How attackers leveraged a watering hole attack to target Windows and Android devices (Source: Google Project Zero)
Google s Project Zero security team is describing its discovery last year of a complex watering hole operation that used four zero-day exploits to target Windows and Android mobile devices.
The attack was discovered and stopped in the first quarter of 2020, but the Project Zero team, along with Google Threat Analysis Group, did not disclose details until now because it took months to analyze the complex operation.
The threat actors behind the campaign used two exploit servers - one targeting Android devices and the other Windows devices - that each utilized separate attacks chains, Google reports.