Watering hole attacks involve attackers compromising one or more legitimate Web sites with malware in an attempt to target and infect visitors to those sites.
Sources:
NIST SP 1800-21B
from
ICS-CERT Monitor