What Is a
Zero-day vulnerability refers to a security flaw that is unknown by developers of a software, but could potentially pose a rather large risk to its users. Although the vulnerabilities discussed in this post pertain to Google Chrome, similar risks can lie in just about any type of software or platform. Because these vulnerabilities are difficult to find, teams of researchers spend hours upon hours of time scanning and documenting the back-end code of popular programs. In return, major developers of these platforms typically offer cash rewards to those researchers that both find the vulnerability and bring it to the attention of their team.
That said, if these vulnerabilities are not found and resolved quickly, the risk of exploitation increases. For reference, exploitation occurs between the time it takes for the vulnerability to be discovered and the resolving update that follows. During this window of time, hackers carefully craft codes to take advantage of the software’s flaws. Depending on the severity of the vulnerability, malicious code can be developed to gain remote access to a computer, escalate user privileges, and creep deeper into the now accessible network.
Examples of Zero-Day Vulnerabilities
With AI allowing cybercriminals to decrease the time it takes to exploit software vulnerabilities; here’s why Google Chrome’s new update schedule was a much-needed change.Read More
While network and email security firm, Barracuda, is trusted to protect client data, it appears as though even one of the world’s leading cybersecurity firms isn’t immune to the threat of hackers.Read More
It seems like a new company is announcing a security breach each week. And while the cause of these incidents may vary, one thing is certain: cyber threats are on the rise.Read More
Find yourself regularly using Zoom? A new zero day vulnerability was recently discovered that, when executed, provides hackers with complete control over a victim’s device.
To mitigate the risk, here’s some Zoom security tips to keep your information protected.Read More
Stemming from a “zero-day vulnerability” found within the code of Firefox’s recent 72.0 update, Mozilla has released yet another patch to counteract a series of exploitative attacks.
In turn, the United States Cybersecurity and Infrastructure Agency issued an alert to all Mozilla Firefox users on January 8, 2020, requesting that they update the web browsing program to version 72.0.1 immediately.Read More
In light of two recently discovered security risks found within the Chrome Internet browser, Google engineers have begun distributing an important update across the platform’s entire user base.
Known commonly as “zero-day vulnerabilities”, these potentially malicious threats were uncovered by two senior researchers at Kaspersky, a cybersecurity organization, on October 31, 2019.Read More