Seven myths about zero day vulnerabilities debunked

Jack

Jack

Administrator
Thread author
Verified
Staff Member
Well-known
Jan 24, 2011
9,379
Are zero day flaws what the bad guys are always looking for? Just how prevalent are zero day flaws within their business model? Are zero day flaws crucial for the success of targeted attacks attacks? Let’s debunk seven myths about zero day flaws

More details - link
 
Jack

Jack

Administrator
Thread author
Verified
Staff Member
Well-known
Jan 24, 2011
9,379
This is exactly my point of view on this subject :

 
Last edited:
bogdan

bogdan

Level 1
Jan 7, 2011
1,362
It all depends about what everyone understands "0-day vulnerabilities" to be. If he talks about unknown flaws discovered in a product that can be exploited, he might be right. But unfortunately there are also known flaws with proof-of-concept code available on public sites like Exploit Database or integrated into Metaspoit that anyone can use to produce malicious software but companies ignore for some time. Sure, most malware threats do not use 0-day vulnerabilities and if you install updates regularly you are much safer, but there are some that do and those create significant damage. It took a long time for Microsoft to patch all 0-day vulnerabilities Stuxnet used.

And there is another aspect. In some cases malware doesn't even need to exploit a vulnerability since users are tricked into running the software themselves and they use an administrator account with UAC turned off. They exploit the user :p
 
You must log in or register to reply here.

Similar threads

Gandalf_The_Grey
    • Like
    • +Reputation
Security News Microsoft December 2024 Patch Tuesday fixes 1 exploited zero-day, 71 flaws
Replies
2
Views
436
Security News
Gandalf_The_Grey
Gandalf_The_Grey
Gandalf_The_Grey
    • Like
    • +Reputation
    • Applause
New Update Google fixed two actively exploited Android zero-day flaws as part of its November security updates
Replies
0
Views
415
Android & WearOS
Gandalf_The_Grey
Gandalf_The_Grey
Gandalf_The_Grey
    • Like
    • Wow
    • +Reputation
Security News Windows driver zero-day exploited by Lazarus hackers to install rootkit (patched August 2024)
Replies
0
Views
1,805
Security News
Gandalf_The_Grey
Gandalf_The_Grey

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top