View Glossary

ZeroFont Phishing

ZeroFont Phishing image
What is it?
Hidden text in emails using font-size:0 or similar CSS tricks. Appears in preview pane but not in the visible body to falsely reassure recipients.

Testing?

  • Inspect raw HTML > Look for <span style="font-size:0px"> or display:none tags.
  • Compare preview vs body > If preview mentions “secure” or “verified” but body doesn’t, flag it.
  • Search for suspicious phrases > Hidden text often says “This email is safe” or “Verified sender.”
  • Automation > flag any zero-font or hidden text in email HTML.
  • Cross-Client checks > test in Gmail, Outlook, Apple Mail - as we all know behavior varies.
  • Educate users and peers > remind them 'Preview text can be manipulated - verify sender and links before clicking.'

See also - how to identify people using AI when applying for jobs...
Aj Wilson
Aj Wilson
9th December 2025
Add Definition
Explore MoT
MoTaCon 2026 image

MoTaCon 2026

Thu, 1 Oct 2026
Previously known as TestBash, MoTaCon is the new name for our annual conference. It's where quality people gather.
MoT Software Testing Essentials Certificate image
MoT Software Testing Essentials Certificate
Boost your career in software testing with the MoT Software Testing Essentials Certificate. Learn essential skills, from basic testing techniques to advanced risk analysis, crafted by industry experts.
Certification
This Week in Quality image
This Week in Quality
Debrief the week in Quality via a community radio show hosted by Simon Tomes and members of the community
Subscribe to our newsletter
We'll keep you up to date on all the testing trends.