What is a zero day attack?
Zero Day or Day Zero Attack refers to the threat posed by an unknown security vulnerability in a computer software or application for which either the patch was not released or the application developers did not know or did not have enough time to fix it.
Because the vulnerability is not known in advance, the exploits often occur without the users' knowledge. A zero-day failure is considered an important component in the design of an application to be efficient and secure.
The salient features of zero-day or day-zero attacks are:
Zero-day attacks typically occur between the time the vulnerability first appeared and was exploited and the time application developers provided the necessary solution to counter the exploitation. This timeline is usually referred to as the Vulnerability Window.
Zero-day attacks can destroy a network by exploiting the security gaps in the applications involved.
They are not always viruses and can accept other malware such as Trojans or worms.
For home computer users, the zero-day attack is extremely difficult to diagnose because the type of attack is carried out by a trusted entity.
Es wird häufig empfohlen, die neueste Anti-Malware-Software zu aktualisieren, die jedoch nur eine minimale Sicherheit gegen einen Zero-Day-Angriff bietet.
Effective methods to protect against zero-day attacks:
Various access controls and restrictions including virtual LANs, firewalls can provide protection against zero-day attacks.
Single packet authorization can help provide effective protection against zero-day attacks on a network with fewer users.
Restrict permissions on user accounts. This could mitigate the effects of possible attacks.