The latest zero-day was used as part of a so-called “watering hole” attack against the website for the policy think tank Council on Foreign Relations. The group, believed to be based in China, has targeted U.S. defense contractors and their partners in the supply chain, including manufacturers of mechanical components. Microsoft is working on a full patch for the flaw, which, unfortunately, will not make it in time for next week’s Patch Tuesday monthly round of Microsoft updates.
Source: https://thehackernews.com/2013/01/latest-internet-explorer-zero-day.html