Skip to content

Zero-Day

Medium — good to knowSecurity

ELI5 — The Vibe Check

A zero-day is a vulnerability that nobody knows about yet — except the person who found it. The name means the vendor has had 'zero days' to fix it. Hackers who find zero-days can exploit them with no defense available. They're worth a ton of money on the underground market.

Real Talk

A zero-day vulnerability is one that is unknown to the software vendor, meaning no patch exists. When disclosed publicly without a fix available ('zero-day release'), it creates a window of maximum risk. Zero-days discovered by researchers are typically reported privately for a fix period before public disclosure.

When You'll Hear This

"A zero-day in the browser was exploited before the vendor knew about it." / "The security team monitors threat feeds for zero-day advisories."

Related Terms

Bug Bounty

A bug bounty program pays ethical hackers to find security vulnerabilities in your product.

beginnerSecurity

Exploit

An exploit is the actual tool or technique used to take advantage of a vulnerability.

beginnerSecurity

Patch

A patch is a small update that fixes something specific without replacing the whole program.

beginnerGeneral Dev

Penetration Testing

Penetration testing (pentesting) is hiring ethical hackers to try to break into your own systems before the real bad guys do.

intermediateSecurity

Vulnerability

A vulnerability is a weakness in your code or system that a bad guy could exploit. Like a broken lock on a door.

beginnerSecurity
Back to Browse Random Term

Made with passive-aggressive love by manoga.digital. Powered by Claude.