Why do the more recent spams have so colorful subjects?

And I mean really colorful, as in it has signs and colors.

Like the one in the featured image.

If you look in their source, they look like this:

Subject: =?utf-8?b?8J+QlfCfkIhZb3UgY2FuIHNhdmUgb24gcGV0IGZvb2Qg8J+QlfCfkIg=?=

 

 

As it can be seen on this page, there are all possible symbols described: http://www.unicodetools.com/unicode/codepage-utf8.php

All it has to do is to force the email client to display them.

Most of the time, it actually works, as can be seen above.

Sometimes, it doesn’t, even if the symbols are correctly set up:

Subject: =?utf-8?q?=F3=BE=86=93_sorin=2Emustaca=2C_Discount_Dental_Implants_in_You?=
 =?utf-8?b?ciBBcmVhIPO+hpM=?=

nocolor-subject

You can actually see the character’s code number 🙂

 

 

So, are they dangerous ?

Not really… usually.

I can imagine though, that if the mail client has a vulnerability when it displays certain characters, some bad guys could use it to exploit it.

This way it could, in theory, trigger an unwanted execution of a script or download a file and execute it.

 

Related Posts

Do you actually need a security product in your car? Part 3 : Intrusion Prevention and Detection Systems

I ended part 2 with the promise that we will discuss about : 2) Intrusion detection and prevention systems (IDS/IPS or IDPS) From Wikipedia: Intrusion prevention systems (IPS), also known as intrusion detection and prevention systems (IDPS), are network security appliances that monitor network and/or system activities for malicious activity. The main functions of intrusion […]

Smart and true quote

If there’s anything I’ve learned from my years in the tech world, it’s that companies don’t get killed by competition. They usually find creative ways to commit suicide. Sridhar Vembu,CEO of Zoho How true this is ! This applies to me as well. Now, let me detail this a little bit. If a company wants […]

The biggest threats in the mobile world: social engineering and malicious apps

The growth of the smart devices (smartphones, iPhones, tablets, intelligent TVs and so on) brought not only joy to the owners. The average consumer of these devices is not security aware. He will try any software and will take any offer, even those which sound too good to be true. 1. The biggest threat for […]