 2 certificate. Security reviews, audits, and vendor questionnaires demand constant attention -- and leave GRC teams too overwhelmed to actually think about security strategy.<p></p><p>Drata's <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fdrata.com%2Fc%2Fdemo%2F%3Futm_source=TLDR_infosec%26utm_medium=display%26utm_campaign=20260220_drata_for_startups_DG_all_ALL/2/0100019d9b9a12dc-5f71d5ab-92ef-480a-8f23-fb91f1b0ed65-000000/bK7TZHb-AzKwKTmOho1HGBmD1FUMjR3OF_eLEs5o4hM=452" rel="noopener noreferrer nofollow" target="_blank"><span>Agentic Trust Management Platform</span></a> automates the most time-consuming tasks, from security questionnaires to continuous evidence collection, <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fdrata.com%2Fc%2Fdemo%2F%3Futm_source=TLDR_infosec%26utm_medium=display%26utm_campaign=20260220_drata_for_startups_DG_all_ALL/3/0100019d9b9a12dc-5f71d5ab-92ef-480a-8f23-fb91f1b0ed65-000000/OhcTT9BHKY7k-VFa0ROlakfdk0ExG9_cBUNld3qa33s=452" rel="noopener noreferrer nofollow" target="_blank"><span>saving teams hundreds of hours</span></a> each year. Drata's AI chases down documents, so you can focus on outcomes.</p>
<p>With Drata's built-in Trust Center, you can streamline security reviews, share your security posture, and build trust faster throughout the deal process.</p>
<p><a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fdrata.com%2Fc%2Fdemo%2F%3Futm_source=TLDR_infosec%26utm_medium=display%26utm_campaign=20260220_drata_for_startups_DG_all_ALL/4/0100019d9b9a12dc-5f71d5ab-92ef-480a-8f23-fb91f1b0ed65-000000/C2Xqp7gFMR2AUbXG8MHIbejiWzlnxnBm7BoC_jEx08k=452" rel="noopener noreferrer nofollow" target="_blank"><span>β‘οΈ Automate and accelerate trust with Drata β‘οΈ</span></a>
</p>
</span></span></div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fartemissecurity.com%2F%3Futm_source=tldrinfosec/1/0100019d9b9a12dc-5f71d5ab-92ef-480a-8f23-fb91f1b0ed65-000000/TQERIhzC7JP6Ed35zfFOZxcKoMYT16efetI9-YxrEd4=452">
<span>
<strong>Artemis (Product Launch)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Artemis offers a threat detection and response platform that uses customer telemetry and business context to spot abnormal behavior, investigate alerts, map attack paths, and trigger automated remediation across applications, users, machines, and cloud workloads.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.aikido.dev%2Fblog%2Fbetterleaks-gitleaks-successor%3Futm_source=tldrinfosec/1/0100019d9b9a12dc-5f71d5ab-92ef-480a-8f23-fb91f1b0ed65-000000/hBM4jtuf9mpQ9HWts6YDOw9kQmrHQHACrPFJGGYscuw=452">
<span>
<strong>Introducing Betterleaks, an Open Source Secrets Scanner by the Author of Gitleaks (4 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Betterleaks is a pure-Go drop-in replacement for Gitleaks that keeps existing CLI flags and configs while adding CEL-based rule validation, default multi-layer encoding detection, and parallelized git scanning. Its standout filter swaps entropy for BPE token-efficiency scoring, lifting recall on the CredData benchmark from 70.4% to 98.6%, and the CLI is explicitly designed to be driven by coding agents like Claude Code, Codex, and Cursor alongside humans. Teams already running Gitleaks in CI can swap the binary today and gain speed and far fewer false negatives. The v2 roadmap adds support for more source types, optional LLM-assisted classification, and auto-revocation via provider APIs.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fgithub.com%2Ftracebit-com%2Fawesome-deception%3Futm_source=tldrinfosec/1/0100019d9b9a12dc-5f71d5ab-92ef-480a-8f23-fb91f1b0ed65-000000/PumrREgmc7c59vVgK2F29shbc9QpCnl2gCcqrP2EwFw=452">
<span>
<strong>Awesome Deception (GitHub Repo)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Awesome Deception is a collection of articles, papers, conferences, guides, and tools related to deception in cybersecurity.
</span>
</span>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">π</span></div></div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><strong><h1>Miscellaneous</h1></strong></div>
</div>
</td></tr></tbody></table>
<table bgcolor="" style="table-layout: fixed; width: 100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.theregister.com%2F2026%2F04%2F15%2Fproject_glasswing_cves%2F%3Futm_source=tldrinfosec/1/0100019d9b9a12dc-5f71d5ab-92ef-480a-8f23-fb91f1b0ed65-000000/iUSxRzRtSIj22Rm13SJZz1hjtuAHFAmn-5oRHs2kjms=452">
<span>
<strong>Nobody Knows How Many CVEs Anthropic's Project Glasswing Has Actually Found (4 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Anthropic claims its Mythos model can find zero-days across major OSes and browsers, so it restricted access via Project Glasswing to about 50 partners. A VulnCheck researcher searched CVE records and saw 40 vulnerabilities possibly linked to Anthropic, mostly in Firefox, wolfSSL, FreeBSD, OpenSSL, and NGINX Plus. Only CVE-2026-4747 in FreeBSD is clearly tied to Mythos so far, and several older bugs lack CVEs. A public summary is expected around July.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.europol.europa.eu%2Fmedia-press%2Fnewsroom%2Fnews%2Feuropol-supported-global-operation-targets-over-75-000-users-engaged-in-ddos-attacks%3Futm_source=tldrinfosec/1/0100019d9b9a12dc-5f71d5ab-92ef-480a-8f23-fb91f1b0ed65-000000/au1zcStp-O-2Pi4q8WzD30pRtVB9fp8G9dupNdZD2qg=452">
<span>
<strong>Europol-Supported Global Operation Targets Over 75,000 Users Engaged in DDoS Attacks (3 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
21 countries ran a coordinated action week against users of DDoS-for-hire services on April 13, sending over 75,000 warning messages, making 4 arrests, seizing 53 domains, and issuing 25 search warrants. Authorities disrupted booter infrastructures, traced over 3 million user accounts, and started prevention campaigns, including search ads, URL removals, and blockchain warnings.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Farstechnica.com%2Fgadgets%2F2026%2F04%2Ftotalrecall-reloaded-tool-finds-a-side-entrance-to-windows-11s-recall-database%2F%3Futm_source=tldrinfosec/1/0100019d9b9a12dc-5f71d5ab-92ef-480a-8f23-fb91f1b0ed65-000000/GxUmLbHW1F52TYQhdDY-RM2buFQZVTRsNWJ42egauY0=452">
<span>
<strong>βTotalRecall Reloadedβ Tool Finds a Side Entrance to Windows 11's Recall Database (4 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Microsoft's Recall captures extensive on-device activity and now keeps its database encrypted behind Windows Hello, but researcher Alexander Hagenah's TotalRecall Reloaded hooks the less-protected AIXHost.exe process to siphon screenshots, OCR text, and metadata once a user authenticates, sometimes even without Windows Hello, prompting apps like Signal, AdGuard, and Brave to actively block Recall from logging their content.
</span>
</span>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">β‘</span></div></div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;">
<h1><strong>Quick Links</strong></h1>
</div>
</div>
</td></tr></tbody></table>
<table bgcolor="" style="table-layout: fixed; width: 100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Flinks.tldrnewsletter.com%2FayRUxh/1/0100019d9b9a12dc-5f71d5ab-92ef-480a-8f23-fb91f1b0ed65-000000/Ps8OlHcxGXZ5ZzpoP66xKYqiLLNQfrruxRhMO9LhJrU=452">
<span>
<strong>Microsoft's Original Windows Secure Boot Certificate Is Expiring (3 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Microsoft's 2011 UEFI Secure Boot certificates will begin expiring on June 24.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.theregister.com%2F2026%2F04%2F16%2Fnork_it_worker_scam_facilitators_sentenced_200_months%2F%3Futm_source=tldrinfosec/1/0100019d9b9a12dc-5f71d5ab-92ef-480a-8f23-fb91f1b0ed65-000000/X4CfcplU5YWXFpXWhZn6JXOQsEpgB1LkR0lOrJNMK9U=452">
<span>
<strong>Americans Who Masterminded Nork IT Worker Fraud Sentenced to 200 Months Behind Bars (3 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Kejia βTonyβ Wang and Zhenxing βDannyβ Wang drew a combined 200 months in federal prison for running laptop farms and shell companies that placed DPRK IT workers inside 100+ US firms.
</span>
</span>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td align="left" style="word-break: break-word; vertical-align: top; padding: 5px 10px;">
<p style="padding: 0; margin: 0; font-size: 22px; color: #000000; line-height: 1.6; font-weight: bold;">
Love TLDR? Tell your friends and get rewards!
</p>
</td></tr>
<tr><td class="container" style="padding: 0px 10px 15px;">
<div class="text-block">
Share your referral link below with friends to get free TLDR swag!
</div>
</td></tr>
<tr><td align="left" style="padding: 10px;">
<div class="text-block">
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Frefer.tldr.tech%2F78de0e20%2F8/1/0100019d9b9a12dc-5f71d5ab-92ef-480a-8f23-fb91f1b0ed65-000000/kdsG1hfdpGtHu-nXBqzx73B51GyBrR85nxU-olMGGpY=452" style="color: #464ba4; text-decoration: underline;">https://refer.tldr.tech/78de0e20/8</a>
</div>
</td></tr>
<tr></tr>
<tr><td align="left" style="padding:5px 10px;">
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fhub.sparklp.co%2Fsub_d62447d5a74a%2F8/1/0100019d9b9a12dc-5f71d5ab-92ef-480a-8f23-fb91f1b0ed65-000000/fdV8L3U5O7R6XdljAbEv53MzHdKReI3auP6hSvcD4EQ=452" style="font-size: 16px; line-height: 1.6; padding: 10px 0; display: inline-block; text-decoration: underline;"><span style="mso-text-raise:13pt; text-decoration: underline;">Track your referrals here.</span></a>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td align="left" style="word-break: break-word; vertical-align: top; padding: 5px 10px;">
<p style="padding: 0; margin: 0; font-size: 22px; color: #000000; line-height: 1.6; font-weight: bold;">
Want to advertise in TLDR? π°
</p>
<div class="text-block" style="margin-top: 10px;">
If your company is interested in reaching an audience of cybersecurity professionals and decision makers, you may want to <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fadvertise.tldr.tech%2F%3Futm_source=tldrinfosec%26utm_medium=newsletter%26utm_campaign=advertisecta/1/0100019d9b9a12dc-5f71d5ab-92ef-480a-8f23-fb91f1b0ed65-000000/r2LSVamRYf874ZCACjGHNtSGmdwgeB3_htqXmrKb2cc=452"><strong><span>advertise with us</span></strong></a>.
</div>
<br>
<!-- New "Want to work at TLDR?" section -->
<p style="padding: 0; margin: 0; font-size: 22px; color: #000000; line-height: 1.6; font-weight: bold;">
Want to work at TLDR? πΌ
</p>
<div class="text-block" style="margin-top: 10px;">
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fjobs.ashbyhq.com%2Ftldr.tech/1/0100019d9b9a12dc-5f71d5ab-92ef-480a-8f23-fb91f1b0ed65-000000/LqdYZZ5NiohYiAPRmJB3QdXfOHUFQYkPyUdzHXsd9Fw=452" rel="noopener noreferrer" style="color: #0000EE; text-decoration: underline;" target="_blank"><strong>Apply here</strong></a>,
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fjobs.ashbyhq.com%2Ftldr.tech%2Fc227b917-a6a4-40ce-8950-d3e165357871/1/0100019d9b9a12dc-5f71d5ab-92ef-480a-8f23-fb91f1b0ed65-000000/JGSKhqE9NswUGck2mOgCFOlzKBSEC5dhEpRw4ct86pE=452" rel="noopener noreferrer" style="color: #0000EE; text-decoration: underline;" target="_blank"><strong>create your own role</strong></a> or send a friend's resume to <a href="mailto:jobs@tldr.tech" style="color: #0000EE; text-decoration: underline;">jobs@tldr.tech</a> and get $1k if we hire them! TLDR is one of <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.linkedin.com%2Ffeed%2Fupdate%2Furn:li:activity:7401699691039830016%2F/1/0100019d9b9a12dc-5f71d5ab-92ef-480a-8f23-fb91f1b0ed65-000000/WxJxwWgDFHFdYKcqi0IZbFKmT0zcxdXVlGeP0n-Brkc=452" rel="noopener noreferrer" style="color: #0000EE; text-decoration: underline;" target="_blank"><strong>Inc.'s Best Bootstrapped businesses</strong></a> of 2025.
</div>
<br>
<div class="text-block">
If you have any comments or feedback, just respond to this email!
<br>
<br> Thanks for reading,
<br>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.linkedin.com%2Fin%2Fprasannagautam%2F/1/0100019d9b9a12dc-5f71d5ab-92ef-480a-8f23-fb91f1b0ed65-000000/q3cR-1JhFjIo4r-Qw2IKZbZk4K8u3i9QiAinn-gtT74=452"><span>Prasanna Gautam</span></a>, <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.linkedin.com%2Fin%2Fericfernandezdelcampo%2F/1/0100019d9b9a12dc-5f71d5ab-92ef-480a-8f23-fb91f1b0ed65-000000/nf67xGoWvzbx8CHCsVMtJVGKkYBvuXrbNRDQpjKL12A=452"><span>Eric Fernandez</span></a> & <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.linkedin.com%2Fin%2Fsammy-tbeile%2F/1/0100019d9b9a12dc-5f71d5ab-92ef-480a-8f23-fb91f1b0ed65-000000/v0UUlCURfM7b8Ff7IhYNjuej894fhB61tz1u84VjuZ0=452"><span>Sammy Tbeile</span></a>
<br>
<br>
</div>
<br>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block" id="testing-id">
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Ftldr.tech%2Finfosec%2Fmanage%3Femail=silk.theater.56%2540fwdnl.com/1/0100019d9b9a12dc-5f71d5ab-92ef-480a-8f23-fb91f1b0ed65-000000/GoDhE7imNX49RkdIlyzHePijbVy8_sRqTaB9MMuS4Mo=452">Manage your subscriptions</a> to our other newsletters on tech, startups, and programming. Or if TLDR Information Security isn't for you, please <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fa.tldrnewsletter.com%2Funsubscribe%3Fep=1%26l=8d9cea11-3e94-11ed-9a32-0241b9615763%26lc=156924ca-84b7-11f0-8d58-47c5c04ad337%26p=acc028d2-3a51-11f1-9b27-f3920ac6856d%26pt=campaign%26pv=4%26spa=1776430983%26t=1776432059%26s=cb40396765f166c9f5d3879fe4109b14aa8b2c974d2e2cebaa498e2bfb64da7c/1/0100019d9b9a12dc-5f71d5ab-92ef-480a-8f23-fb91f1b0ed65-000000/1fWKrEIslNKEDmEjtPDpAPrImRj9TWuGEmHOFx4kFkc=452">unsubscribe</a>.
<br>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
</td></tr></tbody></table>
</td></tr></tbody></table>
</td></tr></tbody></table>
<img alt="" src="http://tracking.tldrnewsletter.com/CI0/0100019d9b9a12dc-5f71d5ab-92ef-480a-8f23-fb91f1b0ed65-000000/CxHKiCYKf1CRJCWrF4dOuuDypga3FuYXq5GPHRILVxA=452" style="display: none; width: 1px; height: 1px;">
</body></html>