SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

SANS Stormcast Tuesday, April 22nd: Phishing via Google; ChatGPT Fingerprint; Asus AI Cloud Vuln; PyTorch RCE

Apr 22, 2025

05:35

Creator website

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

Phishing attacks exploit Google’s advertising services to persistently deliver malicious links despite detection attempts by security systems.

The discovery of invisible Unicode characters in ChatGPT documents raises concerns about potential tracking and academic integrity risks.

Deep dives

Phishing Vulnerability Through Webmail Forms

A straightforward phishing attack is highlighted, demonstrating how attackers utilize webmail forms to steal email credentials. This specific scheme employs a notification of email failure to lure users into clicking on phishing links, directing them to a dynamic IP address. The attack is facilitated by Google’s DoubleClick.net system, making it easier for malicious sites to reach potential victims. Despite the site being flagged by VirusTotal, which is also managed by Google, the existence of such a blatant phishing route raises concerns about the effectiveness of current protective measures.

Phishing Tactics and AI Text Identification

3min

Exploring Vulnerabilities in AI Tools and Router Security

3min

It's 2025, so why are malicious advertising URLs still going strong?
Phishing attacks continue to take advantage of Google s advertising services. Sadly, this is still the case for obviously malicious links, even after various anti-phishing services flag the URL.
https://isc.sans.edu/diary/It%27s%202025...%20so%20why%20are%20obviously%20malicious%20advertising%20URLs%20still%20going%20strong%3F/31880
ChatGPT Fingerprinting Documents via Unicode
ChatGPT apparently started leaving fingerprints in texts, which it creates by adding invisible Unicode characters like non-breaking spaces.
https://www.rumidocs.com/newsroom/new-chatgpt-models-seem-to-leave-watermarks-on-text
Asus AI Cloud Security Advisory
Asus warns of a remote code execution vulnerability in its routers. The vulnerability is related to the AI Cloud feature. If your router is EoL, disabling the feature will mitigate the vulnerability
https://www.asus.com/content/asus-product-security-advisory/
PyTorch Vulnerability
PyTorch fixed a remote code execution vulnerability exploitable if a malicious model was loaded. This issue was exploitable even with the weight_only=True" setting selected
https://github.com/pytorch/pytorch/security/advisories/GHSA-53q9-r3pm-6pq6

Remember Everything You Learn from Podcasts

Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.

SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

SANS Stormcast Tuesday, April 22nd: Phishing via Google; ChatGPT Fingerprint; Asus AI Cloud Vuln; PyTorch RCE

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Phishing Vulnerability Through Webmail Forms

Security Vulnerabilities in AI and Router Systems

Remember Everything You Learn from Podcasts