<!DOCTYPE html><html lang="en"><head><meta http-equiv="Content-Type" content="text/html charset=UTF-8"><meta charset="UTF-8"><meta name="viewport" content="width=device-width"><meta name="x-apple-disable-message-reformatting"><title>TLDR InfoSec</title><meta name="color-scheme" content="light dark"><meta name="supported-color-schemes" content="light dark"><style type="text/css">
:root {
color-scheme: light dark; supported-color-schemes: light dark;
}
*,
*:after,
*:before {
-webkit-box-sizing: border-box; -moz-box-sizing: border-box; box-sizing: border-box;
}
* {
-ms-text-size-adjust: 100%; -webkit-text-size-adjust: 100%;
}
html,
body,
.document {
width: 100% !important; height: 100% !important; margin: 0; padding: 0;
}
body {
-webkit-font-smoothing: antialiased; -moz-osx-font-smoothing: grayscale; text-rendering: optimizeLegibility;
}
div[style*="margin: 16px 0"] {
margin: 0 !important;
}
table,
td {
mso-table-lspace: 0pt; mso-table-rspace: 0pt;
}
table {
border-spacing: 0; border-collapse: collapse; table-layout: fixed; margin: 0 auto;
}
img {
-ms-interpolation-mode: bicubic; max-width: 100%; border: 0;
}
*[x-apple-data-detectors] {
color: inherit !important; text-decoration: none !important;
}
.x-gmail-data-detectors,
.x-gmail-data-detectors *,
.aBn {
border-bottom: 0 !important; cursor: default !important;
}
.btn {
-webkit-transition: all 200ms ease; transition: all 200ms ease;
}
.btn:hover {
background-color: #f67575; border-color: #f67575;
}
* {
font-family: Arial, Helvetica, sans-serif; font-size: 18px;
}
@media screen and (max-width: 600px) {
.container {
width: 100%; margin: auto;
}
.stack {
display: block!important; width: 100%!important; max-width: 100%!important;
}
.btn {
display: block; width: 100%; text-align: center;
}
}
body,
p,
td,
tr,
.body,
table,
h1,
h2,
h3,
h4,
h5,
h6,
div,
span {
background-color: #FEFEFE !important; color: #010101 !important;
}
@media (prefers-color-scheme: dark) {
body,
p,
td,
tr,
.body,
table,
h1,
h2,
h3,
h4,
h5,
h6,
div,
span {
background-color: #27292D !important; color: #FEFEFE !important;
}
}
a {
color: inherit !important; text-decoration: underline !important;
}
</style><!--[if mso | ie]>
<style type="text/css">
a {
background-color: #FEFEFE !important; color: #010101 !important;
}
@media (prefers-color-scheme: dark) {
a {
background-color: #27292D !important; color: #FEFEFE !important;
}
}
</style>
<![endif]--></head><body class="">
<div style="display: none; max-height: 0px; overflow: hidden;">The World Leaks ransomware group published more than 200k files allegedly belonging to Indian electronics manufacturer Tata Electronics โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ โ </div>
<div style="display: none; max-height: 0px; overflow: hidden;">
<br>
</div>
<table align="center" class="document"><tbody><tr><td valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" class="container" width="600"><tbody><tr class="inner-body"><td>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr class="header"><td bgcolor="" class="container">
<table width="100%"><tbody><tr><td class="container">
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" style="margin-top: 0px;" width="100%"><tbody><tr><td style="padding: 0px;">
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div style="text-align: center;">
<span style="margin-right: 0px;"><a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Ftldr.tech%2Finfosec%3Futm_source=tldrinfosec/1/0100019ef9bcb0ff-813ea8c7-3750-476f-84b7-c1187f97e0d8-000000/zEVOr0FCX-Nc0P2vYpjMcDtom3bkNpomO4ozHWle8fI=452" rel="noopener noreferrer" target="_blank"><span>Sign Up</span></a>
|<span style="margin-right: 2px; margin-left: 2px;"><a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fadvertise.tldr.tech%2F%3Futm_source=tldrinfosec%26utm_medium=newsletter%26utm_campaign=advertisetopnav/1/0100019ef9bcb0ff-813ea8c7-3750-476f-84b7-c1187f97e0d8-000000/LEKgkhu1qi0_0W772zmJLTabjmuE_ntBGO2OBSR_ykc=452" rel="noopener noreferrer" target="_blank"><span>Advertise</span></a></span>|<span style="margin-left: 2px;"><a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fa.tldrnewsletter.com%2Fweb-version%3Fep=1%26lc=156924ca-84b7-11f0-8d58-47c5c04ad337%26p=28de2a54-6fa9-11f1-aa7e-e1bea4e2db03%26pt=campaign%26t=1782306353%26s=1fa8c85ac0761a6636a6360fcbdef269fcb18a0792a96902032073e373aa8b4c/1/0100019ef9bcb0ff-813ea8c7-3750-476f-84b7-c1187f97e0d8-000000/n9Szgf0IAAVHU9OHdFl3OmCnDSJ2SU1KoQzPoQ5x99c=452"><span>View Online</span></a></span>
<br>
</span></div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="text-align: center;"><span data-darkreader-inline-color="" style="--darkreader-inline-color:#3db3ff; color: rgb(51, 175, 255) !important; font-size: 30px;">T</span><span style="font-size: 30px;"><span data-darkreader-inline-color="" style="color: rgb(232, 192, 96) !important; --darkreader-inline-color:#e8c163; font-size:30px;">L</span><span data-darkreader-inline-color="" style="color: rgb(101, 195, 173) !important; --darkreader-inline-color:#6ec7b2; font-size:30px;">D</span></span><span data-darkreader-inline-color="" style="--darkreader-inline-color:#dd6e6e; color: rgb(220, 107, 107) !important; font-size: 30px;">R</span>
<br>
</td></tr></tbody></table>
<br>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody></tbody></table>
<table style="table-layout: fixed; width:100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;">
<div style="text-align: center;">
<h1><strong>TLDR Information Security <span id="date">2026-06-24</span></strong></h1>
</div>
</td></tr></tbody></table>
<table style="table-layout: fixed; width:100%;" width="100%"><tbody></tbody></table>
</td></tr></tbody></table>
</td></tr></tbody></table>
</td></tr>
<tr bgcolor=""><td class="container">
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td style="padding: 0px;">
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">๐</span></div></div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;">
<h1><strong>Attacks & Vulnerabilities</strong></h1>
</div>
</div>
</td></tr></tbody></table>
<table style="table-layout: fixed; width: 100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Flinks.tldrnewsletter.com%2FNOXz7v/1/0100019ef9bcb0ff-813ea8c7-3750-476f-84b7-c1187f97e0d8-000000/5tsw087No7cinfWSSy1D2IZMOqC6JZQZjxtyijYbsAE=452">
<span>
<strong>India's Tata Electronics Hit By Cybersecurity Breach Claiming to Expose Apple, Tesla Trade Secrets (3 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
The World Leaks ransomware group published more than 200k files allegedly belonging to Indian electronics manufacturer Tata Electronics. The documents include confidential documents from Tesla and Apple, such as product specifications and technical details. The documents also contain emails, event logs, and paper copies of employees, including foreign nationals.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.businessinsider.com%2Fmeta-ai-training-data-leak-exposed-employee-activity-across-company-2026-6%3Futm_source=tldrinfosec/1/0100019ef9bcb0ff-813ea8c7-3750-476f-84b7-c1187f97e0d8-000000/UdbAMgFvTXXXjDNJfVQ1Ht6Gl8_heWDWvEjDBpnH26w=452">
<span>
<strong>Meta Pauses an AI Training Program that Tracks Employees' Keystrokes After an Internal Leak (2 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Meta has paused an internal AI training program after discovering that sensitive data was accessible across the entire company. The controversial Model Capability Initiative was a mandatory program designed to improve Meta's AI models by training on employees' keystrokes and mouse movements. The leaked data includes employees' private conversations, performance data, and transcripts.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Flinks.tldrnewsletter.com%2FnO9lcG/1/0100019ef9bcb0ff-813ea8c7-3750-476f-84b7-c1187f97e0d8-000000/YMV4jcdv_I-1oNCnDKI3-cuL05bXc5zELShcog4sIGo=452">
<span>
<strong>FFmpeg Fixes PixelSmash Flaw in Widely Used Video Decoder (2 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Researchers from JFrog discovered a new vulnerability in FFmpeg that could be used to achieve remote code execution in applications running without ASLR, or to cause denial of service in others. The vulnerability stems from a heap buffer overflow in the MagicYUV decoder's slice handling and can be triggered when the user opens AVI, MKV, or MOV video files, browses a directory containing the file, or runs an automated media ingestion workflow. Any application that uses the popular decoder is potentially vulnerable.
</span>
</span>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">๐ง </span></div>
</div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;">
<h1><strong>Strategies & Tactics</strong></h1>
</div>
</div>
</td></tr></tbody></table>
<table style="table-layout: fixed; width: 100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fblog.cloudflare.com%2Fcopy-fail-linux-vulnerability-mitigation%2F%3Futm_source=tldrinfosec/1/0100019ef9bcb0ff-813ea8c7-3750-476f-84b7-c1187f97e0d8-000000/5v04EVbX3kB_CSvlTeJHygMc8EVY0UJbtRDgMwzGMx0=452">
<span>
<strong>How Cloudflare responded to the โCopy Failโ Linux vulnerability (8 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
A local privilege escalation bug in the Linux kernel's AF_ALG crypto interface let unprivileged users corrupt cached binaries like /usr/bin/su via a 4โbyte outโofโbounds write and gain root. Cloudflare checked which kernel versions were exposed, confirmed that existing behavioral detection caught exploit attempts within minutes, and hunted logs 48 hours back for any signs of use, finding none. They then deployed an eBPFโbased bpfโlsm policy to gate AF_ALG socket binds to an allowโlist, used fleetโwide AF_ALG tracing to avoid breaking legitimate users, and rolled out patched LTS kernels through their normal reboot automation.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fsimonwillison.net%2F2026%2FJun%2F22%2Fprompt-injection-as-role-confusion%2F%3Futm_source=tldrinfosec/1/0100019ef9bcb0ff-813ea8c7-3750-476f-84b7-c1187f97e0d8-000000/DwMSdCv6JrMHM_VcMJRd5YaQch6h9xnw1dMYczU6oh0=452">
<span>
<strong>Prompt Injection as Role Confusion (2 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Charles Ye, Jasmine Cui, and Dylan Hadfield-Menell showed that LLMs cannot reliably distinguish their own privileged text in role tags such as system and assistant from untrusted user input, and that models place greater weight on writing style than on actual content. Attackers exploit this โrole confusionโ by appending user instructions styled to mimic a model's internal reasoning blocks, a technique that drove average jailbreak success to 61% against models like gpt-oss-20b. Defenders can blunt it through โdestyling,โ rewriting incoming text so it no longer matches the expected role-tag format, which dropped attack success from 61% to 10%. Treat role boundaries as continuous rather than reliable trust delimiters, and avoid piping raw external text into privileged-looking templates.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Funit42.paloaltonetworks.com%2Fopenclaw-ai-supply-chain-risk%2F%3Futm_source=tldrinfosec/1/0100019ef9bcb0ff-813ea8c7-3750-476f-84b7-c1187f97e0d8-000000/FAL_DO1A2NHcdyOjXApdXhc8l0GFoJRi2pYNTpM3jCE=452">
<span>
<strong>OpenClaw's Skill Marketplace and the Emerging AI Supply Chain Threat (7 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Unit 42 documented five malicious ClawHub skills that survived VirusTotal and ClawScan screening between February and May 2026, abusing OpenClaw's natural-language execution model to bypass conventional runtime constraints through semantic instruction hijacking rather than memory-safe exploits. Observed tradecraft spanned paste-site redirect lures piping Base64 droppers to macOS infostealers, a README.md padded with 22 MB of junk to exceed scanner size thresholds, and two novel agentic-monetization schemes. Defenders should enforce line-by-line audits of skill source files, validate publisher provenance before install, and monitor outbound traffic for post-install callbacks to undocumented endpoints, cross-referencing every external connection against the skill's stated specification.
</span>
</span>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">๐งโ๐ป</span></div>
</div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;">
<h1><strong>Launches & Tools</strong></h1>
</div>
</div>
</td></tr></tbody></table>
<table style="table-layout: fixed; width: 100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://www.intruder.io/blog/attack-surface-exposures?utm_source=tldrinfosec&utm_medium=p_referral&utm_campaign=global|fixed|asm_index">
<span>
<strong>1 in 4 Organizations Have Exposed MySQL Databases (Sponsor)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Most teams would be surprised what's still open on their own network. <a href="https://www.intruder.io/blog/attack-surface-exposures?utm_source=tldrinfosec&utm_medium=p_referral&utm_campaign=global|fixed|asm_index" rel="noopener noreferrer nofollow" target="_blank"><span>Intruder</span></a> analyzed 3,000 organizations and found attack surface that simply shouldn't be there โ and with time-to-exploit down to a day, it's a problem worth fixing.
<p></p>
<p><a href="https://www.intruder.io/blog/attack-surface-exposures?utm_source=tldrinfosec&utm_medium=p_referral&utm_campaign=global|fixed|asm_index" rel="noopener noreferrer nofollow" target="_blank"><span>See what's in the 2026 Attack Surface Management Index โ no email needed.</span></a>
</p>
</span></span></div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Flinks.tldrnewsletter.com%2F6nW3wy/1/0100019ef9bcb0ff-813ea8c7-3750-476f-84b7-c1187f97e0d8-000000/Rg451jluInzBYTkU8UKaFSJshBiQ6rV-CQAV3DPn-jo=452">
<span>
<strong>Daybreak: Tools for securing every organization in the world (14 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
OpenAI has expanded Daybreak with updated Codex Security workflows, the full GPTโ5.5โCyber model, and a partner program so security vendors can ship these capabilities inside their tools. Codex Security now scans large codebases, validates findings, and drafts patches that plug into existing pipelines. Patch the Planet funds expert-led remediation for key openโsource projects and coordinates closely with governments and critical infrastructure operators.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fgithub.com%2Fduggytuxy%2Fsyswarden%3Futm_source=tldrinfosec/1/0100019ef9bcb0ff-813ea8c7-3750-476f-84b7-c1187f97e0d8-000000/FGUdVGrYPXsGFQClMgezJMrIQPPcHFwVTJumSH6iOIo=452">
<span>
<strong>SysWarden (GitHub Repo)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
SysWarden is a Hardened Host Intrusion Detection & Prevention System (HIDS - HIPS). Designed for critical Linux infrastructures, it enforces automated CIS Level 2 hardening, integrates global Threat Intelligence, and orchestrates dynamic network defense with absolute zero-trust execution.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fgithub.com%2Fassafkip%2Fkipi%3Futm_source=tldrinfosec/1/0100019ef9bcb0ff-813ea8c7-3750-476f-84b7-c1187f97e0d8-000000/Fzj7HeuDJiatRRV6p-Rms8IpN4o_qsL_AdR_AsXwJGM=452">
<span>
<strong>kipi (GitHub Repo)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
kipi is an open-source OSINT investigation platform that transforms documents into a typed entity graph.
</span>
</span>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">๐</span></div></div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><strong><h1>Miscellaneous</h1></strong></div>
</div>
</td></tr></tbody></table>
<table bgcolor="" style="table-layout: fixed; width: 100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fthehackernews.com%2F2026%2F06%2Fgithub-updates-actionscheckout-to-block.html%3Futm_source=tldrinfosec/1/0100019ef9bcb0ff-813ea8c7-3750-476f-84b7-c1187f97e0d8-000000/BgVV2gqSWuer-UazTSJFxVlBGFdyq8ZdSv9JUHT8Gnk=452">
<span>
<strong>GitHub Updates actions/checkout to Block Common Pwn Request Attack Patterns (3 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
GitHub changed actions/checkout so workflows using pull_request_target and workflow_run stop automatically checking out forked pull requests with risky refs, blocking common pwn request patterns by default. The guardrail targets scenarios where untrusted fork code runs with base-repo GITHUB_TOKEN, secrets, and cache, a weakness abused in campaigns like s1ngularity against Nx, PostHog, TanStack, and kubernetes-el/kubernetes-el. Developers should avoid unnecessary pull_request_target use, prefer pull_request when possible, and tightly restrict permissions and untrusted code execution paths in privileged workflows.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.theguardian.com%2Ftechnology%2F2026%2Fjun%2F22%2Fanthropic-claude-fable-ai-model-artificial-intelligence-national-security%3Futm_source=tldrinfosec/1/0100019ef9bcb0ff-813ea8c7-3750-476f-84b7-c1187f97e0d8-000000/4M0XO5ryusg6qCop1__lY4gq0_k6SQr3VVkiX6MwLiM=452">
<span>
<strong>AI Models Capable of Devastating Attacks on Governments and Businesses are Months Away (2 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
The Five Eyes agencies have released a statement warning businesses that frontier models capable of devastating cybersecurity impacts are months, not years away. Businesses are urged to view cybersecurity as a fundamental issue as opposed to a technical issue. Organizations will need to prepare for other models that are competitive with Fable and Mythos to emerge.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.cloudflare.com%2Fpt-br%2Fpress%2Fpress-releases%2F2026%2Fcloudflare-collaborates-with-leading-browsers-to-develop-a-privacy-first-protocol-for-the-global-internet%2F%3Futm_source=tldrinfosec/1/0100019ef9bcb0ff-813ea8c7-3750-476f-84b7-c1187f97e0d8-000000/jGMtWSCiiGPr-2fflpQvymmZTlJfYXA5DkMPrAo4-hI=452">
<span>
<strong>Cloudflare Collaborates With Leading Browsers to Develop a Privacy-First Protocol For the Global Internet (2 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Recognizing the changing landscape of the internet from human users to AI agents, Cloudflare has launched a new initiative in collaboration with Mozilla, Google, and Microsoft to create new methods for users to identify as humans with less friction. Private Access Control Tokens (PACT) are designed to allow sites with strong knowledge of personhood to issue anonymous tokens which can be provided to other sites to prove a human is in the loop.
</span>
</span>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">โก</span></div></div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;">
<h1><strong>Quick Links</strong></h1>
</div>
</div>
</td></tr></tbody></table>
<table bgcolor="" style="table-layout: fixed; width: 100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fblog.lastpass.com%2Fposts%2Fklue-supply-chain-incident-and-lastpass-response%3Futm_source=tldrinfosec/1/0100019ef9bcb0ff-813ea8c7-3750-476f-84b7-c1187f97e0d8-000000/eQ_Lt5Y_2MCW2mG0lqRtxB76EFA7XD2cZbeznKLIvKQ=452">
<span>
<strong>Klue Supply Chain Incident & LastPass Response (2 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
LastPass reports that an incident at vendor Klue allowed an attacker to obtain OAuth tokens for multiple Klue customers, then access LastPass customer records stored in Salesforce, including contact and CRM data, but not vault contents or Gong data.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.theregister.com%2Fsecurity%2F2026%2F06%2F22%2Fcanadian-utility-fesses-up-to-data-breach-but-key-details-remain-off-grid%2F5259309%3Futm_source=tldrinfosec/1/0100019ef9bcb0ff-813ea8c7-3750-476f-84b7-c1187f97e0d8-000000/7BDYlNfSCPZha-LI8kfzb2RaIXasor0zpr3XZ_HJ7uc=452">
<span>
<strong>Canadian utility fesses up to data breach, but key details remain off-grid (2 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
London Hydro has reported a security incident that exposed customer contact and account details, including billing numbers, service addresses, pricing plans, and meter data - banking and government ID data were not involved.
</span>
</span>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td align="left" style="word-break: break-word; vertical-align: top; padding: 5px 10px;">
<p style="padding: 0; margin: 0; font-size: 22px; color: #000000; line-height: 1.6; font-weight: bold;">
Love TLDR? Tell your friends and get rewards!
</p>
</td></tr>
<tr><td class="container" style="padding: 0px 10px 15px;">
<div class="text-block">
Share your referral link below with friends to get free TLDR swag!
</div>
</td></tr>
<tr><td align="left" style="padding: 10px;">
<div class="text-block">
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Frefer.tldr.tech%2F78de0e20%2F8/1/0100019ef9bcb0ff-813ea8c7-3750-476f-84b7-c1187f97e0d8-000000/hHGZoPwbmYA-px3CHeyZKk2jlEfD0pd-lJI0OsrL2HU=452" style="color: #464ba4; text-decoration: underline;">https://refer.tldr.tech/78de0e20/8</a>
</div>
</td></tr>
<tr></tr>
<tr><td align="left" style="padding:5px 10px;">
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fhub.sparklp.co%2Fsub_d62447d5a74a%2F8/1/0100019ef9bcb0ff-813ea8c7-3750-476f-84b7-c1187f97e0d8-000000/krznZ8GAztYe1H8nFStfYD4eIMPW2hKpyMpa2tFjGlo=452" style="font-size: 16px; line-height: 1.6; padding: 10px 0; display: inline-block; text-decoration: underline;"><span style="mso-text-raise:13pt; text-decoration: underline;">Track your referrals here.</span></a>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td align="left" style="word-break: break-word; vertical-align: top; padding: 5px 10px;">
<p style="padding: 0; margin: 0; font-size: 22px; color: #000000; line-height: 1.6; font-weight: bold;">
Want to advertise in TLDR? ๐ฐ
</p>
<div class="text-block" style="margin-top: 10px;">
If your company is interested in reaching an audience of cybersecurity professionals and decision makers, you may want to <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fadvertise.tldr.tech%2F%3Futm_source=tldrinfosec%26utm_medium=newsletter%26utm_campaign=advertisecta/1/0100019ef9bcb0ff-813ea8c7-3750-476f-84b7-c1187f97e0d8-000000/l7oq3o-z7WWUM8x6uo1MV_TAK5KSTzmjfBXuZOSfZFk=452"><strong><span>advertise with us</span></strong></a>.
</div>
<br>
<!-- New "Want to work at TLDR?" section -->
<p style="padding: 0; margin: 0; font-size: 22px; color: #000000; line-height: 1.6; font-weight: bold;">
Want to work at TLDR? ๐ผ
</p>
<div class="text-block" style="margin-top: 10px;">
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fjobs.ashbyhq.com%2Ftldr.tech/1/0100019ef9bcb0ff-813ea8c7-3750-476f-84b7-c1187f97e0d8-000000/-KQtS91GVC66NwJfSoDq_6d0e0TMYaSE3YO6UJ4oxAo=452" rel="noopener noreferrer" style="color: #0000EE; text-decoration: underline;" target="_blank"><strong>Apply here</strong></a>,
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fjobs.ashbyhq.com%2Ftldr.tech%2Fc227b917-a6a4-40ce-8950-d3e165357871/1/0100019ef9bcb0ff-813ea8c7-3750-476f-84b7-c1187f97e0d8-000000/ZvO6gEkROqi3FPXCJsKFwoQRr-m4yWAYmStT1B_Yl4s=452" rel="noopener noreferrer" style="color: #0000EE; text-decoration: underline;" target="_blank"><strong>create your own role</strong></a> or send a friend's resume to <a href="mailto:jobs@tldr.tech" style="color: #0000EE; text-decoration: underline;">jobs@tldr.tech</a> and get $1k if we hire them! TLDR is one of <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.linkedin.com%2Ffeed%2Fupdate%2Furn:li:activity:7401699691039830016%2F/1/0100019ef9bcb0ff-813ea8c7-3750-476f-84b7-c1187f97e0d8-000000/qa6zCVk0N-pv6iutZ0Vbop0zIxAx6SdzBhyYL2vNcFI=452" rel="noopener noreferrer" style="color: #0000EE; text-decoration: underline;" target="_blank"><strong>Inc.'s Best Bootstrapped businesses</strong></a> of 2025.
</div>
<br>
<div class="text-block">
If you have any comments or feedback, just respond to this email!
<br>
<br> Thanks for reading,
<br>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.linkedin.com%2Fin%2Fprasannagautam%2F/1/0100019ef9bcb0ff-813ea8c7-3750-476f-84b7-c1187f97e0d8-000000/tpCH0g0LM1ImNO5Ae43CRbSqXnwZ9IO3pdctyy132_k=452"><span>Prasanna Gautam</span></a>, <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.linkedin.com%2Fin%2Fericfernandezdelcampo%2F/1/0100019ef9bcb0ff-813ea8c7-3750-476f-84b7-c1187f97e0d8-000000/7hrcaukudiXbNfv_S7OCxJlg1gaYFRTGxH8yzI05xgU=452"><span>Eric Fernandez</span></a> & <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.linkedin.com%2Fin%2Fsammy-tbeile%2F/1/0100019ef9bcb0ff-813ea8c7-3750-476f-84b7-c1187f97e0d8-000000/QMwEE60lODvPIYZi-RfCzoGXrU1wPYyH4m6nz-lZTvs=452"><span>Sammy Tbeile</span></a>
<br>
<br>
</div>
<br>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block" id="testing-id">
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Ftldr.tech%2Finfosec%2Fmanage%3Femail=silk.theater.56%2540fwdnl.com/1/0100019ef9bcb0ff-813ea8c7-3750-476f-84b7-c1187f97e0d8-000000/DdbBab6ILiJBgixVYF-LBPPdUzym9ShEt377N4qFXC0=452">Manage your subscriptions</a> to our other newsletters on tech, startups, and programming. Or if TLDR Information Security isn't for you, please <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fa.tldrnewsletter.com%2Funsubscribe%3Fep=1%26l=8d9cea11-3e94-11ed-9a32-0241b9615763%26lc=156924ca-84b7-11f0-8d58-47c5c04ad337%26p=28de2a54-6fa9-11f1-aa7e-e1bea4e2db03%26pt=campaign%26pv=4%26spa=1782306029%26t=1782306353%26s=449b433ed4298d7e2b7638a34bc86de9249286360524d4a8674809a24f4a564a/1/0100019ef9bcb0ff-813ea8c7-3750-476f-84b7-c1187f97e0d8-000000/A09eF7KYpiGxBv5ia4d8Ks_ok6-xVVV5Zqjzgf4KGc0=452">unsubscribe</a>.
<br>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
</td></tr></tbody></table>
</td></tr></tbody></table>
</td></tr></tbody></table>
<img alt="" src="http://tracking.tldrnewsletter.com/CI0/0100019ef9bcb0ff-813ea8c7-3750-476f-84b7-c1187f97e0d8-000000/Pdj2FIlPJYVg7hHUm1mzZUVILJ4AwnED4AghFZXI94s=452" style="display: none; width: 1px; height: 1px;">
</body></html>