The recently spotted watering hole attacks aimed at the visitors of the official website of the US Veterans of Foreign Wars and of a bogus website mimicking that of the French aerospace association GIFAS might not be, after all, the work of the same threat actors.
A group of researchers has created a new infection detection system that can help Internet service providers and large enterprises - or anyone running large-scale networks - spot malware attacks that antivirus and blacklisting solutions can't.
An Internet Explorer zero-day vulnerability (CVE-2014-0322) is actively exploited in the wild in a watering-hole attack targeting visitors to the official website of the U.S.
When compared with the numbers from the previous year, 2013 has seen an increase in reported security vulnerabilities and, what's more, the number of critical vulnerabilities has also risen - although it's considerably smaller than in 2009.
There are a few new rules for this years' edition of the Pwn2Own hacking contest and a huge new prize for an "Exploit Unicorn worthy of myth and legend" - $150,000 for a system-level code execution on Windows 8.1 x64 on Internet Explorer 11 x64 with EMET bypass.