Cybercriminals are leveraging the ZeroFont technique to trick users into trusting phishing emails, SANS ISC handler Jan Kopriva has warned. The ZeroFont phishing attack Documented and named by Avanan in 2018, the ZeroFont technique involves using text written in font size “0” throughout the email body. In that campaign, it was used to bypass Microsoft’s NLP-based anti-phishing protections by breaking up the text strings that would otherwise trigger them. A new purpose Email clients generally … More

The post New twist on ZeroFont phishing technique spotted in the wild appeared first on Help Net Security.