In recent days, Microsoft has published an update related to the security of its systems talking about a new zero-day vulnerability that affects Internet Explorer and allows cybercriminals to take control of the system, affecting some versions of Windows (Windows Server 2008 up to 2019, Windows 8.1 and later up to Windows 10).
An important flaw, despite the browser – as known – has now been discontinued by the Redmond house (which currently no longer even guarantees technical support). Also because – as Microsoft itself has made it known – it is a vulnerability that is still active and very exploited.
Loading…
But what is zero-day malware? The answer is provided by Yoroi experts, who take into account the main attacks, trends and types of cyber threats on a daily basis with this dashboard on Lab24. “We call zero-day malware any sample that turns out to be an unknown variant of arbitrary malware families.”
And it is surprising to know that today, 75.6% of malicious files used to attack organizations are zero-day malware and newly known malware that have a not inconsiderable chance of bypassing traditional security perimeters.
With over a billion samples produced in 2020, malware can be seen – without a doubt – as a real sector, characterized by production, engineering, supply chain and delivery processes. Year after year, this aspect is constantly growing and no matter how many malware actors and operators are arrested by law enforcement. Because they are easily replaced with new emerging, money-hungry bands.