<!DOCTYPE html><html lang="en"><head><meta http-equiv="Content-Type" content="text/html charset=UTF-8"><meta charset="UTF-8"><meta name="viewport" content="width=device-width"><meta name="x-apple-disable-message-reformatting"><title>TLDR InfoSec</title><meta name="color-scheme" content="light dark"><meta name="supported-color-schemes" content="light dark"><style type="text/css">
:root {
color-scheme: light dark; supported-color-schemes: light dark;
}
*,
*:after,
*:before {
-webkit-box-sizing: border-box; -moz-box-sizing: border-box; box-sizing: border-box;
}
* {
-ms-text-size-adjust: 100%; -webkit-text-size-adjust: 100%;
}
html,
body,
.document {
width: 100% !important; height: 100% !important; margin: 0; padding: 0;
}
body {
-webkit-font-smoothing: antialiased; -moz-osx-font-smoothing: grayscale; text-rendering: optimizeLegibility;
}
div[style*="margin: 16px 0"] {
margin: 0 !important;
}
table,
td {
mso-table-lspace: 0pt; mso-table-rspace: 0pt;
}
table {
border-spacing: 0; border-collapse: collapse; table-layout: fixed; margin: 0 auto;
}
img {
-ms-interpolation-mode: bicubic; max-width: 100%; border: 0;
}
*[x-apple-data-detectors] {
color: inherit !important; text-decoration: none !important;
}
.x-gmail-data-detectors,
.x-gmail-data-detectors *,
.aBn {
border-bottom: 0 !important; cursor: default !important;
}
.btn {
-webkit-transition: all 200ms ease; transition: all 200ms ease;
}
.btn:hover {
background-color: #f67575; border-color: #f67575;
}
* {
font-family: Arial, Helvetica, sans-serif; font-size: 18px;
}
@media screen and (max-width: 600px) {
.container {
width: 100%; margin: auto;
}
.stack {
display: block!important; width: 100%!important; max-width: 100%!important;
}
.btn {
display: block; width: 100%; text-align: center;
}
}
body,
p,
td,
tr,
.body,
table,
h1,
h2,
h3,
h4,
h5,
h6,
div,
span {
background-color: #FEFEFE !important; color: #010101 !important;
}
@media (prefers-color-scheme: dark) {
body,
p,
td,
tr,
.body,
table,
h1,
h2,
h3,
h4,
h5,
h6,
div,
span {
background-color: #27292D !important; color: #FEFEFE !important;
}
}
a {
color: inherit !important; text-decoration: underline !important;
}
</style><!--[if mso | ie]>
<style type="text/css">
a {
background-color: #FEFEFE !important; color: #010101 !important;
}
@media (prefers-color-scheme: dark) {
a {
background-color: #27292D !important; color: #FEFEFE !important;
}
}
</style>
<![endif]--></head><body class="">
<div style="display: none; max-height: 0px; overflow: hidden;">ShinyHunters defaced Canvas login pages with a ransom note threatening to leak data tied to 275 million users at nearly 9,000 institutions β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β </div>
<div style="display: none; max-height: 0px; overflow: hidden;">
<br>
</div>
<table align="center" class="document"><tbody><tr><td valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" class="container" width="600"><tbody><tr class="inner-body"><td>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr class="header"><td bgcolor="" class="container">
<table width="100%"><tbody><tr><td class="container">
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" style="margin-top: 0px;" width="100%"><tbody><tr><td style="padding: 0px;">
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div style="text-align: center;">
<span style="margin-right: 0px;"><a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Ftldr.tech%2Finfosec%3Futm_source=tldrinfosec/1/0100019e1726a1f8-a6793bc4-16b2-4eb7-9a74-8be2d2f5e168-000000/ZeT17oXcqcFO9Ona6VlzBdm_XadmbROcr69iMu_G5U0=452" rel="noopener noreferrer" target="_blank"><span>Sign Up</span></a>
|<span style="margin-right: 2px; margin-left: 2px;"><a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fadvertise.tldr.tech%2F%3Futm_source=tldrinfosec%26utm_medium=newsletter%26utm_campaign=advertisetopnav/1/0100019e1726a1f8-a6793bc4-16b2-4eb7-9a74-8be2d2f5e168-000000/LwYBYO0LGNanE6sdSgA5_PbAY1UwIQ8Egukm98j7Fnk=452" rel="noopener noreferrer" target="_blank"><span>Advertise</span></a></span>|<span style="margin-left: 2px;"><a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fa.tldrnewsletter.com%2Fweb-version%3Fep=1%26lc=156924ca-84b7-11f0-8d58-47c5c04ad337%26p=c806dcc0-4d30-11f1-8b3d-afe617b6d28b%26pt=campaign%26t=1778504868%26s=4f881193f21c63b37ffe433425ab917319e67d915706f5db622155fb0b50c164/1/0100019e1726a1f8-a6793bc4-16b2-4eb7-9a74-8be2d2f5e168-000000/CoNZ7ffS0ekrnpl6HrLk2ZIbSjP4IZe9MOo8txLJ1us=452"><span>View Online</span></a></span>
<br>
</span></div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="text-align: center;"><span data-darkreader-inline-color="" style="--darkreader-inline-color:#3db3ff; color: rgb(51, 175, 255) !important; font-size: 30px;">T</span><span style="font-size: 30px;"><span data-darkreader-inline-color="" style="color: rgb(232, 192, 96) !important; --darkreader-inline-color:#e8c163; font-size:30px;">L</span><span data-darkreader-inline-color="" style="color: rgb(101, 195, 173) !important; --darkreader-inline-color:#6ec7b2; font-size:30px;">D</span></span><span data-darkreader-inline-color="" style="--darkreader-inline-color:#dd6e6e; color: rgb(220, 107, 107) !important; font-size: 30px;">R</span>
<br>
</td></tr></tbody></table>
<br>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr id="together-with"><td align="center" height="20" style="vertical-align:middle !important;" valign="middle" width="100%"><strong style="vertical-align:middle !important; height: 100%;">Together With </strong>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.sysdig.com%2Fheadlesscloudsecurity%3Futm_campaign=Primary05112026%26utm_source=tldrai%26utm_medium=newsletter/1/0100019e1726a1f8-a6793bc4-16b2-4eb7-9a74-8be2d2f5e168-000000/dgm0pQO0Aof14-6jSH-Gh57u_L3SdM3uUcQYuJqDe-4=452"><img src="https://images.tldr.tech/sysdig.png" valign="middle" style="vertical-align: middle !important; height: 100%;" alt="Sysdig"></a></td></tr></tbody></table>
<table style="table-layout: fixed; width:100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;">
<div style="text-align: center;">
<h1><strong>TLDR Information Security <span id="date">2026-05-11</span></strong></h1>
</div>
</td></tr></tbody></table>
<table style="table-layout: fixed; width:100%;" width="100%"><tbody><tr id="sponsy-copy"><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.sysdig.com%2Fheadlesscloudsecurity%3Futm_campaign=Primary05112026%26utm_source=tldrai%26utm_medium=newsletter/2/0100019e1726a1f8-a6793bc4-16b2-4eb7-9a74-8be2d2f5e168-000000/AAZVDn_lMVxY7LjOupsKg0118j6lNky4rbFWFod1ELU=452">
<span>
<strong>The Dashboard Is Dead. Meet Cloud Security Built for AI Agents (Sponsor)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Stop reporting on risk and start reducing it. Now available: Sysdig <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.sysdig.com%2Fheadlesscloudsecurity%3Futm_campaign=Primary05112026%26utm_source=tldrai%26utm_medium=newsletter/3/0100019e1726a1f8-a6793bc4-16b2-4eb7-9a74-8be2d2f5e168-000000/bLlQTNot4s6N-QSg3bWniR854txGWEXXt5SQWUxo0qs=452" rel="noopener noreferrer nofollow" target="_blank"><span>Headless Cloud Security</span></a> puts real-time protection directly into AI agents, so you can take action at machine speed. No dashboards. No delays. Just hyper-personalized security that works how you want.
<p></p>
<p><a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.sysdig.com%2Fheadlesscloudsecurity%3Futm_campaign=Primary05112026%26utm_source=tldrai%26utm_medium=newsletter/4/0100019e1726a1f8-a6793bc4-16b2-4eb7-9a74-8be2d2f5e168-000000/OY9A8hY7xidFhUgP1jw5VPZ1TOrlvBQfYOf11iB4QLk=452" rel="noopener noreferrer nofollow" target="_blank"><span>Explore headless cloud security</span></a> and see how teams are already transforming defense, or see how it works with AI agents to move faster than modern threats.
</p>
</span></span></div>
</td></tr></tbody></table>
</td></tr></tbody></table>
</td></tr></tbody></table>
</td></tr>
<tr bgcolor=""><td class="container">
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td style="padding: 0px;">
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">π</span></div></div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;">
<h1><strong>Attacks & Vulnerabilities</strong></h1>
</div>
</div>
</td></tr></tbody></table>
<table style="table-layout: fixed; width: 100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fkrebsonsecurity.com%2F2026%2F05%2Fcanvas-breach-disrupts-schools-colleges-nationwide%2F%3Futm_source=tldrinfosec/1/0100019e1726a1f8-a6793bc4-16b2-4eb7-9a74-8be2d2f5e168-000000/enDaqKJ4E_jabjrg4sAq9UvJs22RXByYcbl58EGbYb0=452">
<span>
<strong>Canvas Breach Disrupts Schools & Colleges Nationwide (3 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
ShinyHunters defaced Canvas login pages with a ransom note threatening to leak data tied to 275 million users at nearly 9,000 institutions, forcing Instructure to pull Canvas offline during finals while calling it "scheduled maintenance." Stolen data includes names, emails, IDs, and messages.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fthehackernews.com%2F2026%2F05%2Fcpanel-whm-patch-3-new-vulnerabilities.html%3Futm_source=tldrinfosec/1/0100019e1726a1f8-a6793bc4-16b2-4eb7-9a74-8be2d2f5e168-000000/hJ5JkrxDyE4KOhnkU5zMuOcyQnB7mpTfourjqgZ4MAc=452">
<span>
<strong>cPanel, WHM Release Fixes for Three New Vulnerabilities β Patch Now (2 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
cPanel shipped fixes for three flaws in cPanel and WHM that allow arbitrary file read, Perl code execution via the create_user API, and unsafe chmod via symlinks (CVE-2026-29201/2/3, two rated 8.8). Patches land across multiple 11.x branches plus WP Squared, with a direct 110.0.114 build for CentOS 6 and CloudLinux 6 holdouts. No in-the-wild abuse yet, but this comes right after a separate cPanel zero-day (CVE-2026-41940) that was used to drop Mirai variants and the Sorry ransomware.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fcyberscoop.com%2Fschemata-dod-contractor-api-flaw-military-data-exposure%2F%3Futm_source=tldrinfosec/1/0100019e1726a1f8-a6793bc4-16b2-4eb7-9a74-8be2d2f5e168-000000/CPnfSi8HLxDo4nK6zJUHEWeEuYBVkZBJr4Q32bPvUPE=452">
<span>
<strong>A DoD Contractor's API Flaw Exposed Military Course Data and Service Member Records (3 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Schemata, an AI-powered virtual training platform for military and defense settings, exposed sensitive DoD data due to missing authorization checks in its API. The exposed data includes user listings, organization records, course information, training metadata, and direct links to documents from Schemata's AWS environment. The researchers were able to use a low-privileged account to request high-value data belonging to other customers via the API.
</span>
</span>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">π§ </span></div>
</div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;">
<h1><strong>Strategies & Tactics</strong></h1>
</div>
</div>
</td></tr></tbody></table>
<table style="table-layout: fixed; width: 100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fheyitsas.im%2Fposts%2Fdrinking-llms%2F%3Futm_source=tldrinfosec/1/0100019e1726a1f8-a6793bc4-16b2-4eb7-9a74-8be2d2f5e168-000000/oLQJeKBrpGcXKpufPZVd9bTp2mVwqpA3Qcwi83q3E4w=452">
<span>
<strong>Getting LLMs Drunk to Find Remote Linux Kernel OOB Writes (and More) (16 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
The researcher uses a homegrown swarm of LLM-powered agents to hunt for real-world bugs in core infrastructure such as the Linux kernel's ksmbd server, Docker, OpenSSL, CUPS, HAProxy, Caddy, Traefik, CoreDNS, and more. The system starts with documentation and source code, generates vulnerability hypotheses, and iterates on proofs of concept in isolated VMs, with a separate grader model checking severity and novelty before human review. Over a few months, this setup found 20+ assigned CVEs, including remote unauthenticated OOB writes in ksmbd and practical auth and accessβcontrol bypasses in widely deployed network services.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Flinks.tldrnewsletter.com%2FWcESSC/1/0100019e1726a1f8-a6793bc4-16b2-4eb7-9a74-8be2d2f5e168-000000/AsNsOX6S0wZyhL2RxSivqwYthQaPJ0CdljH8f1pthCg=452">
<span>
<strong>You Don't Need a 0-Day for RCE: A Real-World Kill Chain (5 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
A pentester walked through a real-world kill chain against a Cloudflare-protected ASP.NET portal, using OSINT (historical SSL certificates via Censys, favicon hashes, and Google Analytics IDs) to unmask the Origin IP, then routed traffic directly via curl --resolve and Burp host overrides to bypass the WAF entirely. Once on the naked IIS backend, an authenticated avatar upload endpoint accepted a .aspx web shell disguised with Content-Type: image/png, yielding RCE as iis apppool\webapp_worker because validation lived only at the WAF perimeter. Defenders should enforce Authenticated Origin Pulls (mTLS between the WAF and the backend), restrict origin firewall ingress to published WAF IP ranges, and validate uploads on the backend via extension allowlists and magic-byte checks rather than relying on Content-Type or perimeter blocks.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fblog.talosintelligence.com%2Fai-powered-honeypots-turning-the-tables-on-malicious-ai-agents%2F%3Futm_source=tldrinfosec/1/0100019e1726a1f8-a6793bc4-16b2-4eb7-9a74-8be2d2f5e168-000000/Yurc0SQACjv1rblcHUUBR0wW7menomipZAa8iaDJeVw=452">
<span>
<strong>AI-Powered Honeypots: Turning the Tables on Malicious Agents (4 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Honeypots are a technique used by defenders to create systems that impersonate vulnerable targets to observe threat actors' tactics. Defenders can leverage generative AI to quickly produce convincing honeypots for AI-driven attacks. The author employs a handler that requires a threat actor to exploit a vulnerability, then directs the attacker's request to a ChatGPT prompt that informs the AI about the system it is supposed to masquerade as.
</span>
</span>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">π§βπ»</span></div>
</div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;">
<h1><strong>Launches & Tools</strong></h1>
</div>
</div>
</td></tr></tbody></table>
<table style="table-layout: fixed; width: 100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fvercel.com%2Fblog%2Fintroducing-deepsec-find-and-fix-vulnerabilities-in-your-code-base%3Futm_source=tldrinfosec/1/0100019e1726a1f8-a6793bc4-16b2-4eb7-9a74-8be2d2f5e168-000000/-wGx7CN2GbR94l9eFHbPeNeEoqp5CeKHC8uO31O51Xs=452">
<span>
<strong>Introducing deepsec: The security harness for finding vulnerabilities in your codebase (3 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Vercel open-sourced deepsec, a coding-agent-driven security harness that runs locally (or fans out to 1,000+ Vercel Sandboxes for parallelism) and chains scan β investigate β revalidate β enrich β export to surface vulnerabilities in large codebases, using Claude Opus 4.7 at max effort and GPT-5.5 at xhigh reasoning via existing Claude or Codex subscriptions. The workflow starts with regex-based static analysis to flag security-sensitive files, then agents trace data flows and check mitigations, with a second-pass revalidate step to cull false positives (Vercel reports a 10β20% FP rate) and a plugin system for custom regex matchers tuned to a team's auth model or data layer. Best suited for applications and services rather than libraries.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fgithub.com%2Fs0ld13rr%2Fclaude-code-backdoor%3Futm_source=tldrinfosec/1/0100019e1726a1f8-a6793bc4-16b2-4eb7-9a74-8be2d2f5e168-000000/Ri3Bn94S7pe_lfhamjfO5F0PlS1ydgaXAsykZEB6A2U=452">
<span>
<strong>Claude Code Backdoor (GitHub Repo)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
A proof of concept demonstrating how developers can leverage Claude Code hooks for initial access and persistence.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fgist.github.com%2Fddamenova%2Fa24f3f012012affd017d6bf712f2dd02%3Futm_source=tldrinfosec/1/0100019e1726a1f8-a6793bc4-16b2-4eb7-9a74-8be2d2f5e168-000000/cezaS5852eMObjqlASTx4nrK33wOySFb_lxezAmDG5c=452">
<span>
<strong>Incident Response Query Language (GitHub Repo)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Incident Response Query Language (IRQL) is a set of KQL functions that unify security logs into a consistent, analyst-friendly dialect.
</span>
</span>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">π</span></div></div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><strong><h1>Miscellaneous</h1></strong></div>
</div>
</td></tr></tbody></table>
<table bgcolor="" style="table-layout: fixed; width: 100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Farstechnica.com%2Finformation-technology%2F2026%2F05%2Fmozilla-says-271-vulnerabilities-found-by-mythos-have-almost-no-false-positives%2F%3Futm_source=tldrinfosec/1/0100019e1726a1f8-a6793bc4-16b2-4eb7-9a74-8be2d2f5e168-000000/wktOSui_SxYLRXVmtZoyXS1zNmHj84NAn3OEcB_BFVY=452">
<span>
<strong>Mozilla says 271 vulnerabilities found by Mythos have "almost no false positives" (3 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Mozilla used Anthropic's Mythos AI model to find 271 Firefox security flaws in two months. The breakthrough came from a custom harness that wraps the LLM, gives it access to Firefox's build tools, and runs it in a loop with clear success signals. When analyzing code for memory safety issues, Mythos crafts test cases against Firefox's sanitizer build. If it crashes, a second LLM verifies the finding. Of the 271 bugs, 180 were sec-high (exploitable through normal browsing), 80 sec-moderate, and 11 sec-low.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.theregister.com%2Fsecurity%2F2026%2F05%2F08%2Fmeta-u-turns-on-encryption-push-for-instagram-as-dms-go-plaintext%2F5235705%3Futm_source=tldrinfosec/1/0100019e1726a1f8-a6793bc4-16b2-4eb7-9a74-8be2d2f5e168-000000/_Rs0SeRZp-9MDQSy5YkB8MM7aZopuNx2wCgqoaewQKY=452">
<span>
<strong>Meta U-turns on encryption push for Instagram as DMs go plaintext (2 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Meta removed the option for end-to-end encrypted Instagram DMs after low opt-in, steering users to WhatsApp instead. Child protection groups had opposed wider encryption, while privacy groups and Proton warn users now face greater exposure and unclear handling of past encrypted chats. Meta already uses private AI interactions for ad targeting, and has not ruled out similar use of Instagram messages.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fexecutiveoffense.beehiiv.com%2Fp%2Fsecurity-in-a-post-mythos-world%3Futm_source=tldrinfosec/1/0100019e1726a1f8-a6793bc4-16b2-4eb7-9a74-8be2d2f5e168-000000/iW8ThlBmw1IqdssFaRmMoXadfcsjZGkiZFKxZRvuqdk=452">
<span>
<strong>Security in a Post-Mythos World (6 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Powerful tools such as Anthropic's Mythos will allow security researchers to scale up their operations to uncover new vulnerabilities while working in tandem with AI. However, vulnerability management was never about finding bugs but about fixing them, and current AI tooling lags in this regard. Threat modeling is an area where AI tooling excels, and security teams should leverage it.
</span>
</span>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">β‘</span></div></div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;">
<h1><strong>Quick Links</strong></h1>
</div>
</div>
</td></tr></tbody></table>
<table bgcolor="" style="table-layout: fixed; width: 100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Foptro.ai%2Fgrcnow%2F%3Futm_campaign=grc-now-2026-07%26utm_medium=display%26utm_source=tldr-compliance%26utm_content=05-11-2026/1/0100019e1726a1f8-a6793bc4-16b2-4eb7-9a74-8be2d2f5e168-000000/9KAKEiFDmhPKYwp1mKRq5jBuqSQqnKgsnT5S9f6BIAU=452">
<span>
<strong>Earn up to 8 CPE credits and learn to govern AI confidently at GRC Now 2026 (Sponsor)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Join 15k+ peers at Optro's free virtual event focused on AI governance, enterprise risk, and compliance. Earn up to 8 CPE credits from anywhere! <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Foptro.ai%2Fgrcnow%2F%3Futm_campaign=grc-now-2026-07%26utm_medium=display%26utm_source=tldr-compliance%26utm_content=05-11-2026/2/0100019e1726a1f8-a6793bc4-16b2-4eb7-9a74-8be2d2f5e168-000000/YNh4D0duh--bs1lHjvPFmusFw6KgdYAkjyRWPXkfgd4=452" rel="noopener noreferrer nofollow" target="_blank"><span>Save your spot at GRC Now.</span></a>
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Flinks.tldrnewsletter.com%2Fp7UFdU/1/0100019e1726a1f8-a6793bc4-16b2-4eb7-9a74-8be2d2f5e168-000000/0iRWHA_bi8Jn3Sp9xw6rd_F27vPg0hYmix3G9RTQX-0=452">
<span>
<strong>Poland says hackers breached water treatment plants, and the US is facing the same threat (2 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Poland's Internal Security Agency detected attacks on five water treatment plants where hackers gained control of industrial equipment and could tamper with water safety.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Ftechcrunch.com%2F2026%2F05%2F09%2Fgm-agrees-to-pay-12-75m-in-california-driver-privacy-settlement%2F%3Futm_source=tldrinfosec/1/0100019e1726a1f8-a6793bc4-16b2-4eb7-9a74-8be2d2f5e168-000000/MOlb1BA1aIJkujKz1HYCgCQATxtWKPyF0ZXcx1_E7P4=452">
<span>
<strong>GM agrees to pay $12.75M in California driver privacy settlement (1 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
GM settled with California AG Rob Bonta for $12.75M over allegations it sold names, contact info, geolocation, and driving behavior data of hundreds of thousands of Californiansβcollected via OnStarβto data brokers Verisk Analytics and LexisNexis Risk Solutions for roughly $20M.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Flinks.tldrnewsletter.com%2FqCmSww/1/0100019e1726a1f8-a6793bc4-16b2-4eb7-9a74-8be2d2f5e168-000000/DconJ9btrGzKGPr3ogLXQygH3XDyXBi2Oqcg292kxjY=452">
<span>
<strong>Police shut down reboot of Crimenetwork marketplace, arrest admin (1 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
German authorities (BKA, ZIT, and the Frankfurt Public Prosecutor's Office) dismantled a rebooted Crimenetwork cybercrime marketplace that amassed 22,000 users, 100+ vendors, and at least β¬3.6M ($4.2M) in revenue.
</span>
</span>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td align="left" style="word-break: break-word; vertical-align: top; padding: 5px 10px;">
<p style="padding: 0; margin: 0; font-size: 22px; color: #000000; line-height: 1.6; font-weight: bold;">
Love TLDR? Tell your friends and get rewards!
</p>
</td></tr>
<tr><td class="container" style="padding: 0px 10px 15px;">
<div class="text-block">
Share your referral link below with friends to get free TLDR swag!
</div>
</td></tr>
<tr><td align="left" style="padding: 10px;">
<div class="text-block">
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Frefer.tldr.tech%2F78de0e20%2F8/1/0100019e1726a1f8-a6793bc4-16b2-4eb7-9a74-8be2d2f5e168-000000/yyIxSFUvL7IvGnxqhXMA-JPueA_lAVzlenIDA7Mko9A=452" style="color: #464ba4; text-decoration: underline;">https://refer.tldr.tech/78de0e20/8</a>
</div>
</td></tr>
<tr></tr>
<tr><td align="left" style="padding:5px 10px;">
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fhub.sparklp.co%2Fsub_d62447d5a74a%2F8/1/0100019e1726a1f8-a6793bc4-16b2-4eb7-9a74-8be2d2f5e168-000000/CeosFEbY5F7iOE1euF8JK038F3OqOGXKLFwkMA4sJ3w=452" style="font-size: 16px; line-height: 1.6; padding: 10px 0; display: inline-block; text-decoration: underline;"><span style="mso-text-raise:13pt; text-decoration: underline;">Track your referrals here.</span></a>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td align="left" style="word-break: break-word; vertical-align: top; padding: 5px 10px;">
<p style="padding: 0; margin: 0; font-size: 22px; color: #000000; line-height: 1.6; font-weight: bold;">
Want to advertise in TLDR? π°
</p>
<div class="text-block" style="margin-top: 10px;">
If your company is interested in reaching an audience of cybersecurity professionals and decision makers, you may want to <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fadvertise.tldr.tech%2F%3Futm_source=tldrinfosec%26utm_medium=newsletter%26utm_campaign=advertisecta/1/0100019e1726a1f8-a6793bc4-16b2-4eb7-9a74-8be2d2f5e168-000000/JpniGpiVKD_sscHRkwhDg34A563-pOD7dsBvUuFnZSI=452"><strong><span>advertise with us</span></strong></a>.
</div>
<br>
<!-- New "Want to work at TLDR?" section -->
<p style="padding: 0; margin: 0; font-size: 22px; color: #000000; line-height: 1.6; font-weight: bold;">
Want to work at TLDR? πΌ
</p>
<div class="text-block" style="margin-top: 10px;">
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fjobs.ashbyhq.com%2Ftldr.tech/1/0100019e1726a1f8-a6793bc4-16b2-4eb7-9a74-8be2d2f5e168-000000/osgKbMYMWpFVnh5zbHMG77Oy8G-C_ZinwhxfKrgwSwQ=452" rel="noopener noreferrer" style="color: #0000EE; text-decoration: underline;" target="_blank"><strong>Apply here</strong></a>,
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fjobs.ashbyhq.com%2Ftldr.tech%2Fc227b917-a6a4-40ce-8950-d3e165357871/1/0100019e1726a1f8-a6793bc4-16b2-4eb7-9a74-8be2d2f5e168-000000/O-F26DPR0_JsTkYOS7EmPwkoI6f13jtn2U14Ob2ijnk=452" rel="noopener noreferrer" style="color: #0000EE; text-decoration: underline;" target="_blank"><strong>create your own role</strong></a> or send a friend's resume to <a href="mailto:jobs@tldr.tech" style="color: #0000EE; text-decoration: underline;">jobs@tldr.tech</a> and get $1k if we hire them! TLDR is one of <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.linkedin.com%2Ffeed%2Fupdate%2Furn:li:activity:7401699691039830016%2F/1/0100019e1726a1f8-a6793bc4-16b2-4eb7-9a74-8be2d2f5e168-000000/ESs8cLR8FJZzP-4BohyRwCCNgYtM6rOgpD1gzaXM4nc=452" rel="noopener noreferrer" style="color: #0000EE; text-decoration: underline;" target="_blank"><strong>Inc.'s Best Bootstrapped businesses</strong></a> of 2025.
</div>
<br>
<div class="text-block">
If you have any comments or feedback, just respond to this email!
<br>
<br> Thanks for reading,
<br>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.linkedin.com%2Fin%2Fprasannagautam%2F/1/0100019e1726a1f8-a6793bc4-16b2-4eb7-9a74-8be2d2f5e168-000000/Jw24yjm1GdpnUYDYmHhLHwHQ11h6YhhNdYV1SlBDYLA=452"><span>Prasanna Gautam</span></a>, <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.linkedin.com%2Fin%2Fericfernandezdelcampo%2F/1/0100019e1726a1f8-a6793bc4-16b2-4eb7-9a74-8be2d2f5e168-000000/YgJMZA9k81CZ9ZJAVRulB5Cd3xbgV8DIYv2XDgHoLBQ=452"><span>Eric Fernandez</span></a> & <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.linkedin.com%2Fin%2Fsammy-tbeile%2F/1/0100019e1726a1f8-a6793bc4-16b2-4eb7-9a74-8be2d2f5e168-000000/6-bsGN04UIEXRVNi2xmvTMLeKCbSilYBJUmQbmCT_nQ=452"><span>Sammy Tbeile</span></a>
<br>
<br>
</div>
<br>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block" id="testing-id">
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Ftldr.tech%2Finfosec%2Fmanage%3Femail=silk.theater.56%2540fwdnl.com/1/0100019e1726a1f8-a6793bc4-16b2-4eb7-9a74-8be2d2f5e168-000000/RsMbA71mustPTs0MdXLsQkprcWP_qzBaUwnhDDnSJDY=452">Manage your subscriptions</a> to our other newsletters on tech, startups, and programming. Or if TLDR Information Security isn't for you, please <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fa.tldrnewsletter.com%2Funsubscribe%3Fep=1%26l=8d9cea11-3e94-11ed-9a32-0241b9615763%26lc=156924ca-84b7-11f0-8d58-47c5c04ad337%26p=c806dcc0-4d30-11f1-8b3d-afe617b6d28b%26pt=campaign%26pv=4%26spa=1778504558%26t=1778504868%26s=c5ad88af2fab13b377f4e472688d9c72e64efe9c89f417750d2342e8928ecbe3/1/0100019e1726a1f8-a6793bc4-16b2-4eb7-9a74-8be2d2f5e168-000000/542ovWnSVDupLXgz3yFqXNOtd0UM6XJVdkuvdwwRwlw=452">unsubscribe</a>.
<br>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
</td></tr></tbody></table>
</td></tr></tbody></table>
</td></tr></tbody></table>
<img alt="" src="http://tracking.tldrnewsletter.com/CI0/0100019e1726a1f8-a6793bc4-16b2-4eb7-9a74-8be2d2f5e168-000000/EQrj7pr3PyPEPjiHgX__qMJrWoYh3m_CbBSRICNbAfY=452" style="display: none; width: 1px; height: 1px;">
</body></html>