Comment on Emojis can be hacked to hide data or messages, unicode Characters also susceptible
01189998819991197253@infosec.pub 1 month ago
It says…
Fortunately, sneaking in an executable, an image file, or an application extension isn’t possible.
Then says…
While the title refers to “arbitrary data,” users can hide whatever they want within Unicode characters, though this seems limited to text.
B64 is just text, and pretty much anything can be converted to B64. This can absolutely be used to exfil more than just text-only data (say, a db or media). Therefore, this isn’t the non-issue they make it out to be, and should be seen as what it is.
RunningInRVA@lemmy.world 1 month ago
Please don’t be goatse.
01189998819991197253@infosec.pub 1 month ago
Hahahahahahah!!! It’s not. While others might, I would never do that to you.
It actually didn’t properly finish parsing , since there’s only so much it can handle, so it’s a partial image, but it is 100% SFW. Maybe I should have done a smaller image or across several Unicodes, but it gets the point across regardless.