Phishing Campaigns Exploit Text Salting to Bypass AI Email Filters

Phishing Campaigns Exploit Text Salting to Bypass AI Email Filters

First seen 17 Jul 2026, 16:56 UTC Darkreadingwww.cybersecuritydive.comTheregister 90% similarity 51.9

Article Content

Browse articles
ThreatCluster

Since April 2026, over 1 million phishing emails have been detected using a technique called text salting, which confuses AI-powered email security filters. Cybersecurity firm Barracuda Networks reported that attackers are embedding benign-looking words within malicious content to evade detection. This method, while not new, has proven effective against modern LLM-based security systems, which struggle to interpret hidden text. The phishing emails primarily target retail consumers with offers of rewards and gift cards, using compromised domains and standard authentication methods like DKIM. Despite the obvious spam characteristics, these emails are slipping through due to the limitations of current AI detection capabilities. Barracuda suggests that organizations should adopt a layered approach to email security to combat this issue.

Key Points: • Over 1 million phishing emails detected using text salting since April 2026. • Text salting involves hiding benign words to confuse AI email filters. • Organizations are advised to implement layered email security measures.

ThreatCluster AI

Timeline

2026-04-01
Text salting phishing campaigns began
Barracuda Networks observed the start of over 1 million phishing emails using text salting techniques targeting retail consumers.
Darkreading
2026-07-16
Barracuda reports on phishing emails
Barracuda Networks published findings on the effectiveness of text salting against AI filters, highlighting the scale of the attacks.
Darkreading
2026-07-17
The Register covers Barracuda's findings
The Register reported on Barracuda's findings, emphasizing the continued effectiveness of old email tricks against modern AI systems.
Theregister

Community

Browse all →