Hello and welcome to the Tuesday, March 24th, 2006 edition of the Sands Internet Storm Centers.

Stormcast, my name is Johannes Ulrich, recording today in Jacksonville, Florida.

And this episode is brought you by the sands.edu graduate certificate program in

cyber defense operations. Well, in Diaries today, Jim today has another win for allowing

AI to do security reviews of your code. Jim has published numerous different forensics and reverse analysis tools as part of his

GitHub repo. Well, he had it now security reviewed by Claude Code and has actually found a number of

interesting vulnerabilities, some little bits of standard. like for example, in his mail analyzer,

there was sort of a header injection issue. It was kind of interesting, but also some

a little more subtle ones, like for example, time of check and time of use vulnerabilities.

Well, if you're using any of Jim's tool, please update all the patches have been released

to the GitHub repo.

Let's start today a little bit with an awareness item, and while we're coming up here in the United

States on the tax filing season, the deadline is April 15th, and with that, there's always

an increase in scams attempting people to

download software or reveal their information to websites claiming to be associated with tax

filings. Well, this year, according to Hunters, there is one particular trick that they're

seeing, and that's basically fake Google ads.

So, well, the Google Ads are actually real, but they're leading to malicious or fake products.

And these products are like PDF fillers and things like that that may come handy if you're trying to fill out attacks form.

Also, some of these attacks are then redirecting users to fake browser updates.

But what I found interesting is that they're not just simple, well, you know, let's download

some software and steal some information or some basic fishing, as we have seen in the past.

...