防御零日攻击的黑暗艺术

Network Security Pub Date : 2022-11-01 DOI:10.12968/s1353-4858(22)70066-9

Matias Madou

{"title":"防御零日攻击的黑暗艺术","authors":"Matias Madou","doi":"10.12968/s1353-4858(22)70066-9","DOIUrl":null,"url":null,"abstract":"Many organisations remain vulnerable to zero-day attacks. Zero-day attacks, by definition, give developers zero time to find and patch existing vulnerabilities that could be exploited, because the threat actor got in first. The damage is done and then it's a mad scramble to fix both the software and reputational damage to the business. Attackers are always at an advantage, and reducing that edge as much as possible is crucial.","PeriodicalId":100949,"journal":{"name":"Network Security","volume":"1 1","pages":""},"PeriodicalIF":0.0000,"publicationDate":"2022-11-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Defence against the dark art of zero-day attacks\",\"authors\":\"Matias Madou\",\"doi\":\"10.12968/s1353-4858(22)70066-9\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Many organisations remain vulnerable to zero-day attacks. Zero-day attacks, by definition, give developers zero time to find and patch existing vulnerabilities that could be exploited, because the threat actor got in first. The damage is done and then it's a mad scramble to fix both the software and reputational damage to the business. Attackers are always at an advantage, and reducing that edge as much as possible is crucial.\",\"PeriodicalId\":100949,\"journal\":{\"name\":\"Network Security\",\"volume\":\"1 1\",\"pages\":\"\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2022-11-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Network Security\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.12968/s1353-4858(22)70066-9\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Network Security","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.12968/s1353-4858(22)70066-9","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

摘要

许多组织仍然容易受到零日攻击。根据定义，零日攻击使开发人员没有时间发现和修补可能被利用的现有漏洞，因为威胁参与者抢先进入。损害已经造成，然后就需要疯狂地修复软件和商业声誉上的损害。攻击者总是处于优势地位，尽可能地减少这种优势是至关重要的。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

Defence against the dark art of zero-day attacks

Many organisations remain vulnerable to zero-day attacks. Zero-day attacks, by definition, give developers zero time to find and patch existing vulnerabilities that could be exploited, because the threat actor got in first. The damage is done and then it's a mad scramble to fix both the software and reputational damage to the business. Attackers are always at an advantage, and reducing that edge as much as possible is crucial.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

Network Security

自引率

0.00%

发文量

期刊最新文献

Cyber threats and key mitigation strategies Enhancing network resilience against growing cyberthreats The burden of keeping passwords secret Is new legislation the answer to curbing cybercrime? Interconnection, NIS2 and the mobile device