631-905-9617    Get SUPPORT

Suffolk Computer Consultants Blog

Intro to Your Tech: Zero-Day

Intro to Your Tech: Zero-Day

While a technology exploit or vulnerability is never a good thing, hearing one described as “zero-day” adds another level of sinister malice to the term. However, it is still important to understand what is meant by zero-day, which is why we are going to review that term below.

First, it is important that we understand what a vulnerability is, so that we can better understand why a zero-day one is so bad. In short, a vulnerability is a flaw in a piece of software that can be exploited by a cybercriminal. A cybercriminal that uses malware to attack a system needs a way to introduce that malware. Vulnerabilities provide them with the means to do so.

What Does Zero-Day Signify?
For a vulnerability to be “zero-day,” it must be known and in the wild with no patch or update to fix it - effectively, the software developers have zero days left to resolve the vulnerability with no chance of misuse by a cybercriminal.

This often happens when a black-hat hacker, rather than a white-hat cybersecurity researcher, discovers a software vulnerability first. Under ideal circumstances, the researcher will find and report the flaw to the developer first, and a fix can be created before cybercriminals ever catch wind of the opportunity. However, if a hacker finds the vulnerability first, they have free reign to use it to their own ill-intentioned ends.

Protecting Against These Threats
The key to securing your systems against threats of all kinds, even zero-day threats, can be summed up in one word: proactivity. It is crucial that you update your organization’s technology--especially if these updates pertain to security standards--as quickly as possible, so that you are as well-protected as possible.

One of the most telling things about zero-day threats and vulnerabilities is how successful they still are after they have been turned into an n-day vulnerability. An n-day vulnerability is one that has been discovered and fixed. However, these fixes only work if they have been applied to a business’ technology. The infamous Equifax breach was carried out using a vulnerability that had been discovered, reported, and patched earlier that year. Equifax had not updated their systems by applying the patch, leaving the vulnerability available for those responsible to utilize.

In short, any business needs to be sure to keep their systems as up-to-date as possible to prevent threats--if not zero-day, then at least n-day--from being a hindrance for their operations. Suffolk Computer Consultants can help. We’ll make sure your systems are up to date on your behalf, and that your security is top-notch. Call us at 631-905-9617 for more information.

How Managed IT Depends on Remote Monitoring and Ma...
Which Browser Do You Prefer?
 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Thursday, April 25 2019
If you'd like to register, please fill in the username, password and name fields.

Captcha Image

Mobile? Grab this Article!

QR-Code dieser Seite

Tag Cloud

Tip of the Week Security Technology Best Practices Business Computing Privacy Cloud Productivity Network Security User Tips Cybersecurity Microsoft Smartphones Malware Google Communication Communications Tech Term Managed IT Services Business Efficiency Internet Hackers Backup Hardware Email Passwords Outsourced IT Innovation Business Management Data Software Browser Android Small Business Windows 10 Ransomware Hosted Solutions Bandwidth Users Collaboration IT Support Managed IT Services IT Services Mobile Devices VoIP Wi-Fi Data Backup Data Recovery Mobile Device Microsoft Office Applications Save Money Alert Smartphone Social Media Computer Holiday Internet of Things Cloud Computing Apps Network Password Gadgets Twitter Workplace Tips Miscellaneous Saving Money Chrome Wireless Access Control Employer-Employee Relationship Router Office Business Intelligence Settings Patch Management BDR Automation Vulnerability Analytics VoIP Office 365 Blockchain Government Business Continuity Paperless Office Data Breach Data Management Word Phishing Networking Virtualization Excel Information Marketing Gmail Company Culture Battery Cortana Politics Data Security Mobility Virtual Assistant Website Dark Web Managed Service App Hacking Windows Tip of the week Remote Computing Computers Compliance Cost Management Spam IT Support Virus Facebook Artificial Intelligence Mobile Device Management Retail Remote Monitoring Law Enforcement Workers WiFi Cybercrime How To VPN Scam Remote Monitoring and Management G Suite Value Net Neutrality Healthcare Wireless Charging BYOD Productivity Physical Security Managed IT Service Tech Terms Connectivity Medical IT Data Protection Outlook Laptop Printing Analysis Cryptocurrency Bring Your Own Device Knowledge Spyware Amazon Live Streaming Data loss Unified Communications SaaS Authentication Operating System Big Data Files Telephony Network Attached Storage Streaming Media GDPR Electronic Health Records Telephone Systems File Sharing Staffing Profitability Spotify User Tip Paper Remote Support Technology Tips Hybrid Cloud Google Drive Comparison HP Database E-Commerce WhatsApp Staff RAM Authorization WannaCry Environment Gadget Training Upgrade Voice over IP Server Management Downloads Information Technology Storage Health Hiring/Firing Remote Control User Security Eliminating Downtime Ink Time Management Hosted Solution Backup and Disaster Recovery Work/Life Balance Specifications Document Management Tactics Plug-In Payment Websites Microsoft Teams Printer Server Business Technology HIPAA e-waste Shortcut Cables Security Cameras eCommerce Trends Entertainment Biometrics Error Employees Managed IT Spam Blocking Recovery Wireless Internet Office Tips Automobile Telecommuting IT budget PowerPoint Disaster Recovery Chrome OS Botnet Copy Apple SSD Multi-Factor Security Conferencing Digital Internet Explorer Maintenance Proactive IT instant Messaging Two-factor Authentication News Managing Stress Cleaning Printers Troubleshooting Email Management Sales Hard Drive disposal CrashOverride Voice over Internet Protocol Wearables Licensing Online Shopping Machine Learning A.I. Access Touchscreen Help Desk Millennials IT Management Sports Reporting Human Resources Hard Drives Paste iPhone Inventory Content Filtering Edge Threat Antivirus Vulnerabilities Tech Support Telephone System Dongle Update Server Tablet Processors Travel Telecommute Movies Personal Information Microsoft Office 365 Safety Phone System Certification Google Maps Education Smart Technology Employee-Employer Relationship Lead Generation Mobile Security Avoiding Downtime Budget Gaming Console Scheduling Customer Relationship Management Dark Data Competition Scalability Samsung IP Address Synergy Windows 7 Managed Service Provider Video Games Instagram Worker Customer Service DDoS IaaS Credit Cards Television Mobile Office Money Domains Employer Employee Relationship Emoji Printer Fun HaaS Quick Tips Windows 10 Freedom of Information Emergency Public Speaking Unified Threat Management Regulation Presentation Encryption Current Events Yahoo Leadership Solid State Drive Lithium-ion battery Augmented Reality Wireless Technology 5G Search Computer Care Vendor Management IBM Hard Disk Drive The Internet of Things Hacker Autocorrect

Newsletter Sign Up