"Zero day" was the mantra for attackers in 2006, and the trend shows no signs of 
letting up next year, according to a new report issued by The SANS Institute earlier today.
In its annual, in-depth study of the Internet’s most popular online exploits, the security research and training organization found that zero-day attacks have skyrocketed over the past year.
"In 2006, we’ve seen a significant rise in attacks that take advantage of zero-day vulnerabilities, leaving a user or system unable to defend against the attack, since there is no patch available," says Marc Sachs, director of the SANS Internet Storm Center and SRI International.
The interest in zero-day exploits is increasing as companies and end users improve their patch management, says Rohit Dahmankar, senior manager of security research at TippingPoint Technologies Inc. "As automated patch management has emerged, we’ve seen greater interest in zero-day attacks," he says. Dark Reading - Desktop Security - Zero-Days Top 2006 Attack List - Security News Analysis
From around the Web
- How to Use Network Behavior Analysis Tools
- Apple updates Safari with 11 security fixes
- Mozilla fixes 11 Firefox flaws, six critical
- Google updates Chrome to third beta
- Firefox 3.1 beta arrives with JavaScript booster turned off
- The insider security threat in IT and financial services
- Windows 7 security: An overall improvement?
- Top 10 Network Security Threats
- Big leap in malicious Web sites
- Network security makes a quantum leap
- What is the Best Internet Browser to Surf the Web?
- Windows 7 UAC could be less of a nag
- Microsoft releases faster Desktop Search 4.0
- Vista users keen on SP1, but XP SP3 not so much
- Windows 7 Details In October, Microsoft Says