<!DOCTYPE html><html lang="en"><head><meta http-equiv="Content-Type" content="text/html charset=UTF-8"><meta charset="UTF-8"><meta name="viewport" content="width=device-width"><meta name="x-apple-disable-message-reformatting"><title>TLDR InfoSec</title><meta name="color-scheme" content="light dark"><meta name="supported-color-schemes" content="light dark"><style type="text/css">
:root {
color-scheme: light dark; supported-color-schemes: light dark;
}
*,
*:after,
*:before {
-webkit-box-sizing: border-box; -moz-box-sizing: border-box; box-sizing: border-box;
}
* {
-ms-text-size-adjust: 100%; -webkit-text-size-adjust: 100%;
}
html,
body,
.document {
width: 100% !important; height: 100% !important; margin: 0; padding: 0;
}
body {
-webkit-font-smoothing: antialiased; -moz-osx-font-smoothing: grayscale; text-rendering: optimizeLegibility;
}
div[style*="margin: 16px 0"] {
margin: 0 !important;
}
table,
td {
mso-table-lspace: 0pt; mso-table-rspace: 0pt;
}
table {
border-spacing: 0; border-collapse: collapse; table-layout: fixed; margin: 0 auto;
}
img {
-ms-interpolation-mode: bicubic; max-width: 100%; border: 0;
}
*[x-apple-data-detectors] {
color: inherit !important; text-decoration: none !important;
}
.x-gmail-data-detectors,
.x-gmail-data-detectors *,
.aBn {
border-bottom: 0 !important; cursor: default !important;
}
.btn {
-webkit-transition: all 200ms ease; transition: all 200ms ease;
}
.btn:hover {
background-color: #f67575; border-color: #f67575;
}
* {
font-family: Arial, Helvetica, sans-serif; font-size: 18px;
}
@media screen and (max-width: 600px) {
.container {
width: 100%; margin: auto;
}
.stack {
display: block!important; width: 100%!important; max-width: 100%!important;
}
.btn {
display: block; width: 100%; text-align: center;
}
}
body,
p,
td,
tr,
.body,
table,
h1,
h2,
h3,
h4,
h5,
h6,
div,
span {
background-color: #FEFEFE !important; color: #010101 !important;
}
@media (prefers-color-scheme: dark) {
body,
p,
td,
tr,
.body,
table,
h1,
h2,
h3,
h4,
h5,
h6,
div,
span {
background-color: #27292D !important; color: #FEFEFE !important;
}
}
a {
color: inherit !important; text-decoration: underline !important;
}
</style><!--[if mso | ie]>
<style type="text/css">
a {
background-color: #FEFEFE !important; color: #010101 !important;
}
@media (prefers-color-scheme: dark) {
a {
background-color: #27292D !important; color: #FEFEFE !important;
}
}
</style>
<![endif]--></head><body class="">
<div style="display: none; max-height: 0px; overflow: hidden;">GitHub released npm 12 with install scripts, git dependencies, and remote URL installs turned off by default, forcing explicit approval </div>
<div style="display: none; max-height: 0px; overflow: hidden;">
<br>
</div>
<table align="center" class="document"><tbody><tr><td valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" class="container" width="600"><tbody><tr class="inner-body"><td>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr class="header"><td bgcolor="" class="container">
<table width="100%"><tbody><tr><td class="container">
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" style="margin-top: 0px;" width="100%"><tbody><tr><td style="padding: 0px;">
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div style="text-align: center;">
<span style="margin-right: 0px;"><a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Ftldr.tech%2Finfosec%3Futm_source=tldrinfosec/1/0100019f4c22b277-82110d84-2f9b-4c30-ba99-93ba90571dee-000000/2u6fvw-ylMFJf1N1jQJe5TUHFv4tNH9iGPzhL9Cnq_o=452" rel="noopener noreferrer" target="_blank"><span>Sign Up</span></a>
|<span style="margin-right: 2px; margin-left: 2px;"><a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fadvertise.tldr.tech%2F%3Futm_source=tldrinfosec%26utm_medium=newsletter%26utm_campaign=advertisetopnav/1/0100019f4c22b277-82110d84-2f9b-4c30-ba99-93ba90571dee-000000/_uHHBPJwLE2niwBwIQA1QGtQDtmXkwC-sB9WBG3ko6A=452" rel="noopener noreferrer" target="_blank"><span>Advertise</span></a></span>|<span style="margin-left: 2px;"><a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fa.tldrnewsletter.com%2Fweb-version%3Fep=1%26lc=156924ca-84b7-11f0-8d58-47c5c04ad337%26p=23851644-7c4c-11f1-afee-3fb66f609a88%26pt=campaign%26t=1783688770%26s=be02783b0ba9ac67ce12567d55b1e9cfd1afb8a5b022d642c4fabd3841861e31/1/0100019f4c22b277-82110d84-2f9b-4c30-ba99-93ba90571dee-000000/SVqP5911xPsYyZwL8kFU-jPtpXg0LinGGWqyNlVgKSY=452"><span>View Online</span></a></span>
<br>
</span></div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="text-align: center;"><span data-darkreader-inline-color="" style="--darkreader-inline-color:#3db3ff; color: rgb(51, 175, 255) !important; font-size: 30px;">T</span><span style="font-size: 30px;"><span data-darkreader-inline-color="" style="color: rgb(232, 192, 96) !important; --darkreader-inline-color:#e8c163; font-size:30px;">L</span><span data-darkreader-inline-color="" style="color: rgb(101, 195, 173) !important; --darkreader-inline-color:#6ec7b2; font-size:30px;">D</span></span><span data-darkreader-inline-color="" style="--darkreader-inline-color:#dd6e6e; color: rgb(220, 107, 107) !important; font-size: 30px;">R</span>
<br>
</td></tr></tbody></table>
<br>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr id="together-with"><td align="center" height="20" style="vertical-align:middle !important;" valign="middle" width="100%"><strong style="vertical-align:middle !important; height: 100%;">Together With </strong>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.catonetworks.com%2Fresources%2Fdefending-against-next-generation-of-agentic-attacks%2F%3Futm_source=tldr-infosec%26utm_medium=newsletter%26utm_campaign=ai-security%26utm_content=20260710_header_defending_against_next/1/0100019f4c22b277-82110d84-2f9b-4c30-ba99-93ba90571dee-000000/dn-HASSPNz4ujYmCTutCLViQ3qZBAZO_o_wmhnv06VA=452"><img src="https://images.tldr.tech/cato2.png" valign="middle" style="vertical-align: middle !important; height: 100%;" alt="Cato Networks"></a></td></tr></tbody></table>
<table style="table-layout: fixed; width:100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;">
<div style="text-align: center;">
<h1><strong>TLDR Information Security <span id="date">2026-07-10</span></strong></h1>
</div>
</td></tr></tbody></table>
<table style="table-layout: fixed; width:100%;" width="100%"><tbody><tr id="sponsy-copy"><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.catonetworks.com%2Fresources%2Fdefending-against-next-generation-of-agentic-attacks%2F%3Futm_source=tldr-infosec%26utm_medium=newsletter%26utm_campaign=ai-security%26utm_content=20260710_header_defending_against_next/2/0100019f4c22b277-82110d84-2f9b-4c30-ba99-93ba90571dee-000000/eYx9Xh_mFobWGgBIk_nqX-PjOM1U2r9-X9KTbGHb6NE=452">
<span>
<strong>Defending Against the Next Generation of Agentic AI Attacks. (Sponsor)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Can your architecture defend against attacks that are autonomous, adaptive, and faster than anything you've seen before?<p></p><p>Frontier AI models are compressing the attack lifecycle and enabling a new generation of agentic threats. Security teams must prepare for faster, automated, and adaptive attacks.</p><p>Join Cato's CEO Shlomo Kramer and VP of Threat Intelligence Etay Maor to:</p><ul><li>Understand how frontier AI changes attacks</li><li>See how agentic threats behave</li><li>Learn how to shift to adaptive, real-time defense</li></ul><p><a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.catonetworks.com%2Fresources%2Fdefending-against-next-generation-of-agentic-attacks%2F%3Futm_source=tldr-infosec%26utm_medium=newsletter%26utm_campaign=ai-security%26utm_content=20260710_header_defending_against_next/3/0100019f4c22b277-82110d84-2f9b-4c30-ba99-93ba90571dee-000000/-_vzdL-uRMYpJXtsZ_d6f78j2bBb1L5-LDWD-1DafF0=452" rel="noopener noreferrer nofollow" target="_blank"><span>→ Watch now</span></a>
</p>
</span></span></div>
</td></tr></tbody></table>
</td></tr></tbody></table>
</td></tr></tbody></table>
</td></tr>
<tr bgcolor=""><td class="container">
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td style="padding: 0px;">
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">🔓</span></div></div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;">
<h1><strong>Attacks & Vulnerabilities</strong></h1>
</div>
</div>
</td></tr></tbody></table>
<table style="table-layout: fixed; width: 100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.propublica.org%2Farticle%2Fpuerto-rico-crim-data-breach%3Futm_source=tldrinfosec/1/0100019f4c22b277-82110d84-2f9b-4c30-ba99-93ba90571dee-000000/WNFj2luWTbkHA3eJzaVdErXlyDa4LNGSyb_XaU1m_aI=452">
<span>
<strong>A Puerto Rico Government Agency Exposed 1M Social Security Numbers (3 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
The government agency that collects property taxes in Puerto Rico accidentally exposed the SSNs of 1M people. The Municipal Revenue Collection Center maintains an interactive property map which shows the owner names, lot sizes, tax assessment, and sale price for every registered property on the island. Researchers discovered that while the map itself did not surface additional sensitive information, “anyone who understands how websites request data” could access unprotected personal information, including SSNs.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.programming-helper.com%2Ftech%2Fdiscord-ai-moderation-glitch-wrongful-bans-8000-users-2026%3Futm_source=tldrinfosec/1/0100019f4c22b277-82110d84-2f9b-4c30-ba99-93ba90571dee-000000/9qDBhlKSSD2Q3ojtAEFovm3-XoopTzB-AEr3ffcS2v8=452">
<span>
<strong>Discord AI Moderation Glitch Wrongfully Bans 8k Users in 24-Hour Period (2 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Discord acknowledged a severe glitch in its AI content moderation system that led to thousands of users being wrongfully banned. Discord had rolled out a new version of its proprietary model had a glitch that led ages with grids or repeated geometric shapes being banned at a very high rate. The appeals system also became overwhelmed due to the rate of requests increasing by approximately 40 times the normal rate.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Flinks.tldrnewsletter.com%2FT7GZIt/1/0100019f4c22b277-82110d84-2f9b-4c30-ba99-93ba90571dee-000000/xONDzzZ6TaLjPgemVtiYxr0uBHVkEbRNMJhqPGBOR4U=452">
<span>
<strong>OpenMandriva Linux Says Contributor Tried to Sabotage the Project (2 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
According to a longtime developer and maintainer of the OpenMandriva project, a Linux distro that is notable for building most of its components with the LLVM/Clang touching, stated that a contributor tried to sabotage portions of the project after a falling out. A contributor with admin privileges deleted part of an OpenMandriva repo that the team had been working on for almost a decade and published an empty package that obsoleted packages for Gnome and Cosmic desktop environments. The contributor denies any wrongdoing.
</span>
</span>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">🧠</span></div>
</div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;">
<h1><strong>Strategies & Tactics</strong></h1>
</div>
</div>
</td></tr></tbody></table>
<table style="table-layout: fixed; width: 100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fainowinstitute.org%2Fpublications%2Ffriendly-fire-exploit-brief%3Futm_source=tldrinfosec/1/0100019f4c22b277-82110d84-2f9b-4c30-ba99-93ba90571dee-000000/32X1tORSsfS2mTQZ3Uaj1fK0y49wxcNoWtcfd19ZWKY=452">
<span>
<strong>Friendly Fire: Hijacking Defensive Cyber AI Agents for Remote Code Execution (18 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Researchers show a proof‑of‑concept attack that turns Claude Code and OpenAI Codex into a path to remote code execution when they review a tampered open‑source library like a modified geopy repo. Prompted security reviews cause the agents to trust a planted security.sh script and a disguised Golang‑based binary, then run it without flagging it as malicious, even under “auto‑mode” and “auto‑review” safety settings. The exploit works across multiple model versions, bypasses configuration‑file defenses, and highlights how prompt‑injected documentation and binaries can quietly compromise host machines during routine vulnerability scanning.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.nowsecure.com%2Fblog%2F2026%2F07%2F08%2Fwhat-the-transsion-telemetry-research-means-for-mobile-security%2F%3Futm_source=tldrinfosec/1/0100019f4c22b277-82110d84-2f9b-4c30-ba99-93ba90571dee-000000/Q2sir9tt_4QU98SC9LtOYrTdSxHNe3VR5K5zHZevBXM=452">
<span>
<strong>1-in-2 Phones Sold in Africa Exfiltrate Telemetry to China (11 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Transsion's Android telemetry stack ships as a privileged system component on TECNO and related brands and as an SDK inside popular apps like Boomplay, StarTimes, and Orange Max it. Researchers extracted the SDK and used it to decrypt uploads to shalltry.com, discovering that the decrypted traffic shows device-wide beacons: GPS coordinates, nearby cell towers, foreground app, camera caller, battery state, and per‑app data usage for dozens of apps, all tied to multiple persistent identifiers and sent to Alibaba Cloud-hosted endpoints under *.shalltry.com. The service cannot be removed on Transsion phones, so defenders must rely on DNS-level wildcard blocking of shalltry.com and transsion-os.com to cut telemetry flows.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fqueue.acm.org%2Fdetail.cfm%3Fid=3819084%26utm_source=tldrinfosec/1/0100019f4c22b277-82110d84-2f9b-4c30-ba99-93ba90571dee-000000/h9mlzKU0aoTpFG9XWEkuIPksxG8yFKn8xrLFAT04fXk=452">
<span>
<strong>You Don't Know Jack About Formal Verification (6 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Formal verification is the process of mathematically proving properties of software and has historically been incredibly labor intensive and therefore very rarely done. Since Opus 4.5, LLMs have demonstrated that they are capable of translating a spec into the code that is accepted by formal verification languages like Dafny. However if a spec is poorly specified or if it is subject to external resources, formal verification may still not be comprehensive.
</span>
</span>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">🧑💻</span></div>
</div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;">
<h1><strong>Launches & Tools</strong></h1>
</div>
</div>
</td></tr></tbody></table>
<table style="table-layout: fixed; width: 100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.knocknoc.io%2Fhow-knocknoc-works%2F%3Ftldr1%26utm_source=tldrinfosec/1/0100019f4c22b277-82110d84-2f9b-4c30-ba99-93ba90571dee-000000/O1MQhJ8IzE381Y0cxnGwUNgqJEQiRi6pKBoQYv42xt4=452">
<span>
<strong>You can no longer patch your way to security (Sponsor)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
AI-powered threat actors can exploit zero days before you know they exist - and patching is too slow and risky. <strong>Knocknoc</strong> eliminates the cat-and-mouse by dynamically implementing just-in-time network and web application allow-listing. The attack surface disappears, and you can patch on your schedule. <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.knocknoc.io%2Fhow-knocknoc-works%2F%3Ftldr1/1/0100019f4c22b277-82110d84-2f9b-4c30-ba99-93ba90571dee-000000/xgzJkHQwPKcgEL9tz8b9f-degypVYHopMlRYMfXcztw=452" rel="noopener noreferrer nofollow" target="_blank"><span>Start with a free DIY license</span></a> or a <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.knocknoc.io%2Fhow-knocknoc-works%2F%3Ftldr1/2/0100019f4c22b277-82110d84-2f9b-4c30-ba99-93ba90571dee-000000/eKRLovF47OHw_rsY4Lwk7en_Sm2MzGwQowpW6XQTxE0=452" rel="noopener noreferrer nofollow" target="_blank"><span>trial account</span></a>.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.8layers.io%2F%3Futm_source=tldrinfosec/1/0100019f4c22b277-82110d84-2f9b-4c30-ba99-93ba90571dee-000000/wuhjy6kzepnqMKfOuofOJzuZsnti5Htymi60P8__wao=452">
<span>
<strong>8Layers (Product Launch)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
8Layers runs a digital identity protection platform that pulls data from Okta, Entra ID, Google Workspace and AWS IAM, scores each human and machine identity for risk, detects dormant accounts and kill chains, and automates compliance checks.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fthehackernews.com%2F2026%2F07%2Fnpm-12-disables-install-scripts-by.html%3Futm_source=tldrinfosec/1/0100019f4c22b277-82110d84-2f9b-4c30-ba99-93ba90571dee-000000/g5bZgxHg7A8A79XcPC1gCFJHXxlSQcyJF-pQZqqZhN8=452">
<span>
<strong>npm 12 Disables Install Scripts by Default to Reduce Supply Chain Risk (3 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
GitHub released npm 12 with install scripts, git dependencies, and remote URL installs turned off by default, forcing explicit approval via an allowlist in package.json. It is also phasing out granular access tokens that bypass 2FA for sensitive account and package actions, and restricting them to staging publishes that require human 2FA before going public. pnpm 11.10 adds tighter registry auth binding tokens to specific hosts.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fgithub.com%2FDeepTempo%2Fsocbench%3Futm_source=tldrinfosec/1/0100019f4c22b277-82110d84-2f9b-4c30-ba99-93ba90571dee-000000/r6uRPRX1Ky63F-C48ggM-aaDUmci4TnrD2QNX6IVxl4=452">
<span>
<strong>socbench (GitHub Repo)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
socbench is a tool that benchmarks frontier reasoning models as SOC agents.
</span>
</span>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">🎁</span></div></div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><strong><h1>Miscellaneous</h1></strong></div>
</div>
</td></tr></tbody></table>
<table bgcolor="" style="table-layout: fixed; width: 100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fdetections.ai%2Fshare%2Finspiration%2FVNJMKFVM%3Futm_source=tldrinfosec/1/0100019f4c22b277-82110d84-2f9b-4c30-ba99-93ba90571dee-000000/d8K_ZPhZHFQ0XMY7cx9UMRqSQIbty_8A-96x98vNPQg=452">
<span>
<strong>Exploitarium: Mass Disclosure of Zero-Day Proof-of-Concepts (1 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Researcher ‘bikini' published over 130 unvetted PoC exploits via the Exploitarium GitHub repository without vendor coordination, surfacing a pre-auth RCE in libssh2 that fires during the SSH handshake before authentication completes, alongside a Gitea admin-impersonation flaw exploitable through a spoofed X-WEBAUTH-USER header on default Docker configurations. libssh2's transitive presence in curl, Git, and PHP extends exposure well past direct dependents, and threat actors have already begun probing both flaws within days of disclosure. Defenders should patch libssh2 beyond 1.11.1, strip or validate the X-WEBAUTH-USER header at the reverse proxy for Gitea Docker deployments, and watch for anomalous pre-auth SSH handshake failures and unexpected admin account creation as early indicators of exploitation.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.theregister.com%2Fsecurity%2F2026%2F07%2F09%2Fmicrosoft-closes-book-on-nightmare-eclipses-rogueplanet-zero-day%2F5269280%3Futm_source=tldrinfosec/1/0100019f4c22b277-82110d84-2f9b-4c30-ba99-93ba90571dee-000000/1xyhUzVAJ5is-Os90sSOJLpRHfPiZ8FfXm4cvCe3YPc=452">
<span>
<strong>Microsoft Closes Book on Nightmare Eclipse's RoguePlanet Zero-Day (2 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
Microsoft patched the RoguePlanet zero-day in Microsoft Defender via an update to the Malware Protection Engine, weeks after exploit code was published. The bug abused a race condition to open a SYSTEM-level command prompt, and was reported to work on fully patched Windows 10 and 11 systems, even with real-time protection off. The fix arrives after a series of public clashes between Microsoft and researcher Nightmare Eclipse over handling of zero-day reports.
</span>
</span>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;"><span style="font-size: 36px;">⚡</span></div></div>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding-top: 0px; padding-bottom: 0px;">
<div class="text-block">
<div style="text-align: center;">
<h1><strong>Quick Links</strong></h1>
</div>
</div>
</td></tr></tbody></table>
<table bgcolor="" style="table-layout: fixed; width: 100%;" width="100%"><tbody><tr><td style="padding:0;border-collapse:collapse;border-spacing:0;margin:0;" valign="top">
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.nextgov.com%2Fcybersecurity%2F2026%2F07%2Fcisa-expects-finalize-key-cyber-reporting-rule-september%2F414607%2F%3Futm_source=tldrinfosec/1/0100019f4c22b277-82110d84-2f9b-4c30-ba99-93ba90571dee-000000/FXJDev6eJMU97y6XinQ6RanQR1tsAqSg-FUiJB5vMVQ=452">
<span>
<strong>CISA Expects to Finalize Key Cyber Reporting Rule by September (2 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
The CISA expects to finalize a new reporting rule that will require critical infrastructure entities to report substantial incidents to CISA within 72 hours and ransomware payments within 24.
</span>
</span>
</div>
</td></tr></tbody></table>
<table align="center" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block">
<span>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Flinks.tldrnewsletter.com%2FrLSC67/1/0100019f4c22b277-82110d84-2f9b-4c30-ba99-93ba90571dee-000000/eWhKlZnr9hP7yHsN9x7ljjZFPtEv7cuYgBR0NFvHdKE=452">
<span>
<strong>'GodDamn' Ransomware Uses BYOVD to Smite US Companies (4 minute read)</strong>
</span>
</a>
<br>
<br>
<span style="font-family: "Helvetica Neue", Helvetica, Arial, Verdana, sans-serif;">
A ransomware group called Hyadina uses a new locker named GodDamn against US organizations, relying on AnyDesk and a set of open source credential-stealing tools to move through Windows environments.
</span>
</span>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td align="left" style="word-break: break-word; vertical-align: top; padding: 5px 10px;">
<p style="padding: 0; margin: 0; font-size: 22px; color: #000000; line-height: 1.6; font-weight: bold;">
Love TLDR? Tell your friends and get rewards!
</p>
</td></tr>
<tr><td class="container" style="padding: 0px 10px 15px;">
<div class="text-block">
Share your referral link below with friends to get free TLDR swag!
</div>
</td></tr>
<tr><td align="left" style="padding: 10px;">
<div class="text-block">
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Frefer.tldr.tech%2F78de0e20%2F8/1/0100019f4c22b277-82110d84-2f9b-4c30-ba99-93ba90571dee-000000/bbr5kq9cCmUWk1HALD4ebvhEA8HBY_0j_FJ5UZr-VCI=452" style="color: #464ba4; text-decoration: underline;">https://refer.tldr.tech/78de0e20/8</a>
</div>
</td></tr>
<tr></tr>
<tr><td align="left" style="padding:5px 10px;">
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fhub.sparklp.co%2Fsub_d62447d5a74a%2F8/1/0100019f4c22b277-82110d84-2f9b-4c30-ba99-93ba90571dee-000000/RvsZ2PTbNxKBm0reYqqXBHO9BDJnk0lKHdYqN_MBTGU=452" style="font-size: 16px; line-height: 1.6; padding: 10px 0; display: inline-block; text-decoration: underline;"><span style="mso-text-raise:13pt; text-decoration: underline;">Track your referrals here.</span></a>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td align="left" style="word-break: break-word; vertical-align: top; padding: 5px 10px;">
<p style="padding: 0; margin: 0; font-size: 22px; color: #000000; line-height: 1.6; font-weight: bold;">
Want to advertise in TLDR? 📰
</p>
<div class="text-block" style="margin-top: 10px;">
If your company is interested in reaching an audience of cybersecurity professionals and decision makers, you may want to <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fadvertise.tldr.tech%2F%3Futm_source=tldrinfosec%26utm_medium=newsletter%26utm_campaign=advertisecta/1/0100019f4c22b277-82110d84-2f9b-4c30-ba99-93ba90571dee-000000/EaOtnUe2qgMihyhZrqpK5MLXd4w0P3ZV_H6ZU-oJ-BI=452"><strong><span>advertise with us</span></strong></a>.
</div>
<br>
<!-- New "Want to work at TLDR?" section -->
<p style="padding: 0; margin: 0; font-size: 22px; color: #000000; line-height: 1.6; font-weight: bold;">
Want to work at TLDR? 💼
</p>
<div class="text-block" style="margin-top: 10px;">
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fjobs.ashbyhq.com%2Ftldr.tech/1/0100019f4c22b277-82110d84-2f9b-4c30-ba99-93ba90571dee-000000/fRs1Q4I6lpvgrvfmlK_Ebrkfykuq4369faE7QGyaFtU=452" rel="noopener noreferrer" style="color: #0000EE; text-decoration: underline;" target="_blank"><strong>Apply here</strong></a>,
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fjobs.ashbyhq.com%2Ftldr.tech%2Fc227b917-a6a4-40ce-8950-d3e165357871/1/0100019f4c22b277-82110d84-2f9b-4c30-ba99-93ba90571dee-000000/il_BKOjfA62jgIreElK5pT-hNu16hZCJefQry9TPuDs=452" rel="noopener noreferrer" style="color: #0000EE; text-decoration: underline;" target="_blank"><strong>create your own role</strong></a> or send a friend's resume to <a href="mailto:jobs@tldr.tech" style="color: #0000EE; text-decoration: underline;">jobs@tldr.tech</a> and get $1k if we hire them! TLDR is one of <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.linkedin.com%2Ffeed%2Fupdate%2Furn:li:activity:7401699691039830016%2F/1/0100019f4c22b277-82110d84-2f9b-4c30-ba99-93ba90571dee-000000/L_4_gZasVdf8kii_aGetJJdDqPFKYmlE8pSgihx6TA0=452" rel="noopener noreferrer" style="color: #0000EE; text-decoration: underline;" target="_blank"><strong>Inc.'s Best Bootstrapped businesses</strong></a> of 2025.
</div>
<br>
<div class="text-block">
If you have any comments or feedback, just respond to this email!
<br>
<br> Thanks for reading,
<br>
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.linkedin.com%2Fin%2Fprasannagautam%2F/1/0100019f4c22b277-82110d84-2f9b-4c30-ba99-93ba90571dee-000000/vcC1JDnBDhdcB4w-yWIs4WH2Ehwl1WpGd5zP4dXvyEA=452"><span>Prasanna Gautam</span></a>, <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.linkedin.com%2Fin%2Fericfernandezdelcampo%2F/1/0100019f4c22b277-82110d84-2f9b-4c30-ba99-93ba90571dee-000000/S3Mn3Qll379DeRNk83H2OgkZGyEegpWdo9EG3h5Hqgo=452"><span>Eric Fernandez</span></a> & <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fwww.linkedin.com%2Fin%2Fsammy-tbeile%2F/1/0100019f4c22b277-82110d84-2f9b-4c30-ba99-93ba90571dee-000000/mC3pVdE0xu-WJxZZk_I3NBy-g2owsx6dG8EIkYwIzzU=452"><span>Sammy Tbeile</span></a>
<br>
<br>
</div>
<br>
</td></tr></tbody></table>
<table align="center" bgcolor="" border="0" cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="container" style="padding: 15px 15px;">
<div class="text-block" id="testing-id">
<a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Ftldr.tech%2Finfosec%2Fmanage%3Femail=silk.theater.56%2540fwdnl.com/1/0100019f4c22b277-82110d84-2f9b-4c30-ba99-93ba90571dee-000000/Id-w0c6mZUow_PoUWF0wg7Xw0WRS8No9SaJg_Jygsc0=452">Manage your subscriptions</a> to our other newsletters on tech, startups, and programming. Or if TLDR Information Security isn't for you, please <a href="https://tracking.tldrnewsletter.com/CL0/https:%2F%2Fa.tldrnewsletter.com%2Funsubscribe%3Fep=1%26l=8d9cea11-3e94-11ed-9a32-0241b9615763%26lc=156924ca-84b7-11f0-8d58-47c5c04ad337%26p=23851644-7c4c-11f1-afee-3fb66f609a88%26pt=campaign%26pv=4%26spa=1783688444%26t=1783688770%26s=fe4383d9a6826bc2d0062340b1f4e74b47b47ca236e6d4e882630f33742da2fe/1/0100019f4c22b277-82110d84-2f9b-4c30-ba99-93ba90571dee-000000/WbgtylgnutZaqYKP1QBigarB6sPycWPAzCDEv9t2gxc=452">unsubscribe</a>.
<br>
</div>
</td></tr></tbody></table>
</td></tr></tbody></table>
</td></tr></tbody></table>
</td></tr></tbody></table>
</td></tr></tbody></table>
<img alt="" src="http://tracking.tldrnewsletter.com/CI0/0100019f4c22b277-82110d84-2f9b-4c30-ba99-93ba90571dee-000000/N8DT1mCHK9hP0aY5m7fkB31RhoU65hX6g888-UNDXeI=452" style="display: none; width: 1px; height: 1px;">
</body></html>