Can you briefly explain to me how an attacker would break this?

Pretty much the same way you would break rot 13 or any other substitution cipher, easily