A watering hole attack (Watering hole attack) is where an attacker guesses or observes the websites that an organization frequents and infects one or more of them with malware.
In hacking for specific information, only users coming from a specific IP address may be attacked.
This will make it difficult to detect and investigate hacking.
Derived from the fact that bears and other natural predators wait for an opportunity to attack their prey near a body of water
Defense methods
Websites are often infected through zero-day vulnerabilities in browsers and other software.
The defense against known vulnerabilities is to apply the latest software patches to remove the vulnerabilities that caused the site to become infected.
An additional defense is for companies to monitor their websites and networks and block traffic if malicious content is detected.
Comments