SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) SANS Stormcast Tuesday, April 8th:
Apr 8, 2025
Discover the innovative workaround in XORsearch for searching with regular expressions. Unpack a critical vulnerability in the Model Context Protocol, revealing how major platforms could be exploited. Plus, learn about Google's efforts to enhance privacy by changing how visited links are recognized in Chrome, making your browsing experience more secure. Tune in for insights on AI tool vulnerabilities and web privacy updates!
AI Snips
Chapters
Transcript
Episode notes
XORsearch and Regex
- Use XORsearch to find strings in XOR-encoded files.
- Apply regular expressions to XORsearch's string dump for advanced searches.
MCP Vulnerabilities
- Model Context Protocol (MCP) lets AI models control tools like code editors.
- MCP has vulnerabilities similar to dependency supply chain issues.
Chrome Privacy Improvement
- Google Chrome improves privacy by partitioning visited link colors.
- Links are colored as visited only if clicked on the current site.