Morse Code being used to infect your computer? Really? Yes!

Morse Code Example (screen grab from a book where it featured – can you guess?)

As seen at BleepingComputer.com Morse Code is being used in Phishing Scams:

A new targeted phishing campaign includes the novel obfuscation technique of using Morse code to hide malicious URLs in an email attachment.

… Starting last week [beginning of February 2021], a threat actor began utilizing Morse code to hide malicious URLs in their phishing form to bypass secure mail gateways and mail filters.

Basically the malicious load is symbolic Morse Code which a “decodeMorse()” function decodes into a hexadecimal string which is further decoded into JavaScript tags that are injected into the HTML page your browser is showing.

As antivirus programs look for the hexadecimal, JavaScript and HTML forms of malicious code, and until now largely ignored good old Morse Code, the stuff sneaks through.

More details at: https://www.bleepingcomputer.com/news/security/new-phishing-attack-uses-morse-code-to-hide-malicious-urls/amp/

It is a shame that CW (Morse Code) is being abused to cause mischief.

73

Steve
K9ZW

 

[The picture came from https://www.historyofinformation.com/detail.php?id=471 which features Alfred Vail’s Description of the American ElectroMagnetic Telegraph: Now in Operation between the Cities of Washington and Baltimore (Washington: Printed by J. & G. S. Gideon,1845)]

Tagged ,

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.

<span>%d</span> bloggers like this: