Capstone Turbine, which makes environmentally friendly gas-powered turbines is believed to have served attacks identical to those served by the CFR, including the use of a previously unknown (zero day) Internet Explorer hole, according to Eric Romang, a Luxembourg-based security expert.
According to The Security Ledger, Romang's investigation of the drive-by download attack served by the CFR website uncovered malicious files on the Capstone site similar to those used on the CFR site. He said the compromise at Capstone predates the attack against the Council of Foreign Relations ‘s web site by more than two months, suggesting that the attacks were both wider and older than initially reported. Romang’s research also suggests that the CFR hack occurred earlier than was first reported – perhaps December 21st or earlier."
Link to Original Source