Everyday it seems that there is a new term to describe how hackers and malware writers attack you. Originally everything was called a Virus. Then we split the definition to separate malware into it's own category and now the current popular term is Zero Day Exploits.
What are they? Essentially a zero-day attack is an exploit that takes advantage of a previously unknown vulnerability in a piece of software hence the designation "zero-day". Even the author of the exploited software isn't away of the vulnerability until too late. The malware is out and running wild before the vulnerability is even identified. On the Internet, a headstart like that gives the malware writers a big advantage.
For example, when the last big Zero Day exploit was identified in Java, it took Oracle (the owner of Java, over a month to fix it). On the Internet, a head start of a few hours is a tremendous adavantage. A month is ridiculous.
Within the ranks of the various malware specialists there is a new group called Researchers. They don't necessarily do the attacking. They just search for new vulnerabilites is various programs and sell their findings to others so that they can do the dirty work.
Most often the malware writer or Research has found an opening in a commonly used piece of software on your PC that enhances your Internet experience like JAVA, Flashplayer, RealPlayer, Acrobat and others. He takes advantage of a flaw in that program to inject their code or behavior into your computer and BOOM you're infected!
What can you do to reduce your risk of exposure? Make sure all of your apps on your computer are up-to-date. Make sure your A/V program is running and getting updates from the vendor in real-time. The days of batch updates and running your A/V once a day or once per week are long gone! Remember, Microsoft updates their patch services at least twice per week, get all of your updates and patches as other as possible.
Will this stop everything? Of course, not! But it will sure as heck REDUCE your risk of exposure. What other steps can you take? Check our Facebook page for a link to our new Blended Protection Plan for business networks.
No comments:
Post a Comment