Security researchers detected a new series of drive-by attacks based on a new Internet Explorer zero-day vulnerability. The attackers breached a website based in the US to deploy the exploit code to conduct a classic watering hole attack. The discovery was announced just a few days after Microsoft revealed the Microsoft Zero-day, a vulnerability in Microsoft graphics component that is actively exploited in targeted attacks using crafted Word documents sent by email. FireEye experts announced the collaboration with the Microsoft Security team on research activities and the post published has the intent to alert IT community.
Source: https://thehackernews.com/2013/11/internet-explorer-zero-day-vulnerability-watering-hole-attack.html