What Does Watering Hole Attack Mean?
A watering hole attack is a malware attack in which the attacker
observes the websites often visited by a victim or a particular group, and
infects those sites with malware. A watering hole attack has the
potential to infect the members of the targeted victim group. Although
uncommon, a watering hole attack does pose a significant threat to websites, as these attacks
are difficult to diagnose.
Techopedia Explains Watering Hole Attack
Most users unknowingly provide the tracking information while browsing. The tracking information gives the behavioral web patterns of the targeted victim groups. It also indirectly provides the attackers with information about browsing, cloud services access and security policies of the organizations.
One of the ways to defend against watering hole attacks is by educating users about such attacks. Effective detection and prevention techniques need to be used. Regular inspection of websites for malicious code should be conducted.