Can you be ready for a threat you don't know about?
In the network security world, threats can be known—or unknown. Among the unknown kind are zero-day threats: ones that have already been used in a real attack but have yet to be publicly disclosed by the software vendor. In the time between the threat’s discovery (“day zero”) and its disclosure, enterprises are completely in the dark about the risks they might be facing.
While security vendors have been discussing zero-day threats a lot as of late, many use “zero day” as a blanket term to describe any type of threat that has not yet been disclosed but is being used by malicious operators. Painting in such broad strokes, however, leaves enterprises vulnerable.
There are actually three different types of zero-day threats enterprises need to know about:
• Zero-day vulnerabilities
• Zero-day exploits
• Zero-day malware
Each one requires an artist’s touch to provide proactive and efficient network defense.