New watering hole attack targets U.S.-based non-governmental organization (NGO) website hosting domestic and international policy guidance. Attack code is targeting a new bug in IE and infecting victims via drive-by downloads. Windows XP and Windows 7 are impacted by these attacks, which can be mitigated by Microsoft s Enhanced Mitigation Experience Toolkit (EMET) FireEye has also made a connection between these attacks and the earlier DeputyDog attack, which was limited to a number of popular Japanese media websites.
Source: https://threatpost.com/ie-zero-day-watering-hole-attack-injects-malicious-payload-into-memory/102891/