Original e-mail with exploit found by Finnish security provider F-Secure. F-Security: “We just didn’t know we did, and we couldn’t find it among the millions of other samples” Attacker: “Why the heck does Excel support embedded Flash?” Attacker drops a so-called poison ivy backdoor to the system using an Outlook message file. Attacker has full remote access to the infected workstation, security provider says. The attacker has full access to network drives that the user can access.”]
Source: https://www.inforisktoday.com/blogs/rsa-breach-evidence-uncovered-p-1049