InfoSec 2003: 'Zero-day' attacks seen as growing threat

Friday, 12 December 2003, 11:47 AM EST

"Zero-day" attacks that take advantage of software vulnerabilities for which there are no available fixes are emerging as a major threat to corporate security.

More than ever, the threat underscores the need for companies to have safe configuration policies for software and systems, as well as good incident-response and patching capabilities, said users at the InfoSec 2003 trade show here last week.

"I'm very concerned about it," said Joseph Inhoff, LAN administrator at Lutron Electronics Co., a manufacturer of lighting equipment in Coopersburg, Pa.

Because such attacks take advantage of flaws before software makers can fix them, the potential for damage from so-called zero-day exploits is something Lutron's management is especially worried about, Inhoff said. "I'm trying to figure out what I can do about it," said Inhoff, who was at the show to see how automated patching software could help bolster the company's response capabilities to such attacks.

Although they have been seen as a major security threat for some time, there haven't yet been any major zero-day attacks.

[ Read more ]




Spotlight

What security experts think about Apple Pay

Posted on 11 September 2014.  |  Apple Pay works with iPhone 6 and iPhone 6 Plus through a NFC antenna design, a dedicated chip called the Secure Element, and the security and convenience of Touch ID.


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  

DON'T
MISS

Fri, Sep 12th
    COPYRIGHT 1998-2014 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //