In the enterprise, a zero-day can happen any day

Mari-Len covered a report yesterday that showed zero-day attacks are the No. 1 security concern among IT professionals. I wondered afterwards if that was based on what these people had actually experienced in their organizations — my guess is that zero-day attacks aren’t quite that widespread yet — or if it was more of fear based on the potential of what could happen.

If it’s the latter, I think the industry as a whole will do a better chance of defending itself. It’s when IT managers aren’t worried about something — like the flaw in a piece of software, or the way certain users behave with their devices and data — that a breach of some kind tends to occur.

A few months ago, meanwhile, Mari-Len did a more in-depth feature for ComputerWorld Canada on zero-day attacks and how to handle them. It’s worth a second read.