<!DOCTYPE html><html lang="en"><head>
<meta http-equiv="Content-Type" content="text/html charset=UTF-8">
<meta charset="UTF-8">
<meta name="viewport" content="width=device-width">
<meta name="x-apple-disable-message-reformatting">
<title>TLDR InfoSec</title>
<meta name="color-scheme" content="light dark">
<meta name="supported-color-schemes" content="light dark">
<style type="text/css">
:root {
color-scheme: light dark; supported-color-schemes: light dark;
}
*,
*:after,
*:before {
-webkit-box-sizing: border-box; -moz-box-sizing: border-box; box-sizing: border-box;
}
* {
-ms-text-size-adjust: 100%; -webkit-text-size-adjust: 100%;
}
html,
body,
.document {
width: 100% !important; height: 100% !important; margin: 0; padding: 0;
}
body {
-webkit-font-smoothing: antialiased; -moz-osx-font-smoothing: grayscale; text-rendering: optimizeLegibility;
}
div[style*="margin: 16px 0"] {
margin: 0 !important;
}
table,
td {
mso-table-lspace: 0pt; mso-table-rspace: 0pt;
}
table {
border-spacing: 0; border-collapse: collapse; table-layout: fixed; margin: 0 auto;
}
img {
-ms-interpolation-mode: bicubic; max-width: 100%; border: 0;
}
*[x-apple-data-detectors] {
color: inherit !important; text-decoration: none !important;
}
.x-gmail-data-detectors,
.x-gmail-data-detectors *,
.aBn {
border-bottom: 0 !important; cursor: default !important;
}
.btn {
-webkit-transition: all 200ms ease; transition: all 200ms ease;
}
.btn:hover {
background-color: #f67575; border-color: #f67575;
}
* {
font-family: Arial, Helvetica, sans-serif; font-size: 18px;
}
@media screen and (max-width: 600px) {
.container {
width: 100%; margin: auto;
}
.stack {
display: block!important; width: 100%!important; max-width: 100%!important;
}
.btn {
display: block; width: 100%; text-align: center;
}
}
body,
p,
td,
tr,
.body,
table,
h1,
h2,
h3,
h4,
h5,
h6,
div,
span {
background-color: #FEFEFE !important; color: #010101 !important;
}
@media (prefers-color-scheme: dark) {
body,
p,
td,
tr,
.body,
table,
h1,
h2,
h3,
h4,
h5,
h6,
div,
span {
background-color: #27292D !important; color: #FEFEFE !important;
}
}
a {
color: inherit !important; text-decoration: underline !important;
}
</style>
<!--[if mso | ie]>
<style type="text/css">
a {
background-color: #FEFEFE !important; color: #010101 !important;
}
@media (prefers-color-scheme: dark) {
a {
background-color: #27292D !important; color: #FEFEFE !important;
}
}
</style>
<![endif]-->
</head>
<body class="">
<div style="display: none; max-height: 0px; overflow: hidden;">Attackers are exploiting CVE-2026-20230 in Cisco Unified Communications Manager to gain root access through an unauthenticated SSRF path </div>
<div style="display: none; max-height: 0px; overflow: hidden;">
<br>
</div>
<table align="center" class="document">
<tbody>
<tr>
<td valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" class="container" width="600">
<tbody>
<tr class="inner-body">
<td>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%">
<tbody>
<tr class="header">
<td bgcolor="" class="container">
<table width="100%">
<tbody>
<tr>
<td class="container">
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" style="margin-top: 0px;" width="100%">
<tbody>
<tr>
<td style="padding: 0px;">
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%">
<tbody>
<tr>
<td class="container" style="padding: 15px 15px;">
<div style="text-align: center;">
<span style="margin-right: 0px;"><a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Ftldr.tech%2Finfosec%3Futm_source=tldrinfosec/1/0100019f137d2ae2-1cc17062-270f-4ead-a405-3d17c2e7a253-000000/AVfKe98QhpUpfFeRuu0pYz4y5AzD_SQKJiqqxLcEJpY=452" rel="noopener noreferrer" target="_blank"><span>Sign Up</span></a>
|<span style="margin-right: 2px; margin-left: 2px;"><a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fadvertise.tldr.tech%2F%3Futm_source=tldrinfosec%26utm_medium=newsletter%26utm_campaign=advertisetopnav/1/0100019f137d2ae2-1cc17062-270f-4ead-a405-3d17c2e7a253-000000/6pVahKtjiyAOcDHPJvAZ8QyyEG6yagvIq2ASx1zMJmw=452" rel="noopener noreferrer" target="_blank"><span>Advertise</span></a></span>|<span style="margin-left: 2px;"><a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fa.tldrnewsletter.com%2Fweb-version%3Fep=1%26lc=156924ca-84b7-11f0-8d58-47c5c04ad337%26p=744d7b2c-736c-11f1-ba41-afc99fb97726%26pt=campaign%26t=1782738397%26s=41fea5fb31c55080f787ca9513302ce57d2ccba7fbacaf494e66f933696419f9/1/0100019f137d2ae2-1cc17062-270f-4ead-a405-3d17c2e7a253-000000/7Rq3TeAq21VQM4bWi-kKu2BG8_O1ckPTslg8u7zzIN8=452"><span>View Online</span></a></span>
<br>
</span></div>
</td>
</tr>
</tbody>
</table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%">
<tbody>
<tr>
<td class="container" style="text-align: center;"><span data-darkreader-inline-color="" style="--darkreader-inline-color:#3db3ff; color: rgb(51, 175, 255) !important; font-size: 30px;">T</span><span style="font-size: 30px;"><span data-darkreader-inline-color="" style="color: rgb(232, 192, 96) !important; --darkreader-inline-color:#e8c163; font-size:30px;">L</span><span data-darkreader-inline-color="" style="color: rgb(101, 195, 173) !important; --darkreader-inline-color:#6ec7b2; font-size:30px;">D</span></span><span data-darkreader-inline-color="" style="--darkreader-inline-color:#dd6e6e; color: rgb(220, 107, 107) !important; font-size: 30px;">R</span>
<br>
</td>
</tr>
</tbody>
</table>
<br>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%">
<tbody></tbody>
</table>
<table style="table-layout: fixed; width:100%;" width="100%">
<tbody>
<tr>
<td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;">
<div style="text-align: center;">
<h1><strong>TLDR Information Security <span id="date">2026-06-29</span></strong></h1>
</div>
</td>
</tr>
</tbody>
</table>
<table style="table-layout: fixed; width:100%;" width="100%">
<tbody></tbody>
</table>
</td>
</tr>
</tbody>
</table>
</td>
</tr>
</tbody>
</table>
</td>
</tr>
<tr bgcolor="">
<td class="container">
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%">
<tbody>
<tr>
<td style="padding: 0px;">
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%">
<tbody>
<tr>
<td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">🔓</span></div></div>
</td>
</tr>
</tbody>
</table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%">
<tbody>
<tr>
<td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;">
<h1><strong>Attacks & Vulnerabilities</strong></h1>
</div>
</div>
</td>
</tr>
</tbody>
</table>
<table style="table-layout: fixed; width: 100%;" width="100%">
<tbody>
<tr>
<td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%">
<tbody>
<tr>
<td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fit4sec.substack.com%2Fp%2Fxss-to-root-attack-over-the-air-send%3Futm_source=tldrinfosec/1/0100019f137d2ae2-1cc17062-270f-4ead-a405-3d17c2e7a253-000000/1d1_Lu2Ca6svzAq5XsquNOhYs_swVOU0Kq-u8vLqN2Y=452">
<span>
<strong>XSS-to-Root Attack Delivers Malicious Code via Wi-Fi SSID or LoRa Node Name (2 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Security researcher Sasha Romijn demonstrated an XSS attack vector that delivers malicious code over the air through Wi-Fi SSIDs or LoRa node names, exploiting infrastructure web interfaces that render these network identifiers without proper sanitization. The vulnerability is especially dangerous in environments that rely on outdated embedded browsers with infrequent security updates, where a successful injection can escalate from script execution to root access on the underlying device. Defenders should audit management interfaces that display SSID or node name fields, apply input sanitization and output encoding to those components, and update embedded browsers to current versions where patching is available.
</span>
</span>
</div>
</td>
</tr>
</tbody>
</table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%">
<tbody>
<tr>
<td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Flinks.tldrnewsletter.com%2FbdEztN/1/0100019f137d2ae2-1cc17062-270f-4ead-a405-3d17c2e7a253-000000/olbzTJ23-PZckyJrUNtndxTdoTa_FlC51bcLCGzntEU=452">
<span>
<strong>In Less Than 24 Hours, Attackers Weaponize Cisco CUCM Flaw (2 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Attackers are exploiting CVE-2026-20230 in Cisco Unified Communications Manager to gain root access through an unauthenticated SSRF path in the WebDialer service. The exploit chain uses crafted HTTP requests, a rogue Apache Axis service, and staged JSP web shells to reach command execution and privilege escalation. Defused saw weaponization within 24 hours of public PoC release, and Horizon3.ai published a test while urging rapid patching or WebDialer shutdown on unpatched systems.
</span>
</span>
</div>
</td>
</tr>
</tbody>
</table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%">
<tbody>
<tr>
<td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.theregister.com%2Fcyber-crime%2F2026%2F06%2F24%2Fyou-have-got-to-be-kddi-ng-japanese-telco-exposes-142-million-managed-email-credentials%2F5260555%3Futm_source=tldrinfosec/1/0100019f137d2ae2-1cc17062-270f-4ead-a405-3d17c2e7a253-000000/pgElMu03dhVhbrkW23lQb58_fR0k0GUMHqdMm1giT2I=452">
<span>
<strong>You have got to be KDDI-ng – Japanese telco exposes 14.2 million managed email credentials (2 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
KDDI reported unauthorized access to its managed email platform on June 17 after attackers exploited a vulnerability in third‑party software, potentially exposing data for up to 14.2 million accounts. The service hosts email for KDDI and five Japanese ISPs. Passwords were hashed and encrypted, but affected users face phishing and identity‑theft risks while regulators and customers await the full scope of the incident.
</span>
</span>
</div>
</td>
</tr>
</tbody>
</table>
</td>
</tr>
</tbody>
</table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%">
<tbody>
<tr>
<td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">🧠</span></div>
</div>
</td>
</tr>
</tbody>
</table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%">
<tbody>
<tr>
<td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;">
<h1><strong>Strategies & Tactics</strong></h1>
</div>
</div>
</td>
</tr>
</tbody>
</table>
<table style="table-layout: fixed; width: 100%;" width="100%">
<tbody>
<tr>
<td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%">
<tbody>
<tr>
<td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fsimonwillison.net%2F2026%2FJun%2F26%2Fhack-my-ai-assistant%2F%23atom-everything%3Futm_source=tldrinfosec/1/0100019f137d2ae2-1cc17062-270f-4ead-a405-3d17c2e7a253-000000/lFLApUuZ81jUjE9nXWq7Gcv31h2IFdFdMDwG4No6m8g=452">
<span>
<strong>What Happened After 2,000 People Tried to Hack My AI Assistant (3 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Fernando Irarrázaval launched hackmyclaw.com to test whether his OpenClaw AI assistant could be tricked into leaking a secrets.env file via email, drawing over 2,000 participants who sent more than 6,000 prompt-injection-style messages. The secret was never successfully exfiltrated, indicating that the anti-prompt-injection measures were effective, though the exercise incurred approximately $500 in token costs and triggered a suspension of the associated Google Gmail account. Defenders running similar red-team exercises should pre-provision API budgets, isolate mail accounts from production services, and treat provider suspension as a likely operational side effect of high-volume adversarial testing.
</span>
</span>
</div>
</td>
</tr>
</tbody>
</table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%">
<tbody>
<tr>
<td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fblog.thinkst.com%2F2026%2F06%2Fintroducing-package-proxy-supply-chain-safety-checks-without-client-side-software.html%3Futm_source=tldrinfosec/1/0100019f137d2ae2-1cc17062-270f-4ead-a405-3d17c2e7a253-000000/dcdq0ZtJrhFQh6sRdAWJeq-1ZFyJ4obB11HHnfv7Nfc=452">
<span>
<strong>Introducing Package Proxy: Supply-Chain Safety Checks Without Client-Side Software (4 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
In the wake of numerous recent supply chain compromises, Thinkst released Package Proxy as an inline package guard. Package Proxy supports dependency cooldown, upload-mechanism regression checks, a bypass for explicit audit-fix steps, and block/allow lists. Package Proxy deploys on Cloudflare, uses Workers to serve packages, and uses a D1 Database for logging, enabling SQL queries into package installs.
</span>
</span>
</div>
</td>
</tr>
</tbody>
</table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%">
<tbody>
<tr>
<td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.goblinloot.net%2F2026%2F06%2Fadversaries-in-proxmox.html%3Futm_source=tldrinfosec/1/0100019f137d2ae2-1cc17062-270f-4ead-a405-3d17c2e7a253-000000/utxihQ7vFpXT7fE-YkDOIDgZm4vKmLZXknI1u7b6G2I=452">
<span>
<strong>Goblin Loot: Proxmox and Adversaries (4 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
As Proxmox displaces VMware in many shops, this detection-engineering walkthrough outlines how adversaries operate on PVE nodes: enumerating realms via an unauthenticated GET to /api2/json/access/domains/, brute-forcing accounts, then living off the land with pvesh to enumerate or destroy guest VMs and abusing IP sets in /etc/pve/firewall/cluster.fw to lock responders out. pvesh activity never reaches the pveproxy audit trail and is visible only through process execution and journald, so defenders should model normal PVE CLI usage by SSH-session lineage, command diversity, and invocation directory, and deploy AuditD watches keyed to executables under /usr/sbin and /usr/bin (qm, pct, pvecm, pvesm, pveum, and pvesh) plus writes to /etc/pve/ and /usr/share/perl5/PVE/. Collect the pveproxy access log, along with the named systemd units (pvedaemon, pve-cluster, pveproxy, pvefw-logger, proxmox-firewall, and related services), via journald to close the gaps left by GUI-routed and cluster tasks.
</span>
</span>
</div>
</td>
</tr>
</tbody>
</table>
</td>
</tr>
</tbody>
</table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%">
<tbody>
<tr>
<td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">🧑💻</span></div>
</div>
</td>
</tr>
</tbody>
</table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%">
<tbody>
<tr>
<td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;">
<h1><strong>Launches & Tools</strong></h1>
</div>
</div>
</td>
</tr>
</tbody>
</table>
<table style="table-layout: fixed; width: 100%;" width="100%">
<tbody>
<tr>
<td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%">
<tbody>
<tr>
<td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.gartner.com%2Fen%2Fconferences%2Fna%2Fidentity-access-management-us%3Futm_source=tldr%26utm_medium=promotion%26utm_campaign=EVT_NA_2026_IAM21_PP_MP1_TLDR%26utm_term=ISTLDR/1/0100019f137d2ae2-1cc17062-270f-4ead-a405-3d17c2e7a253-000000/k-_MFW5hM_MxpOEcowQycPoAvtrnWPzbVEGuuuy81GE=452">
<span>
<strong>Save $400 on Gartner Identity & Access Management Summit 2026 (Sponsor)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Join IAM and security leaders at Gartner IAM Summit 2026 to tackle today's most pressing identity challenges — AI-driven threats, machine identities, Zero Trust, and more across 70+ analyst-led sessions. <a class="underline underline underline-offset-2 decoration-1 decoration-current/40 hover:decoration-current focus:decoration-current" href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.gartner.com%2Fen%2Fconferences%2Fna%2Fidentity-access-management-us%2Fsessions%3Futm_source=tldr%26utm_medium=promotion%26utm_campaign=EVT_NA_2026_IAM21_PP_MP1_TLDR%26utm_term=ISTLDR/1/0100019f137d2ae2-1cc17062-270f-4ead-a405-3d17c2e7a253-000000/ypgVoPqWz-Vjd9LUHngtvN5exQWRVpAKD8QfcWZlI1k=452" rel="noopener noreferrer nofollow" target="_blank"><span>Explore the 2026 conference topics →</span></a> <a class="underline underline underline-offset-2 decoration-1 decoration-current/40 hover:decoration-current focus:decoration-current" href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.gartner.com%2Fen%2Fconferences%2Fna%2Fidentity-access-management-us%2Fregister%3Futm_source=tldr%26utm_medium=promotion%26utm_campaign=EVT_NA_2026_IAM21_PP_MP1_TLDR%26utm_term=ISTLDR/1/0100019f137d2ae2-1cc17062-270f-4ead-a405-3d17c2e7a253-000000/9gF1NMYTwzjzYcHnamPLqxPTGBhgUwtFcae-EJyK0_M=452" rel="noopener noreferrer nofollow" target="_blank"><span>Register by October 9 to save $400.</span></a>
</span>
</span>
</div>
</td>
</tr>
</tbody>
</table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%">
<tbody>
<tr>
<td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fthenextweb.com%2Fnews%2Fasian-ai-startups-mythos-alternatives-anthropic-export-ban%3Futm_source=tldrinfosec/1/0100019f137d2ae2-1cc17062-270f-4ead-a405-3d17c2e7a253-000000/RGb93i_nTeC__yjlx_4yKGTrNLQanYIYUaIhn13Y9xU=452">
<span>
<strong>Sakana AI and 360 Security Launch AI Tools to Fill the Gap Anthropic's Export Ban Created (6 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Tokyo-based Sakana AI launched Fugu, a multi-model orchestration system that matches Fable 5 benchmarks and is positioned as a competitor to Anthropic's Fable 5 and Mythos, while Beijing-based 360 Security introduced Tulongzhen, an AI tool targeted at automated vulnerability discovery and incident response alongside cyber-defense tools like Yitianzhen. Both tools were developed to fill the market gap created by US export bans restricting access to Anthropic's models, though as vendor announcements, the benchmark claims warrant independent validation.
</span>
</span>
</div>
</td>
</tr>
</tbody>
</table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%">
<tbody>
<tr>
<td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fnebulock.io%2F%3Futm_source=tldrinfosec/1/0100019f137d2ae2-1cc17062-270f-4ead-a405-3d17c2e7a253-000000/HA2DpxRgP5Q49_OzYExY0t2__n2gUv2cy11MoF71sSE=452">
<span>
<strong>Nebulock (Product Launch)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Nebulock provides a threat hunting platform that works across endpoint, cloud, identity, and network systems. It tracks human and machine accounts, correlates activity, and generates detection rules to spot behaviors linked to compromise.
</span>
</span>
</div>
</td>
</tr>
</tbody>
</table>
</td>
</tr>
</tbody>
</table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%">
<tbody>
<tr>
<td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">🎁</span></div></div>
</td>
</tr>
</tbody>
</table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%">
<tbody>
<tr>
<td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><strong><h1>Miscellaneous</h1></strong></div>
</div>
</td>
</tr>
</tbody>
</table>
<table bgcolor="" style="table-layout: fixed; width: 100%;" width="100%">
<tbody>
<tr>
<td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%">
<tbody>
<tr>
<td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fnsa.2026.action.cr.yp.to%2F/1/0100019f137d2ae2-1cc17062-270f-4ead-a405-3d17c2e7a253-000000/m_j9aRS6QMC-VhoQV1DE2OKcAoz__44b5dIAyG6BCUM=452">
<span>
<strong>NSA's SIGINT Enabling Project Pushes Weakened TLS Post-Quantum Standard (1 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
The NSA's SIGINT Enabling Project is reportedly pressuring the IETF to adopt "ietf-tls-mlkem" as a replacement for "ietf-tls-ecdhe-mlkem," a shift the author characterizes as a deliberate weakening of post-quantum TLS cryptography. NSA advocates allegedly manipulated the IETF TLS working group's voting process to secure a favorable outcome, fitting a historical pattern of the agency sabotaging cryptographic standards through standards bodies. Readers concerned about protocol integrity are urged to submit opposition comments to the IETF mailing list by July 7, though the claims rest on a single advocacy source with an evident stake in the outcome.
</span>
</span>
</div>
</td>
</tr>
</tbody>
</table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%">
<tbody>
<tr>
<td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Flwn.net%2FArticles%2F1079657%2F%3Futm_source=tldrinfosec/1/0100019f137d2ae2-1cc17062-270f-4ead-a405-3d17c2e7a253-000000/FROLpOAJkkLNBUyuSTksi1JyFP0EDDrx2EDIBeatuc4=452">
<span>
<strong>The "Akrites" vulnerability-mitigation project launches (1 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
The Linux Foundation and a broad coalition of co-signers launched Akrites, a project to fast-track upstream vulnerability fixes and prioritize patch deployment over public disclosure, treating undisclosed flaws in widely deployed packages as weapons, keeping fixes confidential until deployed, and acting as the maintainer of last resort for unmaintained critical packages.
</span>
</span>
</div>
</td>
</tr>
</tbody>
</table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%">
<tbody>
<tr>
<td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fthehackernews.com%2F2026%2F06%2Famazon-q-developer-flaw-could-let.html%3Futm_source=tldrinfosec/1/0100019f137d2ae2-1cc17062-270f-4ead-a405-3d17c2e7a253-000000/FcKHAtUPlewQl0kPaxNi1gP7_mjNTh5EirdHkvrbc8s=452">
<span>
<strong>Amazon Q Developer Flaw Could Let Malicious Repos Run Code via MCP Configs (2 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
A bug in Amazon Q Developer let MCP configs in a cloned repo start local servers that inherited live AWS credentials, enabling command execution without extra login. Wiz showed config-driven theft of the active AWS session, and AWS patched the issue in Language Servers for AWS, requiring updated IDE plugins and adding explicit prompts before untrusted MCP servers run.
</span>
</span>
</div>
</td>
</tr>
</tbody>
</table>
</td>
</tr>
</tbody>
</table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%">
<tbody>
<tr>
<td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">⚡</span></div></div>
</td>
</tr>
</tbody>
</table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%">
<tbody>
<tr>
<td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;">
<h1><strong>Quick Links</strong></h1>
</div>
</div>
</td>
</tr>
</tbody>
</table>
<table bgcolor="" style="table-layout: fixed; width: 100%;" width="100%">
<tbody>
<tr>
<td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%">
<tbody>
<tr>
<td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Foptro.ai%2Fgrcnow%2F%3Futm_campaign=grc-now-2026-07%26utm_medium=email%26utm_source=tldr-compliance%26utm_content=06-29-2026/1/0100019f137d2ae2-1cc17062-270f-4ead-a405-3d17c2e7a253-000000/jLNOP-iuM-Ai2Nm5NODC0eP88Tw5TqiUbZLu_uHIxYc=452">
<span>
<strong>Last chance: save your spot @ GRC Now and earn 8 free CPEs (Sponsor)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Join over 15K of your peers! Explore the latest trends in GRC, AI governance, and regulatory changes. Sessions entitle you to up to 8 CPE credits. <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Foptro.ai%2Fgrcnow%2F%3Futm_campaign=grc-now-2026-07%26utm_medium=email%26utm_source=tldr-compliance%26utm_content=06-29-2026/2/0100019f137d2ae2-1cc17062-270f-4ead-a405-3d17c2e7a253-000000/lZc5zeyE7IbULhnSVt32wOpvZnzn6_Rtpcm5rVvlQv8=452" rel="noopener noreferrer nofollow" target="_blank"><span>Register for GRC Now by Optro (free, virtual)</span></a>
</span>
</span>
</div>
</td>
</tr>
</tbody>
</table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%">
<tbody>
<tr>
<td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fkrebsonsecurity.com%2F2026%2F06%2Fscattered-spider-hackers-plead-guilty-on-day-1-of-trial%2F%3Futm_source=tldrinfosec/1/0100019f137d2ae2-1cc17062-270f-4ead-a405-3d17c2e7a253-000000/vN_Eey8tHynbad3eJ-1eoHLSbvQkzdWUupLXzzvN_D8=452">
<span>
<strong>Scattered Spider Hackers Plead Guilty on Day 1 of Trial (2 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Scattered Spider members Thalha Jubair, 20, and Owen Flowers, 18, pleaded guilty in the UK to the August 2024 Transport for London intrusion.
</span>
</span>
</div>
</td>
</tr>
</tbody>
</table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%">
<tbody>
<tr>
<td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Ftechcrunch.com%2F2026%2F06%2F26%2Frussian-hackers-were-behind-2-5-billion-hack-of-jaguar-land-rover-report%2F%3Futm_source=tldrinfosec/1/0100019f137d2ae2-1cc17062-270f-4ead-a405-3d17c2e7a253-000000/_PUj540OtHMQIJBboQeTqEneWUJzu6t2clLPOFkZpUI=452">
<span>
<strong>Russian hackers were behind $2.5B hack of Jaguar Land Rover (1 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Hackers hit Jaguar Land Rover in 2025, stopping production for months and triggering a £1.5 billion government bailout as losses reached about $2.5 billion.
</span>
</span>
</div>
</td>
</tr>
</tbody>
</table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%">
<tbody>
<tr>
<td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Flinks.tldrnewsletter.com%2FNJ6zqD/1/0100019f137d2ae2-1cc17062-270f-4ead-a405-3d17c2e7a253-000000/9FvH5P_DBIsM22D9_FM-_P9FQwcOi7hvOXPbcSPoHIo=452">
<span>
<strong>New Enterprise-Ready MCP Specification Brings New Security Challenges (4 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
MCP moves from a local, single-user integration tool to an enterprise-ready, stateless protocol with new SEPs, tracking IDs, HTTP headers, MCP Apps, and long-running tasks, removing some legacy vulnerabilities while shifting exposure to MCP servers.
</span>
</span>
</div>
</td>
</tr>
</tbody>
</table>
</td>
</tr>
</tbody>
</table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%">
<tbody>
<tr>
<td align="left" style="word-break: break-word; vertical-align: top; padding: 5px 10px;">
<p style="padding: 0; margin: 0; font-size: 22px; color: #000000; line-height: 1.6; font-weight: bold;">
Love TLDR? Tell your friends and get rewards!
</p>
</td>
</tr>
<tr>
<td class="container" style="padding: 0px 10px 15px;">
<div class="text-block">
Share your referral link below with friends to get free TLDR swag!
</div>
</td>
</tr>
<tr>
<td align="left" style="padding: 10px;">
<div class="text-block">
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Frefer.tldr.tech%2F78de0e20%2F8/1/0100019f137d2ae2-1cc17062-270f-4ead-a405-3d17c2e7a253-000000/m4fV6QEBuFmf3P0jE6ASKu_rRZH5q8lp862Q-JNO4LI=452" style="color: #464ba4; text-decoration: underline;">https://refer.tldr.tech/78de0e20/8</a>
</div>
</td>
</tr>
<tr></tr>
<tr>
<td align="left" style="padding:5px 10px;">
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fhub.sparklp.co%2Fsub_d62447d5a74a%2F8/1/0100019f137d2ae2-1cc17062-270f-4ead-a405-3d17c2e7a253-000000/2t6_AFGZ6X5YZJw5foxzsxzYMp7KzEuLl98xz99_mhg=452" style="font-size: 16px; line-height: 1.6; padding: 10px 0; display: inline-block; text-decoration: underline;"><span style="mso-text-raise:13pt; text-decoration: underline;">Track your referrals here.</span></a>
</td>
</tr>
</tbody>
</table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%">
<tbody>
<tr>
<td align="left" style="word-break: break-word; vertical-align: top; padding: 5px 10px;">
<p style="padding: 0; margin: 0; font-size: 22px; color: #000000; line-height: 1.6; font-weight: bold;">
Want to advertise in TLDR? 📰
</p>
<div class="text-block" style="margin-top: 10px;">
If your company is interested in reaching an audience of cybersecurity professionals and decision makers, you may want to <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fadvertise.tldr.tech%2F%3Futm_source=tldrinfosec%26utm_medium=newsletter%26utm_campaign=advertisecta/1/0100019f137d2ae2-1cc17062-270f-4ead-a405-3d17c2e7a253-000000/ZHWK37uh7b0h88r_MVJSifWTCQycxTHJHX8oiNPz_MY=452"><strong><span>advertise with us</span></strong></a>.
</div>
<br>
<!-- New "Want to work at TLDR?" section -->
<p style="padding: 0; margin: 0; font-size: 22px; color: #000000; line-height: 1.6; font-weight: bold;">
Want to work at TLDR? 💼
</p>
<div class="text-block" style="margin-top: 10px;">
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fjobs.ashbyhq.com%2Ftldr.tech/1/0100019f137d2ae2-1cc17062-270f-4ead-a405-3d17c2e7a253-000000/pjFO_L8PWAljaAwjIg-dGpZf6cQSxwBXRCcm1gxWgZs=452" rel="noopener noreferrer" style="color: #0000EE; text-decoration: underline;" target="_blank"><strong>Apply here</strong></a>,
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fjobs.ashbyhq.com%2Ftldr.tech%2Fc227b917-a6a4-40ce-8950-d3e165357871/1/0100019f137d2ae2-1cc17062-270f-4ead-a405-3d17c2e7a253-000000/et5gyOAl-GmvmZEPcwc6l1gykeKwd4QQafjrxNhm8vA=452" rel="noopener noreferrer" style="color: #0000EE; text-decoration: underline;" target="_blank"><strong>create your own role</strong></a> or send a friend's resume to <a href="mailto:jobs@tldr.tech" style="color: #0000EE; text-decoration: underline;">jobs@tldr.tech</a> and get $1k if we hire them! TLDR is one of <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.linkedin.com%2Ffeed%2Fupdate%2Furn:li:activity:7401699691039830016%2F/1/0100019f137d2ae2-1cc17062-270f-4ead-a405-3d17c2e7a253-000000/Js_HiJ31QYfc-GTk0O07CEqNK6wRAM2lNV1-yZe_NHQ=452" rel="noopener noreferrer" style="color: #0000EE; text-decoration: underline;" target="_blank"><strong>Inc.'s Best Bootstrapped businesses</strong></a> of 2025.
</div>
<br>
<div class="text-block">
If you have any comments or feedback, just respond to this email!
<br>
<br> Thanks for reading,
<br>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.linkedin.com%2Fin%2Fprasannagautam%2F/1/0100019f137d2ae2-1cc17062-270f-4ead-a405-3d17c2e7a253-000000/lqN8a8DgoUxc15bekPVO525bmAu7N9xUZutt2JNhvE4=452"><span>Prasanna Gautam</span></a>, <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.linkedin.com%2Fin%2Fericfernandezdelcampo%2F/1/0100019f137d2ae2-1cc17062-270f-4ead-a405-3d17c2e7a253-000000/CBfVJZsNBPb8uQUfHshmTy2y7PfE6QNzYLshsQ3u_iE=452"><span>Eric Fernandez</span></a> & <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.linkedin.com%2Fin%2Fsammy-tbeile%2F/1/0100019f137d2ae2-1cc17062-270f-4ead-a405-3d17c2e7a253-000000/u8TIAkvkEMatyRPSYKEGDQoPi27paPvAkw9HuY37vOI=452"><span>Sammy Tbeile</span></a>
<br>
<br>
</div>
<br>
</td>
</tr>
</tbody>
</table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%">
<tbody>
<tr>
<td class="container" style="padding: 15px 15px;">
<div class="text-block" id="testing-id">
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Ftldr.tech%2Finfosec%2Fmanage%3Femail=silk.theater.56%2540fwdnl.com/1/0100019f137d2ae2-1cc17062-270f-4ead-a405-3d17c2e7a253-000000/unDbZiHIZV4YQwmRG3rh2o6RrhUcXYJOXUkKvErT9mc=452">Manage your subscriptions</a> to our other newsletters on tech, startups, and programming. Or if TLDR Information Security isn't for you, please <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fa.tldrnewsletter.com%2Funsubscribe%3Fep=1%26l=8d9cea11-3e94-11ed-9a32-0241b9615763%26lc=156924ca-84b7-11f0-8d58-47c5c04ad337%26p=744d7b2c-736c-11f1-ba41-afc99fb97726%26pt=campaign%26pv=4%26spa=1782738061%26t=1782738397%26s=644986c0f521ccb384ab779aefd6ae7694a61ca9a935f95f97056c0f0aef6f8e/1/0100019f137d2ae2-1cc17062-270f-4ead-a405-3d17c2e7a253-000000/sUoXMsdB-PlhBkrTN7fjn37QG70983iuz0kZfFm9SQ0=452">unsubscribe</a>.
<br>
</div>
</td>
</tr>
</tbody>
</table>
</td>
</tr>
</tbody>
</table>
</td>
</tr>
</tbody>
</table>
</td>
</tr>
</tbody>
</table>
</td>
</tr>
</tbody>
</table>
<img alt="" src="http://tracking.tldrnewsletter.com/CI0/0100019f137d2ae2-1cc17062-270f-4ead-a405-3d17c2e7a253-000000/Jzu54_sAcuJKC-ILMVv4bYjbFjMhodfsi_Ct8eu8gnw=452" style="display: none; width: 1px; height: 1px;">
</body></html>