Watering Hole Attack
Watering hole attack is an attack in which an attacker targets specific groups or organizations, discovers which websites they frequent, and injects malicious code into those sites.
- relies on unsecure third-party websites
- e.g., staff running an international e-commerce site might use a local pizza delivery firm
- threat actor might discover this fact through social engineering or other reconnaissance of the target
- attacker can compromise the pizza delivery firm’s website so that it runs exploit code on visitors
- may be able to infect the computers of the e-commerce company’s employees and penetrate the e-commerce company systems