SquareX To Uncover Data Splicing Attacks At BSides San Francisco, A Major DLP Flaw

SquareX researchers will be disclosing a new class of data exfiltration techniques at BSides San Francisco 2025. The talk will demonstrate multiple data splicing techniques that will allow attackers to exfiltrate any sensitive file or clipboard data. They will also be releasing an open-source toolkit, “Angry Magpie”, which will allow pentesters and red teams to test their existing DLP stack.

Palo Alto, California, April 16th, 2025/CyberNewsWire/--SquareX researchers Jeswin Mathai and Audrey Adeline will be disclosing a new class of data exfiltration techniques at BSides San Francisco 2025.

Titled “Data Splicing Attacks: Breaking Enterprise DLP from the Inside Out”, the talk will demonstrate multiple data splicing techniques that will allow attackers to exfiltrate any sensitive file or clipboard data, completely bypassing major Data Loss Protection (DLP) vendors listed by Gartner by exploiting architectural vulnerabilities in the browser.

DLP is a core pillar of every ...