Comment on Threat actors exploited Windows 0-day for more than a year before Microsoft fixed it

• Grimy@lemmy.world ⁨4⁩ ⁨months⁩ ago

  A zero-day (also known as a 0-day) is a vulnerability in software or hardware that is typically unknown to the vendor and for which no patch or other fix is available. The vendor has zero days to prepare a patch as the vulnerability has already been described or exploited.

  From wiki

  source
• AceBonobo@lemmy.world ⁨4⁩ ⁨months⁩ ago

  My understanding, zero day means when the exploit was discovered it was already being used in the wild. This is different from an exploit discovered by a bounty program or by security researchers.

  source