You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
watering hole attack
About this tag
A watering hole attack is a cyber threat where attackers compromise websites frequently visited by a target group, aiming to infect visitors with malware. On WindowsForum.com, discussions reference U.S. government alerts (TA18-074A, TA17-293A) detailing Russian and APT activity targeting energy, critical infrastructure, and government entities. These alerts describe tactics, techniques, and procedures (TTPs) and indicators of compromise (IOCs) used in such campaigns. The tag covers threat intelligence related to watering hole attacks, particularly those affecting domain controllers, file servers, and email servers. Users seeking information on state-sponsored cyber operations and infrastructure targeting will find relevant technical details and mitigation guidance.
Original release date: March 15, 2018
Systems Affected
Domain Controllers
File Servers
Email Servers
Overview
This joint Technical Alert (TA) is the result of analytic efforts between the Department of Homeland Security (DHS) and the Federal Bureau of Investigation (FBI). This alert...
Original release date: October 20, 2017
Systems Affected
Domain Controllers
File Servers
Email Servers
Overview
This joint Technical Alert (TA) is the result of analytic efforts between the Department of Homeland Security (DHS) and the Federal Bureau of Investigation (FBI). This alert...