ZDNet's Zack Whittaker detailed the waterhole attack that was injected into a popular iPhone Dev SDK website (no link love due to the potential threat) which compromised the computers of visiting employees from Apple, Facebook (and potentially Twitter, too) using a zero day exploit in the Java web plug-in.