Turns out the targeted attack that exposed RSA's SecurID technology started with one of the oldest tricks in the book: a phishing email with an infected attachment, according to new details revealed ...