Watering Hole Attack

February 27, 2017 | Views: 8257

Begin Learning Cyber Security for FREE Now!

FREE REGISTRATIONAlready a Member Login Here

Hello, Guys!

I think many of you have heard the recent news that a group, known as Lazarus, infected a Polish bank’s website and targeted 150 different IPAddresses around 31 countries. The trick used by the group was called the Watering Hole Attack.

Let’s take a look at what a watering hole attack is.

It is a popular computer attack in which the attacker collects information about/from the victim from the website he/she usually browses. Here, the victim could be an industry, organization or individuals. Then the attacker infects the website that is viewed/visited most by the victim. After that, when the attacker visits the website, the infected website drops the malware to the victim’s computer or installs a type of trojan or malware that could connect with the command and control the system. Using this phenomenon, the attacker can hack you! This technique of using a third party website to infiltrate and gain control is known as the watering hole attack.

It’s not very easy to perform; however, this strategy is very efficient because the victims trust the website they are visiting. They also are generally unable to recognize what is happening to them, or if the website has been compromised.

If you are not familiar with this news, then you can see the story here:

Share with Friends
Use Cybytes and
Tip the Author!
Share with Friends
Ready to share your knowledge and expertise?
  1. Thanks for this. +10 😀

  2. great work and informative. thanks

Comment on This

You must be logged in to post a comment.

Our Revolution

We believe Cyber Security training should be free, for everyone, FOREVER. Everyone, everywhere, deserves the OPPORTUNITY to learn, begin and grow a career in this fascinating field. Therefore, Cybrary is a free community where people, companies and training come together to give everyone the ability to collaborate in an open source way that is revolutionizing the cyber security educational experience.

Support Cybrary

Donate Here to Get This Month's Donor Badge


We recommend always using caution when following any link

Are you sure you want to continue?