Invisible Malware - Understanding Unicode Obfuscation and the Glassworm Attack
John Hammond via YouTube
AI, Data Science & Cloud Certificates from Google, IBM & Meta
Learn the Skills Netflix, Meta, and Capital One Actually Hire For
Overview
Google, IBM & Meta Certificates – 40% Off
One plan covers every Professional Certificate on Coursera.
Unlock All Certificates
Explore the emerging threat of invisible malware techniques in this cybersecurity analysis video. Dive into the GlassWorm malware campaign that exploits invisible Unicode characters to hide malicious code in plain sight, making detection extremely challenging for traditional security tools. Learn how attackers are leveraging special Unicode characters like U+3164 and U+FFA0 to create seemingly empty code that actually contains harmful payloads. Examine real-world cases where this technique has been used to compromise VS Code extensions and other software repositories, including detailed analysis of how the malware spreads through infected packages. Understand the technical mechanics behind invisible obfuscation methods and discover how threat actors are using these sophisticated hiding techniques to evade security scanners and human review processes. Gain insights into the latest developments in this attack vector and learn practical approaches for detecting and defending against invisible code injection attacks in your development and security workflows.
Syllabus
so malware is invisible now lol
Taught by
John Hammond