Apr 15, 2014

What is a zero day vulnerability?

I understand zero day to mean that there is a serious security issue, but I don’t know what it actually means. Where does the term “zero day” come from?

Zero-day attack

"A zero-day (or zero-hour or day zero) attack or threat is an attack that exploits a previously unknown vulnerability in a computer application, one that developers have not had time to address and patch.[1] There are zero days between the time the vulnerability is discovered (and made public), and the first attack.[2] It is common for individuals or companies who discover zero-day attacks to sell them to government agencies for use in Cyberwarfare.[3][4][5][6]"

Zero day refers to a situation where there has been “zero days” since the time a vulnerability was publicly identified and the first attack. It means that there has been a problem identified, but there isn’t a patch yet. 


Answer this