I just wanted to share / make people aware that SVG files can be used to attack users and are already used as such: Scalable Vector Graphics files pose a novel phishing threat – Sophos News
Since many laser users are dealing with SVG files, this might pose a potential threat to everyone. Don’t open SVGs using a web browser.
I wrote up an SVG attack that arrived last week.
Microsoft makes it difficult to reveal the file extensions by default and even more difficult to find out how to do it. This page seems to cover the various Windows versions:
A file claiming to be a voicemail can do anything, but being aware of the weirdness may avoid the worst of it.
Probably a good reason not to open them in your browser when you get email from an unknown fishermen.
