Which security practices can lower exposure to zero-day attacks?

It's never possible to completely prevent zero-day attacks, but in this SearchSecurity.com Q&A, network security expert Mike Chapple reveals which tools can provide significant protection from such threats.

University of Notre Dame

I'm attempting to proactively thwart zero-day attacks on my network. Can I prevent zero-day attacks with a combination of good security practices, VLAN network segmentation and an NAC system?

As you probably know, it's never possible to completely prevent zero-day attacks. However, the controls you mention are a good start toward dramatically reducing the risks. Let's expand a bit on "good security practices" and look at some of the particular management practices that can lower your exposure to zero-day exploits:

Firewalls play a vital role in preventing zero-day attacks. Use them to protect the perimeter of your network from unsolicited traffic. You should also use host-based firewalls (such as Windows Firewall) to limit the inbound connections allowed to each system on your network. Ideally, most systems (e.g. workstations) will not allow any inbound connections.

Patch management is also critical. Many zero-day attacks are simply novel exploits of a previously known vulnerability. If you keep your operating systems and applications patched, you'll be immune from the vast majority of zero-day exploits.

Antivirus software and intrusion detection systems may not help with true zero-day attacks, but they play a valuable role in protecting your network from known issues. Don't neglect them when planning your security infrastructure.

I hope this helps you plan and implement your network security controls. Good luck in your battle to secure your enterprise information assets!

More information:

Learn about ten emerging malware trends that you should be aware of.

See how zero-day attacks may lead to poor patch testing.

This was last published in February 2007

Dig Deeper on Emerging cyberattacks and threats

All
News
Get Started
Evaluate
Manage
Problem Solve

Related Q&A from Mike Chapple

How to prevent DoS attacks in the enterprise

It's not possible to eradicate the risk of DoS attacks, but there are steps infosec pros can take to reduce their impact. Mike Chapple shares ... Continue Reading

How should HIPAA covered entities respond to healthcare ransomware?

The HHS OCR ruled that healthcare ransomware attacks are HIPAA violations, so these covered entities need to react according to the HHS's guidance. ... Continue Reading

Should healthcare organizations follow the NIST guidelines for HIPAA?

HIPAA regulations incorporate NIST guidelines and standards, so do healthcare organizations need to be compliant with both? Expert Mike Chapple ... Continue Reading

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

Meet all of our Information Security experts

View all Information Security questions and answers

SearchCloudSecurity

Critical Kubernetes vulnerability could have widespread effects

News roundup: A critical Kubernetes vulnerability was found in the system's API server and could have a wide reach. Plus, ESET ...

What's different about Google Asylo for confidential computing?

The Google Asylo framework is an open source alternative for confidential computing. Expert Rob Shapland explains how it works ...

How Google's cloud data deletion process can influence security policies

Understanding the process behind Google's cloud data deletion can help influence stronger enterprise security policies. Expert Ed...

SearchNetworking

Gauge your platform purchasing options before SD-WAN deployment

Finalizing how an organization deploys SD-WAN can be a complex process, especially with the range of available purchasing options...

Packet broker added to Big Switch cloud fabric on AWS

Big Switch cloud fabric for AWS has a network packet broker. The company launched Big Mon for the cloud this week. Upcoming tech ...

SolarWinds adds SDN monitoring to network management tools

In networking news, SolarWinds updates its network management software; a report predicts SDN's future; and Barefoot Networks ...

SearchCIO

Lottery.com eyeing blockchain for charity games to boost transparency

Online mobile lottery service Lottery.com wants to use blockchain as a service to bolster a new business initiative: expanding ...

Why AI for social good is a thing

Tech companies love to promote their use of AI for social good. CMU's Fei Fang talks about why the ethics of AI is such a tricky ...

How to get more women leaders in tech: It's not just a numbers game

Women leaders in tech are still few and far between. The industry knows it's a problem, but fixing gender inequality in the top ...

SearchEnterpriseDesktop

How to set up a Windows Autopilot deployment

IT can set profiles for its devices running Windows 10 and enroll them in Active Directory with the Windows Autopilot tool, but ...

Ready to build a custom Windows 10 image? Find out!

With a customized Windows 10 image, IT can automate much of the installation process for users and deliver the exact ...

Microsoft Windows as a service still finding its footing

As Microsoft continues to battle bugs in Windows 10, some analysts and developers blame its quality-control process and a lack of...

SearchCloudComputing

An overview of ARM templates for Azure resource deployment

Azure Resource Manager templates streamline the way IT and development teams deploy cloud resources. To get started, grasp these ...

5 best ways to minimize cloud scaling costs

Many factors can contribute to a high public cloud bill -- one of which is scalability. Apply these five practices to effectively...

How to use Azure Site Recovery Deployment Planner

A successful disaster recovery procedure is more complicated than most people think. Learn how an Azure service can streamline ...

ComputerWeekly.com

Vodafone’s 4G network goes underground

Operator will roll out small 4G and 5G-ready antenna to boost network coverage over short distances in areas of dense usage, ...

BT upgrades InLink street kiosks for deaf, speech-impaired people

BT has added a next-generation text service to its InLink street kiosks to make the service more accessible to people who are ...

O2 expected to pursue Ericsson for compensation over 24-hour stoppage

Mobile network operator could seek up to £100m in damages from its supplier, which failed to update expired software certificates...

Related Resources

Dig Deeper on Emerging cyberattacks and threats

Related Q&A from Mike Chapple

Have a question for an expert?

Start the conversation

0 comments

Register

Login

Forgot your password?

Your password has been sent to:

Please create a username to comment.