RSS FeedSecurity

eEye opens doors on zero-day flaws

New website tracks growing threat.

By | Published 13:27,

eEye has produced a new service that will specifically track "zero-day" security holes.

The security company said the service will include detailed information on mitigating unpatched bugs, as well as independent research that has, in the past, shown some threats to be more serious than originally thought. A new website for the service can be seen here.

Also in this channel
Related Articles

 

Virtualisation, Big Data and BYOD

Check out our Business IT Hub for opinions and briefings. Read more

eEye said the launch is a direct result of the increased threat of unpatched bugs that has developed over the past few months. "More zero-day security vulnerabilities and attacks are being discovered every day, and dealing with them can easily dominate an enterprise’s IT efforts," said eEye founder and CTO Marc Maiffret. "The increasing proliferation of zero-day vulnerabilities means the previous window of opportunity IT had to secure networks between the release of a software patch and an attack has been slammed shut."

Over the past year attackers have begun launching zero-day attacks shortly after Microsoft's monthly patch cycle, to allow the maximum amount of time before a patch is available. Microsoft Office and Internet Explorer have been targeted particularly frequently, with Word most recently targeted.

The company claims its research arm is responsible for discovering more critical security bugs than any other research group in the world. FrSIRT and Secunia both offer vulnerability-tracking services backed up by their own research teams, but don't have services devoted exclusively to zero-day bugs.

eEye noted that its tests had found that a recent bug in Adobe software, originally reported as a denial-of-service flaw, could in fact be used to execute malicious code.

The company claimed it will publish information not publicly disclosed on other vulnerability-tracking sites. All new zero-day bugs will be added to the list, and eEye will provide data on past bugs on request.

eEye also makes software designed to protect systems from zero-day attacks until patches are available.

Send to a friend

Email this article to a friend or colleague:

PLEASE NOTE: Your name is used only to let the recipient know who sent the story, and in case of transmission error. Both your name and the recipient's name and address will not be used for any other purpose.

HP Business Answers

Join the discussion today

The HP Business Answers group is a vibrant community of small and medium sized business owners and employees. HP provides independent and expert advice in fields such as design, branding, taxation, technology, marketing or manufacturing so join today to network with over 6500 like-minded professionals.

Join the HP Business Answers Linkedin Community

Read the most recent discussions

Read more at the HP Business Answers Linkedin Community

ComputerWorldUK Resources

ComputerworldUK
Share
x
Open
* *