[beardednose]

Unexpected Attack Vectors
A new round of attacks and phishing attempts use some unexpected attack vectors that we should have been paying attention to, but weren't.

By Scott Granneman Feb 09 2005 02:33PM PT

Back in 1882, Los Angeles was a rough, dry town of 12,000 people that had been an incorporated municipality for a little over 3 decades. 1882 also saw the introduction of telephone service and electric streetlights. At the time there were several newspapers in town, including the Los Angeles Tribune and the Los Angeles Times. Competition between newspaper rivals was fierce, but no one at the time realized where the biggest threat would come from: a young 19-year-old sharpie named Harry Chandler, who had just moved to Los Angeles and had started working for the Times.

---------------------
This starts a little slow, but it's worth it. Looks like compressed file types like GZ, SIT, and RAR can get by AV software with infected files. BN

Read the rest at http://securityfocus.../columnists/298

[belgther]

well, i don't know if i understood it well, but i had some compressed files, infected, too, so DrWeb detected and cured them...

[Tyrano]

The archived extensions was news to me, but the IDN vector? Cmon now. Granted I didn't know IDN was available, but it seems pretty logical this would have been the next phishing scheme.