SquareX researchers will present a new class of data exfiltration techniques, “Data Splicing Attacks,” at BSides San Francisco 2025. These attacks exploit browser vulnerabilities to bypass major Data Loss Protection (DLP) vendors, highlighting the need for rethinking data loss protection strategies. The researchers will release an open-source toolkit, “Angry Magpie,” to help organizations test their DLP stacks.