<!DOCTYPE html><html lang="en"><head><meta http-equiv="Content-Type" content="text/html charset=UTF-8"><meta charset="UTF-8"><meta name="viewport" content="width=device-width"><meta name="x-apple-disable-message-reformatting"><title>TLDR InfoSec</title><meta name="color-scheme" content="light dark"><meta name="supported-color-schemes" content="light dark"><style type="text/css">
:root {
color-scheme: light dark; supported-color-schemes: light dark;
}
*,
*:after,
*:before {
-webkit-box-sizing: border-box; -moz-box-sizing: border-box; box-sizing: border-box;
}
* {
-ms-text-size-adjust: 100%; -webkit-text-size-adjust: 100%;
}
html,
body,
.document {
width: 100% !important; height: 100% !important; margin: 0; padding: 0;
}
body {
-webkit-font-smoothing: antialiased; -moz-osx-font-smoothing: grayscale; text-rendering: optimizeLegibility;
}
div[style*="margin: 16px 0"] {
margin: 0 !important;
}
table,
td {
mso-table-lspace: 0pt; mso-table-rspace: 0pt;
}
table {
border-spacing: 0; border-collapse: collapse; table-layout: fixed; margin: 0 auto;
}
img {
-ms-interpolation-mode: bicubic; max-width: 100%; border: 0;
}
*[x-apple-data-detectors] {
color: inherit !important; text-decoration: none !important;
}
.x-gmail-data-detectors,
.x-gmail-data-detectors *,
.aBn {
border-bottom: 0 !important; cursor: default !important;
}
.btn {
-webkit-transition: all 200ms ease; transition: all 200ms ease;
}
.btn:hover {
background-color: #f67575; border-color: #f67575;
}
* {
font-family: Arial, Helvetica, sans-serif; font-size: 18px;
}
@media screen and (max-width: 600px) {
.container {
width: 100%; margin: auto;
}
.stack {
display: block!important; width: 100%!important; max-width: 100%!important;
}
.btn {
display: block; width: 100%; text-align: center;
}
}
body,
p,
td,
tr,
.body,
table,
h1,
h2,
h3,
h4,
h5,
h6,
div,
span {
background-color: #FEFEFE !important; color: #010101 !important;
}
@media (prefers-color-scheme: dark) {
body,
p,
td,
tr,
.body,
table,
h1,
h2,
h3,
h4,
h5,
h6,
div,
span {
background-color: #27292D !important; color: #FEFEFE !important;
}
}
a {
color: inherit !important; text-decoration: underline !important;
}
</style><!--[if mso | ie]>
<style type="text/css">
a {
background-color: #FEFEFE !important; color: #010101 !important;
}
@media (prefers-color-scheme: dark) {
a {
background-color: #27292D !important; color: #FEFEFE !important;
}
}
</style>
<![endif]--></head><body class="">
<div style="display: none; max-height: 0px; overflow: hidden;">Hackers accessed NYC Health + Hospitalsβ network via a breached third-party vendor from November 2025 to February 2026, stealing data β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β β </div>
<div style="display: none; max-height: 0px; overflow: hidden;">
<br>
</div>
<table align="center" class="document"><tbody><tr><td valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" class="container" width="600"><tbody><tr class="inner-body"><td>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr class="header"><td bgcolor="" class="container">
<table width="100%"><tbody><tr><td class="container">
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" style="margin-top: 0px;" width="100%"><tbody><tr><td style="padding: 0px;">
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div style="text-align: center;">
<span style="margin-right: 0px;"><a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Ftldr.tech%2Finfosec%3Futm_source=tldrinfosec/1/0100019e40587e59-af057864-2840-4fd2-a3a4-66b2180a385f-000000/nMFuj_uy15P1WWq-6afoqCY4UYv5KHEgrhjrjdgIvrY=452" rel="noopener noreferrer" target="_blank"><span>Sign Up</span></a>
|<span style="margin-right: 2px; margin-left: 2px;"><a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fadvertise.tldr.tech%2F%3Futm_source=tldrinfosec%26utm_medium=newsletter%26utm_campaign=advertisetopnav/1/0100019e40587e59-af057864-2840-4fd2-a3a4-66b2180a385f-000000/Km__bCsnfqgNoMuEpSA7HTgz-8KX4ynyQc5BF1ko8pk=452" rel="noopener noreferrer" target="_blank"><span>Advertise</span></a></span>|<span style="margin-left: 2px;"><a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fa.tldrnewsletter.com%2Fweb-version%3Fep=1%26lc=156924ca-84b7-11f0-8d58-47c5c04ad337%26p=36936c08-536c-11f1-bcfa-d5c15959b33b%26pt=campaign%26t=1779196001%26s=9bbaf2b6dc5a147989e083e8246e3e0b1453847ddf6c2b7c7bbef59e24045b36/1/0100019e40587e59-af057864-2840-4fd2-a3a4-66b2180a385f-000000/DejMNDq-WdwlM8_HCa0sCeKZpDN0aPSNLm1EKvNPvlo=452"><span>View Online</span></a></span>
<br>
</span></div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="text-align: center;"><span data-darkreader-inline-color="" style="--darkreader-inline-color:#3db3ff; color: rgb(51, 175, 255) !important; font-size: 30px;">T</span><span style="font-size: 30px;"><span data-darkreader-inline-color="" style="color: rgb(232, 192, 96) !important; --darkreader-inline-color:#e8c163; font-size:30px;">L</span><span data-darkreader-inline-color="" style="color: rgb(101, 195, 173) !important; --darkreader-inline-color:#6ec7b2; font-size:30px;">D</span></span><span data-darkreader-inline-color="" style="--darkreader-inline-color:#dd6e6e; color: rgb(220, 107, 107) !important; font-size: 30px;">R</span>
<br>
</td></tr></tbody></table>
<br>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr id="together-with"><td align="center" height="20" style="vertical-align:middle !important;" valign="middle" width="100%"><strong style="vertical-align:middle !important; height: 100%;">Together With </strong>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fbitwarden.com%2Fblog%2Fai-phishing-attacks-are-on-the-rise%2F%3Futm_campaign=34103600-TLDR%25202026%26utm_source=tldr_infosec%26utm_medium=email%26utm_content=051926-aiphising/1/0100019e40587e59-af057864-2840-4fd2-a3a4-66b2180a385f-000000/imV-wvaaophDs5zJwLerVIYoSPZM2UoD0gAjhZi_57I=452"><img src="https://images.tldr.tech/bitwarden.png" valign="middle" style="vertical-align: middle !important; height: 100%;" alt="Bitwarden"></a></td></tr></tbody></table>
<table style="table-layout: fixed; width:100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;">
<div style="text-align: center;">
<h1><strong>TLDR Information Security <span id="date">2026-05-19</span></strong></h1>
</div>
</td></tr></tbody></table>
<table style="table-layout: fixed; width:100%;" width="100%"><tbody><tr id="sponsy-copy"><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fbitwarden.com%2Fblog%2Fai-phishing-attacks-are-on-the-rise%2F%3Futm_campaign=34103600-TLDR%25202026%26utm_source=tldr_infosec%26utm_medium=email%26utm_content=051926-aiphising/2/0100019e40587e59-af057864-2840-4fd2-a3a4-66b2180a385f-000000/pz0kNxHRMfO8K-1PVVxxTuTJ4nx6emRn982MpV3mdfE=452">
<span>
<strong>Phishing attacks up 4,151% since ChatGPT launched. Are you prepared? (Sponsor)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
The average cost of a phishing breach is $4.88M. With AI enabling attackers to scale operations at a fraction of the cost, attacks are faster, cheaper, and harder to detect than ever.<p></p><p>Behavioral awareness isn't enough on its own. Bitwarden protects organizations with built-in phishing protection, including:</p><ul><li>Trusted website autofill that won't expose credentials on malicious sites</li><li>Secure passkey storage as a phishing-resistant credential alternative</li><li>Dedicated website launch button that takes you directly to verified sites</li></ul><p><a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fbitwarden.com%2Fblog%2Fai-phishing-attacks-are-on-the-rise%2F%3Futm_campaign=34103600-TLDR%25202026%26utm_source=tldr_infosec%26utm_medium=email%26utm_content=051926-aiphising/3/0100019e40587e59-af057864-2840-4fd2-a3a4-66b2180a385f-000000/8FfZp3Vc3yhwoDp0cwUL7MkMLgx2xtfDKsOLOHvNTJI=452" rel="noopener noreferrer nofollow" target="_blank"><span><strong>Learn how to protect your organization from AI-enhanced phishing threats</strong></span></a>
</p>
</span></span></div>
</td></tr></tbody></table>
</td></tr></tbody></table>
</td></tr></tbody></table>
</td></tr>
<tr bgcolor=""><td class="container">
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td style="padding: 0px;">
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">π</span></div></div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;">
<h1><strong>Attacks & Vulnerabilities</strong></h1>
</div>
</div>
</td></tr></tbody></table>
<table style="table-layout: fixed; width: 100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fthehackernews.com%2F2026%2F05%2Ffunnel-builder-flaw-under-active.html%3Futm_source=tldrinfosec/1/0100019e40587e59-af057864-2840-4fd2-a3a4-66b2180a385f-000000/PpbAXvQMZBZkSm3R29zvufNNrmc573BBP4jJPlHy45U=452">
<span>
<strong>Funnel Builder Flaw Under Active Exploitation Enables WooCommerce Checkout Skimming (3 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Sansec disclosed an unauthenticated flaw (no CVE) in the FunnelKit Funnel Builder WordPress plugin before 3.15.0.3, affecting 40,000+ WooCommerce stores, where a publicly exposed checkout endpoint failed to check caller permissions or restrict invokable internal methods, letting attackers write attacker-controlled JavaScript into the plugin's global "External Scripts" setting and inject a fake Google Tag Manager loader on every checkout that opens a WebSocket to `wss://protect-wss[.]com/ws` to retrieve a storefront-tailored card skimmer exfiltrating PANs, CVVs, and billing addresses.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fsecurityaffairs.com%2F192336%2Fdata-breach%2Fshinyhunters-hack-7-eleven-franchisee-data-and-salesforce-records-exposed.html%3Futm_source=tldrinfosec/1/0100019e40587e59-af057864-2840-4fd2-a3a4-66b2180a385f-000000/Po8_OXEFEWunBCqMh-qDi5EwOEkQKjNyKddLHFRpi3Q=452">
<span>
<strong>ShinyHunters hack 7-Eleven: franchisee data and Salesforce records exposed (2 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
ShinyHunters claims to have stolen over 600,000 Salesforce records from 7-Eleven, including personal and corporate data, after failed ransom talks. The group accessed systems storing franchisee application documents on April 8. 7-Eleven is notifying affected individuals, but the total number of victims is still unknown.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Ftechcrunch.com%2F2026%2F05%2F18%2Fnyc-health-and-hospitals-says-hackers-stole-medical-data-and-fingerprints-during-breach-affecting-at-least-1-8-million-people%2F%3Futm_source=tldrinfosec/1/0100019e40587e59-af057864-2840-4fd2-a3a4-66b2180a385f-000000/v7AuGfizwKAKk25q1bFRKDIcCWD5t0kppzWN3RkI8N0=452">
<span>
<strong>NYC Health + Hospitals says hackers stole medical data and fingerprints during breach affecting at least 1.8 million people (3 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Hackers accessed NYC Health + Hospitals' network via a breached third-party vendor from November 2025 to February 2026, stealing data on at least 1.8 million people, including medical records, billing data, government IDs, precise geolocation data, and stored fingerprints and palm prints. The impact on patient biometrics and any ransom demands remains unconfirmed.
</span>
</span>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">π§ </span></div>
</div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;">
<h1><strong>Strategies & Tactics</strong></h1>
</div>
</div>
</td></tr></tbody></table>
<table style="table-layout: fixed; width: 100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fprojectzero.google%2F2026%2F05%2Fpixel-10-exploit.html%3Futm_source=tldrinfosec/1/0100019e40587e59-af057864-2840-4fd2-a3a4-66b2180a385f-000000/pvxh-aGpenpvXDC05E6A4dXGl8LGIe6Cx01UaeA5K_Q=452">
<span>
<strong>A 0-click exploit chain for the Pixel 10: When a Door Closes, a Window Opens (4 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Project Zero's Seth Jenkins ported the prior Pixel 9 Dolby UDC 0-click (CVE-2025-54957) to Pixel 10 by remapping offsets and replacing the RET PAC-blocked __stack_chk_fail overwrite with dap_cpdp_init, then replaced the absent BigWave LPE with a trivial flaw in the new Tensor G5 VPU driver (/dev/vpu, Chips&Media Wave677DV) where vpu_mmap calls remap_pfn_range using the caller-supplied VMA size without bounding to the MMIO register region. The Pixel kernel sits at a known fixed physical offset above the VPU register region, so an oversized mmap exposes kernel .text and .data for arbitrary read/write in five lines of code, yielding kernel code execution from the mediacodec SELinux context. Reported November 24, 2025, rated High severity, and patched 71 days later in the February Pixel bulletin.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fshubs.io%2Fthe-down-fall-of-bug-bounties%2F%3Futm_source=tldrinfosec/1/0100019e40587e59-af057864-2840-4fd2-a3a4-66b2180a385f-000000/H1IGdorIee-lcorP5Z-xFvr9zH_-rULeGu4BhA8DY1w=452">
<span>
<strong>The downfall of bug bounties (4 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Bug bounty platforms are drowning in AI-generated reports. HackerOne and Bugcrowd can't tell skilled researchers from automated slop submissions. Shubham Shah, ranked #1 on Uber's program after ten years, submitted a mass PII leak on April 24. First human response came May 6βa 12-day delay instead of the usual 1-3. Platforms treat decade-long contributors the same as first-time submitters using AI agents. Talented researchers now skip platforms entirely, choosing private programs or unpaid research. Response times used to fuel motivation - now they kill it.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Flabs.reversec.com%2Fposts%2F2026%2F05%2Fskill-issues-compromising-claude-code-with-malicious-skills-agents-part-1%3Futm_source=tldrinfosec/1/0100019e40587e59-af057864-2840-4fd2-a3a4-66b2180a385f-000000/K3C3cdxeILvViuJntkh4fw8cbCdStycfKeqq48OPg2M=452">
<span>
<strong>Skill Issues: Compromising Claude Code With Malicious Skills and Agents (6 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Claude Code and other coding agents can utilize skill files to codify commonly used functionality. The author attempted to create a malicious skill that could achieve remote code execution by bypassing command filters, but succeeded only by relying on external environment variables. However, they found that they could exploit skill frontmatter to overwrite tool settings and create malicious sub-agents.
</span>
</span>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">π§βπ»</span></div>
</div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;">
<h1><strong>Launches & Tools</strong></h1>
</div>
</div>
</td></tr></tbody></table>
<table style="table-layout: fixed; width: 100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Farcticwolf.com%2Faurora-platform%2F%3Futm_source=newsletter%26utm_medium=tldr%26utm_campaign=ADV%2520FY26%2520CPC%2520TLDR%2520Newsletter/1/0100019e40587e59-af057864-2840-4fd2-a3a4-66b2180a385f-000000/HzjDILNQf0_x2mfppbSV49G3YwWOCObl1NHfhXt7Ywc=452">
<span>
<strong>Security Operations at Machine Speed (Sponsor)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
AI-driven attacks are moving faster than most security teams can respond. Learn how modern SOCs use automation, AI, and real-time visibility to detect and stop threats at machine speed.<p></p><p><a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Farcticwolf.com%2Fresource%2Faw%2Fguide-to-security-operations-at-machine-speed%3Futm_source=newsletter%26utm_medium=tldr%26utm_campaign=ADV%2520FY26%2520CPC%2520TLDR%2520Newsletter/1/0100019e40587e59-af057864-2840-4fd2-a3a4-66b2180a385f-000000/QlUdEHIKYtfzP2-S9UHe1_1Zv1ZnHhZ82aqlzEp_ojY=452" rel="noopener noreferrer nofollow" target="_blank"><span>Download the guide</span></a>. | <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Farcticwolf.com%2Faurora-platform%2F%3Futm_source=newsletter%26utm_medium=tldr%26utm_campaign=ADV%2520FY26%2520CPC%2520TLDR%2520Newsletter/2/0100019e40587e59-af057864-2840-4fd2-a3a4-66b2180a385f-000000/VJjEUSQcIG63FK9GktTUDc0lHnJAdQuYi21CROBfG_s=452" rel="noopener noreferrer nofollow" target="_blank"><span>Explore the Aurora Platform</span></a>.
</p>
</span></span></div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fgithub.com%2FxFreed0m%2Fghosttype%3Futm_source=tldrinfosec/1/0100019e40587e59-af057864-2840-4fd2-a3a4-66b2180a385f-000000/Fr8wr7OQjRt5mmDmORE5TBqsDf-RAC1qQgP8-l0s8sA=452">
<span>
<strong>ghosttype (GitHub Repo)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
ghosttype is a Python 3.11+ local forensic scanner that extracts exposed credentials from AI tool conversation history across Claude Code CLI, Cursor IDE, Codex CLI, and ChatGPT Desktop. The two-layer detection engine pairs 30 high-confidence regex patterns covering AWS, GitHub PATs (6 formats), Stripe, Slack, Vault, GCP service accounts, JWTs, and PEM keys with 10 heuristic context-signal patterns, applying an entropy threshold of β₯3.0 bits/char plus placeholder filtering to suppress false positives. CLI flags include --min-confidence high, --redact, --max-age-days, --allow-list, and JSON/CSV output piping to jq.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fgithub.com%2Frderaison%2Fbromure%3Futm_source=tldrinfosec/1/0100019e40587e59-af057864-2840-4fd2-a3a4-66b2180a385f-000000/LcgNhjDkPDT2QSZOMIlmz40awNWqr2XHFdIf_Vz81Bk=452">
<span>
<strong>Bromure (GitHub Repo)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Run Claude Code, Codex, and the next coding agent inside a Linux VM that shares only the folders you choose. Anything they download, install, or break stays inside the VM.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fgithub.com%2FPortSwigger%2Fip-rotate%3Futm_source=tldrinfosec/1/0100019e40587e59-af057864-2840-4fd2-a3a4-66b2180a385f-000000/M_Yi2SnvA9XPSy3T2ndzHfy9I8cNkJBqU3Cx9DQkRB8=452">
<span>
<strong>IPRotate_Burp_Extension (GitHub Repo)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
An extension for Burp Suite that uses AWS API Gateway to change your IP on every request.
</span>
</span>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">π</span></div></div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><strong><h1>Miscellaneous</h1></strong></div>
</div>
</td></tr></tbody></table>
<table bgcolor="" style="table-layout: fixed; width: 100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fhackread.com%2Fai-voice-cloning-technology-behind-where-it-is-headed%2F%3Futm_source=tldrinfosec/1/0100019e40587e59-af057864-2840-4fd2-a3a4-66b2180a385f-000000/aJYrU1LAySvq1ETuMXP326sL2bmvDZcIFrl_R7HFovE=452">
<span>
<strong>AI Voice Cloning: The Technology Behind It, Who's Building It, and Where It's Headed (5 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
The piece surveys the voice cloning stack across zero-shot (3-10 seconds of audio), few-shot (1-5 minutes), and full fine-tuning (1+ hours) approaches built on encoder-decoder models, diffusion models, transformer-based TTS, and neural vocoders like WaveNet and HiFi-GAN, with speaker embeddings separating content from vocal identity. Open-source projects have collapsed the barrier to entry the way open LLMs did for text, while B2B platforms push into IVR, dubbing, and accessibility. Synthetic or recorded voice inputs already defeat weak voice-authentication systems. Sub-50ms real-time cloning and cross-lingual identity preservation are predicted to arrive within 3-5 years.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.theregister.com%2Fsecurity%2F2026%2F05%2F18%2Fmozilla-warns-uk-breaking-vpns-will-not-magically-fix-britains-age-check-mess%2F5241770%3Futm_source=tldrinfosec/1/0100019e40587e59-af057864-2840-4fd2-a3a4-66b2180a385f-000000/X-eIOyYd03xUmrEq0TOPWPr4hJm3Dcey_y6jZf6F8Eg=452">
<span>
<strong>Mozilla warns UK: Breaking VPNs will not magically fix Britain's age-check mess (2 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Mozilla submitted a policy brief arguing that the UK government is targeting VPNs instead of fixing broken age verification systems. VPN use spiked after the Online Safety Act went live, prompting officials and the Children's Commissioner to suggest limiting access. Mozilla says most kids bypass checks with fake birthdays or borrowed accounts, and requiring ID before using privacy tools defeats their purpose.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Farstechnica.com%2Ftech-policy%2F2026%2F05%2Ffired-hacker-twins-forget-to-end-teams-recording-capture-own-crimes%2F%3Futm_source=tldrinfosec/1/0100019e40587e59-af057864-2840-4fd2-a3a4-66b2180a385f-000000/SuxD-Jb0KmXlA9Sb2Rs2GZt0XK9XQMZdFuJdPUXu8OM=452">
<span>
<strong>Fired hacker twins forget to end Teams recording, capture own crimes (4 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Twin brothers Muneeb and Sohaib Akhter were fired from federal IT contractor Opexus after the company learned of their past cyberfraud convictions. They deleted 96 US government databases while connected through a VPN, assuming backups would cover the damage. A court filing shows they accidentally recorded the entire planning and execution via a Microsoft Teams meeting they forgot to stop, giving prosecutors a verbatim record of their access, deletions, and cleanup plans.
</span>
</span>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">β‘</span></div></div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;">
<h1><strong>Quick Links</strong></h1>
</div>
</div>
</td></tr></tbody></table>
<table bgcolor="" style="table-layout: fixed; width: 100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fhackread.com%2Fscammers-physical-phishing-letters-ledger-wallet-seed%2F%3Futm_source=tldrinfosec/1/0100019e40587e59-af057864-2840-4fd2-a3a4-66b2180a385f-000000/JOMpBfz89GWspu47YSx2Twv9hiiC4o99DZUJJMRZw_I=452">
<span>
<strong>Scammers Send Physical Phishing Letters to Steal Ledger Wallet Seed Phrases (2 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Attackers mailed Ledger-branded physical letters signed in Charles Guillemet's name, demanding a "Quantum Resistance" upgrade by a deadline and routing recipients via QR code to a phishing site that harvests 24-word recovery seed phrases.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Flinks.tldrnewsletter.com%2Fs8ivY2/1/0100019e40587e59-af057864-2840-4fd2-a3a4-66b2180a385f-000000/04RbcPXBzbwCna81QHHecK0WnehTVFUouSqZhW74IWo=452">
<span>
<strong>Grafana Confirms Breach After Hackers Claim They Stole Data (2 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Grafana confirmed a breach on May 18 after Coinbase Cartel listed them on May 15.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fthehackernews.com%2F2026%2F05%2Finterpol-operation-ramz-disrupts-mena.html%3Futm_source=tldrinfosec/1/0100019e40587e59-af057864-2840-4fd2-a3a4-66b2180a385f-000000/I3wWhmawotoISbywws6P8CqBrS6rfPiRbjqZqy1H-NI=452">
<span>
<strong>INTERPOL Operation Ramz Disrupts MENA Cybercrime Networks with 201 Arrests (4 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
INTERPOL's Operation Ramz led to 201 arrests, over 5,000 compromised accounts addressed, and the seizure of servers.
</span>
</span>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td align="left" style="word-break: break-word; vertical-align: top; padding: 5px 10px;">
<p style="padding: 0; margin: 0; font-size: 22px; color: #000000; line-height: 1.6; font-weight: bold;">
Love TLDR? Tell your friends and get rewards!
</p>
</td></tr>
<tr><td class="container" style="padding: 0px 10px 15px;">
<div class="text-block">
Share your referral link below with friends to get free TLDR swag!
</div>
</td></tr>
<tr><td align="left" style="padding: 10px;">
<div class="text-block">
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Frefer.tldr.tech%2F78de0e20%2F8/1/0100019e40587e59-af057864-2840-4fd2-a3a4-66b2180a385f-000000/GEXmnmhaf56p8NYAGUmQBaY2B4W-MuRaiGgdhJ9Eeug=452" style="color: #464ba4; text-decoration: underline;">https://refer.tldr.tech/78de0e20/8</a>
</div>
</td></tr>
<tr></tr>
<tr><td align="left" style="padding:5px 10px;">
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fhub.sparklp.co%2Fsub_d62447d5a74a%2F8/1/0100019e40587e59-af057864-2840-4fd2-a3a4-66b2180a385f-000000/YRGjXyAew_aYQD1O_3yrYRywqtF-Q_DvxSMBmyYlpVY=452" style="font-size: 16px; line-height: 1.6; padding: 10px 0; display: inline-block; text-decoration: underline;"><span style="mso-text-raise:13pt; text-decoration: underline;">Track your referrals here.</span></a>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td align="left" style="word-break: break-word; vertical-align: top; padding: 5px 10px;">
<p style="padding: 0; margin: 0; font-size: 22px; color: #000000; line-height: 1.6; font-weight: bold;">
Want to advertise in TLDR? π°
</p>
<div class="text-block" style="margin-top: 10px;">
If your company is interested in reaching an audience of cybersecurity professionals and decision makers, you may want to <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fadvertise.tldr.tech%2F%3Futm_source=tldrinfosec%26utm_medium=newsletter%26utm_campaign=advertisecta/1/0100019e40587e59-af057864-2840-4fd2-a3a4-66b2180a385f-000000/orZowSKIvYomnuM24DXYGrG2z2PEDdRPnyrZazdF2vc=452"><strong><span>advertise with us</span></strong></a>.
</div>
<br>
<!-- New "Want to work at TLDR?" section -->
<p style="padding: 0; margin: 0; font-size: 22px; color: #000000; line-height: 1.6; font-weight: bold;">
Want to work at TLDR? πΌ
</p>
<div class="text-block" style="margin-top: 10px;">
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fjobs.ashbyhq.com%2Ftldr.tech/1/0100019e40587e59-af057864-2840-4fd2-a3a4-66b2180a385f-000000/8SjaEufEZ6vQJm07CBXj8kV3al8-9mZ5cilr6blCcDI=452" rel="noopener noreferrer" style="color: #0000EE; text-decoration: underline;" target="_blank"><strong>Apply here</strong></a>,
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fjobs.ashbyhq.com%2Ftldr.tech%2Fc227b917-a6a4-40ce-8950-d3e165357871/1/0100019e40587e59-af057864-2840-4fd2-a3a4-66b2180a385f-000000/CExyxfgY9hsxQfQ9PXZDVMFjBsW7m6hNyQcfp5oYgaM=452" rel="noopener noreferrer" style="color: #0000EE; text-decoration: underline;" target="_blank"><strong>create your own role</strong></a> or send a friend's resume to <a href="mailto:jobs@tldr.tech" style="color: #0000EE; text-decoration: underline;">jobs@tldr.tech</a> and get $1k if we hire them! TLDR is one of <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.linkedin.com%2Ffeed%2Fupdate%2Furn:li:activity:7401699691039830016%2F/1/0100019e40587e59-af057864-2840-4fd2-a3a4-66b2180a385f-000000/RKdL_5czHO7l-4Rbq5p3WQztqm5IDWCKT0qCS89rf_0=452" rel="noopener noreferrer" style="color: #0000EE; text-decoration: underline;" target="_blank"><strong>Inc.'s Best Bootstrapped businesses</strong></a> of 2025.
</div>
<br>
<div class="text-block">
If you have any comments or feedback, just respond to this email!
<br>
<br> Thanks for reading,
<br>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.linkedin.com%2Fin%2Fprasannagautam%2F/1/0100019e40587e59-af057864-2840-4fd2-a3a4-66b2180a385f-000000/sL7ab3Z7sMUql8T6ozXUDoj79ls9EzS3r62u7jKRxbI=452"><span>Prasanna Gautam</span></a>, <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.linkedin.com%2Fin%2Fericfernandezdelcampo%2F/1/0100019e40587e59-af057864-2840-4fd2-a3a4-66b2180a385f-000000/nNeaNz3jZE8Uqe4SvkO0pKRaFS3WFmtaFHs7chl5xc4=452"><span>Eric Fernandez</span></a> & <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.linkedin.com%2Fin%2Fsammy-tbeile%2F/1/0100019e40587e59-af057864-2840-4fd2-a3a4-66b2180a385f-000000/DKmVD42-lYhSYU20Q4RUUoQg1imeTKOTA1DCgTXFN2E=452"><span>Sammy Tbeile</span></a>
<br>
<br>
</div>
<br>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block" id="testing-id">
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Ftldr.tech%2Finfosec%2Fmanage%3Femail=silk.theater.56%2540fwdnl.com/1/0100019e40587e59-af057864-2840-4fd2-a3a4-66b2180a385f-000000/cBNyvCePLWOMSNMYbUoOUe8M6k49vllknpNNd6UvDes=452">Manage your subscriptions</a> to our other newsletters on tech, startups, and programming. Or if TLDR Information Security isn't for you, please <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fa.tldrnewsletter.com%2Funsubscribe%3Fep=1%26l=8d9cea11-3e94-11ed-9a32-0241b9615763%26lc=156924ca-84b7-11f0-8d58-47c5c04ad337%26p=36936c08-536c-11f1-bcfa-d5c15959b33b%26pt=campaign%26pv=4%26spa=1779195679%26t=1779196001%26s=0fe758259b22c023f2eed1a734c81a8706978cd545b4ad78e4d4ed87a31b1904/1/0100019e40587e59-af057864-2840-4fd2-a3a4-66b2180a385f-000000/we80nYJhgZ0maP3OZ_DTBPKKVcGc--7oWHykRAlia0k=452">unsubscribe</a>.
<br>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
</td></tr></tbody></table>
</td></tr></tbody></table>
</td></tr></tbody></table>
<img alt="" src="http://tracking.tldrnewsletter.com/CI0/0100019e40587e59-af057864-2840-4fd2-a3a4-66b2180a385f-000000/Qfb-iwosgyKSTWln0N3GF6iy9K8t2p-F2nNC9fN5Bcg=452" style="display: none; width: 1px; height: 1px;">
</body></html>