1. Home
  2. Technology
  3. Article

Hidden text "salting" is letting hackers craft devious email attacks to evade detection

Hidden text "salting" is letting hackers craft devious email attacks to evade detection
Share:
Hidden text "salting" is letting hackers craft devious email attacks to evade detection
Technology
Source: Techradar
Published: Jan, 28 2025 17:02

Just because you can't see certain email text, it doesn't mean it's not there. When you purchase through links on our site, we may earn an affiliate commission. Here’s how it works. Hackers are increasingly using “hidden text salting”, or “poisoning” techniques, to work around email security measures and get phishing messages to land in people’s inboxes.

[Shadowed hands on a digital background reaching for a login prompt.]
Image Credit: TechRadar [Shadowed hands on a digital background reaching for a login prompt.]

A new in-depth guide published by cybersecurity researchers from Cisco Talos outlines how cybercriminals are abusing HTML and CSS properties in email messages, setting the width of some elements to 0, and using the “display: hidden” feature to hide some content from the victims. They are also inserting zero-width space (ZWSP) and zero-width non-joiner (ZWNJ) characters, and ultimately hiding the true email content, by embedding irrelevant language.

[Representational image depecting cybersecurity protection]
Image Credit: TechRadar [Representational image depecting cybersecurity protection]

As a result, email security solutions, spam filters, and brand name extractors get confused, and the emails that would otherwise end up in the spam folder, make it directly to the inbox. In its writeup, Cisco Talos has given multiple examples, including one in which attackers hid French words in the email’s body. This confused Microsoft’s Exchange Online Protection (EOP) spam filter which ultimately let the message pass.

[Philips H8000E headphones on a white and pink background]
Image Credit: TechRadar [Philips H8000E headphones on a white and pink background]

In another example, Cisco Talos said threat actors were using CSS properties and ZWSP characters to hide email content, successfully mimicking Wells Fargo, and Norton LifeLock. To tackle this strategy, the researchers suggested IT teams adopt advanced filtering techniques that scan the structure of HTML emails, rather than just their contents. An email security solution could, thus, look for extreme use of inline styles or CSS properties such as “visibility: hidden”. Deploying AI-powered defenses is also recommended.

Continue reading...

Share:

More for You

Criminals are abusing top-level government domains across multiple countries
Criminals are abusing top-level government domains across... Criminals are abusing top-level government domains across multiple countries Techradar
How to protect yourself from scams: six easy ways to stay safe
How to protect yourself from scams: six easy ways to stay safe How to protect yourself from scams: six easy ways to stay safe The Guardian
Casio’s online store hit by bogus credit card stealing checkout form
Casio’s online store hit by bogus credit card stealing ch... Casio’s online store hit by bogus credit card stealing checkout form Techradar
Hackers use GenAI to attack more frequently and effectively
Hackers use GenAI to attack more frequently and effectively Hackers use GenAI to attack more frequently and effectively Techradar
Two-thirds of mobile phone-owning 13 to 16-year-olds ‘targeted by scam texts’
Two-thirds of mobile phone-owning 13 to 16-year-olds ‘tar... Two-thirds of mobile phone-owning 13 to 16-year-olds ‘targeted by scam texts’ The Standard

Top Followed

Sky teases launch of new ‘smarter, brighter and better than ever’ mystery product coming in weeks
21
Sky teases launch of new ‘smarter, brighter and better th... Sky teases launch of new ‘smarter, brighter and better than ever’ mystery product coming in weeks The Sun
Everyone is making the same joke about forecast map showing odd-shaped winter storm
18
Everyone is making the same joke about forecast map showi... Everyone is making the same joke about forecast map showing odd-shaped winter storm Mail Online
Apple's bad blood with Nvidia continues, after decades of fighting
8
Apple's bad blood with Nvidia continues, after decades of... Apple's bad blood with Nvidia continues, after decades of fighting Apple Insider
Why has Elon Musk changed his X name to Kekius Maximus? Reason behind meme-inspired crypto token Twitter handle
5
Why has Elon Musk changed his X name to Kekius Maximus? R... Why has Elon Musk changed his X name to Kekius Maximus? Reason behind meme-inspired crypto token Twitter handle The Sun
GTA 6 fans are terrified of what a $100 price tag will do to games but it’s already here
4
GTA 6 fans are terrified of what a $100 price tag will do... GTA 6 fans are terrified of what a $100 price tag will do to games but it’s already here The Sun

Trending

You Might Also Like

Why 2025 will be an exciting year to upgrade your PC
Why 2025 will be an exciting year to upgrade your PC Why 2025 will be an exciting year to upgrade your PC
Techradar
How to change FaceTime audio & video settings for clearer calls
How to change FaceTime audio & video settings for clearer calls How to change FaceTime audio & video settings for clearer calls
Apple Insider
How to change what the iPhone 16 Camera Control button does
How to change what the iPhone 16 Camera Control button does How to change what the iPhone 16 Camera Control button does
Apple Insider
M4 Mac mini may have a USB-C connectivity problem
M4 Mac mini may have a USB-C connectivity problem M4 Mac mini may have a USB-C connectivity problem
Apple Insider
How to share Safari tabs across different devices with iCloud Tabs
How to share Safari tabs across different devices with iCloud Tabs How to share Safari tabs across different devices with iC...
Apple Insider
Canon's new app turns your iPhones & iPads into a multicam streaming setup
Canon's new app turns your iPhones & iPads into a multicam streaming setup Canon's new app turns your iPhones & iPads into a multica...
Apple Insider
iPhone 17 rumored to get much more powerful cooling system
iPhone 17 rumored to get much more powerful cooling system iPhone 17 rumored to get much more powerful cooling system
Apple Insider
M4 Mac mini review three months later: the perfect headless Mac
M4 Mac mini review three months later: the perfect headless Mac M4 Mac mini review three months later: the perfect headless Mac
Apple Insider
The best app to convert video to MP4 and compress 4K video on Mac
The best app to convert video to MP4 and compress 4K video on Mac The best app to convert video to MP4 and compress 4K video on Mac
Apple Insider
How to fix System Data filling your iPhone's storage
How to fix System Data filling your iPhone's storage How to fix System Data filling your iPhone's storage
Apple Insider
Vego Kitchen Composter review: keep food scraps out of the trash
Vego Kitchen Composter review: keep food scraps out of the trash Vego Kitchen Composter review: keep food scraps out of the trash
Apple Insider
Keychron Q5 HE review: Marvelously magnetic mechanical keyboard
Keychron Q5 HE review: Marvelously magnetic mechanical keyboard Keychron Q5 HE review: Marvelously magnetic mechanical keyboard
Apple Insider