On 20.08.20 09:13, Loren Wilton wrote:
I've started receiving a bunch of spam or more likely phish
mails that contain the following sort of trash in large
quantities between almost every word of the visible text. The
invisible font rules don't seem to catch this.
<span style=3D"font-size: 0vw;">lzdtec</span>
On Fri, 21 Aug 2020, Matus UHLAR - fantomas wrote:
I have noticed those some time ago.
I wonder what's the point of sending such mail.
On 21.08.20 09:21, John Hardin wrote:
It's an attempt to obstruct spam detection via naïve text matching
in the raw HTML. It has no effect (beyond being a fairly good spam
indicator) if the text is rendered before being scanned.
On Fri, 21 Aug 2020, Matus UHLAR - fantomas wrote:
that would make sense if it contained any non-dummy text
On 21.08.20 10:02, John Hardin wrote:
The goal is to break up the words so they can't be recognized by a
naïve scan. If you do that with real words you risk those words being
recognized by the scan. That's why the word obfuscation uses
gibberish.
this still only applies if theres's any more text in the e-mail that is
obfuscated.
I've seen mail containing ONLY the text mentioned above, in which case it's
strange. From the original mail I got feeling that the mails also contain
mentioned text only...
I have checked if there's any hidden content (I prefer plaintext versions,
but can check HTML and HTML source too), but I saw nothing.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Despite the cost of living, have you noticed how popular it remains?
