In this episode, we dive into the strange world of invisible Unicode attacks and what they could mean for modern software security. We explore how hidden characters can be used to conceal malicious code within packages, why this isn’t entirely a new problem, and whether current tools, such as linters and SAST, are equipped to detect it. We also question the role of LLMs in both enabling and detecting these attacks, and whether this is a real emerging threat or just another overhyped security scare. Per usual, the conversation is filled with sarcasm, skepticism, and a healthy dose of “just don’t do it. FOLLOW OUR SOCIAL MEDIA:➜Twitter: <a href='https://twitter.com/SecTablePodcast'>@SecTablePodcast</a> ➜LinkedIn:<a href='https://www.linkedin.com/showcase/83990241'> </a><a href='https://www.linkedin.com/company/the-security-table-podcast/'>The Security Table Podcast</a> ➜YouTube: <a href='https://www.youtube.com/channel/UCLodR5gtnVo0e8PAtwcr4Lg'>The Security Table YouTube Channel</a>Thanks for Listening!

<description>&lt;p&gt;&lt;b&gt;In this episode, we dive into the strange world of invisible Unicode attacks and what they could mean for modern software security. We explore how hidden characters can be used to conceal malicious code within packages, why this isn’t entirely a new problem, and whether current tools, such as linters and SAST, are equipped to detect it. We also question the role of LLMs in both enabling and detecting these attacks, and whether this is a real emerging threat or just another overhyped security scare. Per usual, the conversation is filled with sarcasm, skepticism, and a healthy dose of “just don’t do it.&lt;/b&gt;&lt;/p&gt;&lt;p&gt;&lt;br/&gt;&lt;/p&gt;&lt;p&gt;FOLLOW OUR SOCIAL MEDIA:&lt;/p&gt;&lt;p&gt;➜Twitter: &lt;a href='https://twitter.com/SecTablePodcast'&gt;@SecTablePodcast&lt;/a&gt;&lt;br/&gt;➜LinkedIn:&lt;a href='https://www.linkedin.com/showcase/83990241'&gt; &lt;/a&gt;&lt;a href='https://www.linkedin.com/company/the-security-table-podcast/'&gt;The Security Table Podcast&lt;/a&gt;&lt;br/&gt;➜YouTube: &lt;a href='https://www.youtube.com/channel/UCLodR5gtnVo0e8PAtwcr4Lg'&gt;The Security Table YouTube Channel&lt;/a&gt;&lt;/p&gt;&lt;p&gt;Thanks for Listening!&lt;/p&gt;</description>

In this episode, we dive into the strange world of invisible Unicode attacks and what they could mean for modern software security. We explore how hidden characters can be used to conceal malicious code within packages, why this isn’t entirely a new problem, and whether current tools, such as linters and SAST, are equipped to detect it. We also question the role of LLMs in both enabling and detecting these attacks, and whether this is a real emerging threat or just another overhyped security ...

The Security Table

The Invisible Code Problem: When You Can’t See the Attack, Can You Stop It?

The Invisible Code Problem: When You Can’t See the Attack, Can You Stop It?

Description