Window of Vulnerability: Zero Day Protection Is Not Enough

For the last 20 years, cybercriminals have exploited security holes in Web browsers to penetrate networks around the world. They are aware that signature-based security solutions such as Anti-Virus can only detect and block malware that has been identified and issued a signature. So, cybercriminals are always looking for new vulnerabilities for which no signature exists yet.

Software vendors are unable to release patches for reported vulnerabilities on the spot, and therefore a Window-of-Vulnerability™ appears. This refers to the time between the moment the vulnerability is identified and the moment a patch is available to repair it. This is a prime opportunity for cybercriminals to successfully conduct their attacks. Although software vendors try to distribute patches as quickly as possible, the lapse still leaves organizations vulnerable for days, weeks, or even months.

In addition to risking valuable personal, financial and business data, the Window-of-Vulnerability puts a strain on IT managers, who are under constant pressure to patch systems at the same rate that new vulnerabilities are discovered. Considering the multitude of operating systems, service packs, applications and security settings in use across an organization, it's an almost impossible task.

To address this, M86 Security provides organizations with Vulnerability Anti.dote™ as part of its Web security solutions. Utilizing patented, active, real-time content inspection, Vulnerability Anti.dote protects against vulnerabilities, with minimal patch management overhead. It also proactively protects against silent "drive-by" crimeware installations, obfuscated malicious code, and remote code execution attacks, all of which exploit un-patched vulnerabilities.