For years, hackers could have tricked enterprises into downloading malware by simply de-capitalizing letters.