http://media.zenfs.com/en_US/News/LiveScience.com/Internet_Explorer_7_Logo.jpg1367868067" src="http://l3.yimg.com/bt/api/res/1.2/EeJ2s6qIbvuq9RFyZZlwoQ--/YXBwaWQ9eW5ld3M7Y2g9MjQwO2NyPTE7Y3c9MzYwO2R4PTA7ZHk9MDtmaT11bGNyb3A7aD0xMjc7cT04NTt3PTE5MA--/http://media.zenfs.com/en_US/News/LiveScience.com/Internet_Explorer_7_Logo.jpg1367868067">Internet Explorer Zero-Day Attack Targets Nuclear Researchers

Microsoft has confirmed the existence of a zero-day code-execution exploit for Internet Explorer 8 that's currently being used in a series of watering-hole attacks.

The watering-hole attacks (a technique used in attacks directed at a specific population of Internet users) target American government employees and contractors who work in the nuclear research sector, and Europeans who work in the defense, security and aerospace industries and non-profit groups.

That's an indication that the attackers may be collecting sensitive military information on behalf of a nation-state.

The vulnerability affects machines running IE 8 on Windows XP, Windows Vista and Windows 7. Other versions of Internet Explorer, including the older IE 6 and IE 7, are not affected, a Microsoft security advisory states. The exploit is mitigated on Windows Server 2003 and 2008.

http://news.yahoo.com/internet-explorer-zero-day-attack-targets-nuclear-researchers-214704437.html