Zero day definition

Zero day is a broad term that includes both vulnerabilities and exploits. A zero-day vulnerability is a flaw in software or hardware which is yet to be discovered by its developers. A zero-day exploit is when cybercriminals discover the vulnerability and abuse it for their own means.

Real zero day examples

• In 2010, a powerful computer worm called Stuxnet started exploiting the previously unknown Windows zero-day vulnerabilities. The worm caused enormous damage to the nuclear program of Iran and later was modified to target other facilities such as power plants and gas pipes.
• In 2014, criminals utilized a zero-day vulnerability to break into Sony’s network and steal data. They released incredibly sensitive information, like copies of upcoming movies, business deals, and Sony’s top management emails.

Stopping zero-day attacks

• Update your software.
• Stay informed about potential flaws in your software through vulnerability databases and bug bounty programs.
• Be wary of phishing scams.

Further reading