zero-day exploit


Also found in: Dictionary, Thesaurus.

zero-day exploit

A malware attack that takes place after it is discovered and before the vendor of the vulnerable software deploys a patch, typically to the OS or Web browser. When a vulnerability is discovered by a user, it may wind up on one or two blogs, and the news travels fast. If only the software vendor becomes aware of it, the tendency is to keep the problem under wraps until a patch has been created to fix it. However, in many cases, vendors announce the flaw because users can then steer clear of the infected website or be sure to avoid opening a certain email attachment. See exploit.
Copyright © 1981-2019 by The Computer Language Company Inc. All Rights reserved. THIS DEFINITION IS FOR PERSONAL USE ONLY. All other reproduction is strictly prohibited without permission from the publisher.
Mentioned in ?
References in periodicals archive ?
We call a zero-day exploit or a set of zero-day exploits a cyber resource to the attacker [27].
After their investigation, Citizen Lab were able to determine that the links would have lead to a chain of zero-day exploits which would have remotely jailbroken Mansoor's iPhone 6 and installed spyware.
(340) See, e.g., Brian Krebs, Experts Warn of Zero-Day Exploit for Adobe Reader, KREBS ON SECURITY (Nov.
Zero-Day and Other Exploits: A zero-day exploit is a vulnerability in a software product that allows an attacker to execute unintended code or gain control of a target computer.
Attackers who are aware of the vulnerability can quickly develop a zero-day exploit, a piece of code that exploits an unknown vulnerability to silently download malware onto the user's PC, and embed the exploit in a webpage or email attachment.
Oraclereleased Java 7 Update 11last Sunday as an emergency security update in order to blocka zero-day exploit used by cybercriminalsto infect computers with malware.
Key words: cybercrime, advanced persistent threat, network attacks, IT security, zero-day exploit
Any nation state with sufficient expertise and resources could develop the means of cyber attack.' What really worries IT professionals and the military are attacks that use 'zero-day exploits' 'A zero-day exploit is an attack on a particular vulnerability which is unknown to the target's developer or user community,' says Fafinski.
Microsoft issued a security advisory that provides customers with guidance and workarounds for dealing with a zero-day exploit aimed at Internet Explorer and said a patch is forthcoming.
The company launched an investigation after discovering that an intruder could use a 'Zero-Day Exploit' through software used on the site's servers to access the Second Life databases.
Zero-Day Exploit: Countdown to Darkness is an exciting novel of suspense.
Asigra was acknowledged for its zero-day exploit protection of backup data with bi-directional ransomware detection and compliance with General Data Protection Requirement (GDPR) Articles 6, 17, 25, and 32.