What Is a
Zero-day vulnerability refers to a security flaw that is unknown by developers of a software, but could potentially pose a rather large risk to its users. Although the vulnerabilities discussed in this post pertain to Google Chrome, similar risks can lie in just about any type of software or platform. Because these vulnerabilities are difficult to find, teams of researchers spend hours upon hours of time scanning and documenting the back-end code of popular programs. In return, major developers of these platforms typically offer cash rewards to those researchers that both find the vulnerability and bring it to the attention of their team.
That said, if these vulnerabilities are not found and resolved quickly, the risk of exploitation increases. For reference, exploitation occurs between the time it takes for the vulnerability to be discovered and the resolving update that follows. During this window of time, hackers carefully craft codes to take advantage of the software’s flaws. Depending on the severity of the vulnerability, malicious code can be developed to gain remote access to a computer, escalate user privileges, and creep deeper into the now accessible network.
Examples of Zero-Day Vulnerabilities
New Zoom Vulnerability | Zero Day Security Risk
Find yourself regularly using Zoom? A new zero day vulnerability was recently discovered that, when executed, provides hackers with complete control over a victim’s device.
To mitigate the risk, here’s some Zoom security tips to keep your information protected.
Read MoreIf You Use FireFox, You’re Going to Want to Read This…
Stemming from a “zero-day vulnerability” found within the code of Firefox’s recent 72.0 update, Mozilla has released yet another patch to counteract a series of exploitative attacks.
In turn, the United States Cybersecurity and Infrastructure Agency issued an alert to all Mozilla Firefox users on January 8, 2020, requesting that they update the web browsing program to version 72.0.1 immediately.
Read MoreUpdate Your Google Chrome Browser | New Zero-Day Vulnerability Alert
In light of two recently discovered security risks found within the Chrome Internet browser, Google engineers have begun distributing an important update across the platform’s entire user base.
Known commonly as “zero-day vulnerabilities”, these potentially malicious threats were uncovered by two senior researchers at Kaspersky, a cybersecurity organization, on October 31, 2019.
Read More