Zero-Day Exploit
What is it and how can we defend against them
A Zero-Day Exploit is a type of cyberattack that takes advantage of a previously unknown vulnerability in software or hardware – one that the vendor or developer has had “zero days” to fix because they are unaware of it.
Key Concepts:
- Zero-Day Vulnerability: A flaw or weakness in software that is unknown to the vendor.
- Zero-Day Exploit: The method or code used by attackers to take advantage of that vulnerability.
- Zero-Day Attack: The actual use of the exploit to compromise a system before a patch is available.
Why It’s Dangerous:
- No Patch Available: Since the vulnerability is unknown, there’s no fix or update to prevent the attack.
- High Value: Zero-day exploits are highly prized on the black market and often used in targeted attacks.
- Hard to Detect: Traditional antivirus and security tools may not recognise the exploit.
Real-World Example:
- Stuxnet: A famous worm that used multiple zero-day exploits to sabotage Iran’s nuclear program.