Apr 18, 2016

What is a 'watering hole' attack?

In a recent article I saw a reference to hackers using "watering hole" attacks against targets. What is a watering hole attack and how does it pose a security threat?
A watering hole attack is a exploit technique intended to target a particular group of users, such as a particular company. The attacker guesses, or finds out, a Web page that's commonly used by members of the group and infects the site with malware, in hopes that one more uses will access the site again and get their systems infected. This type of attack can open up access to the group's network, infect machines to gather sensitive information, and more.
Answer this