SANS Stormcast Tuesday, April 29th: SRUM-DUMP 3; Policy Puppetry; Choice Jacking; @sansinstitute at #RSAC

Apr 29, 2025

Ask episode

AI Snips

Chapters

Transcript

Episode notes

INSIGHT

SRUM-DUMP Aids Malware Forensics

The SRUM-DUMP tool helps extract detailed Windows resource usage logs for forensics analysis.
It reveals software execution and network activity over the past 30 days to aid investigations.

INSIGHT

Policy Puppetry exploits XML policy prequel injections to bypass LLM security across models.
This universal prompt injection confuses model policies, enabling unrestricted prompt execution.

ADVICE

Avoid using public USB chargers if unsure of security, and prefer your own charger.
Keep mobile OS updated as iOS 18.4 and recent Android versions patch choicejacking vulnerabilities.

Get the Snipd Podcast app to discover more snips from this episode