Home
Glossary
Zero-Day vulnerability
Table of content
5 min
H2 title on one or more lines.
Share
By
Mahamadou CISSE
&
Updated on
June 22, 2026

Zero-Day vulnerability

A zero-day vulnerability is a software flaw that is unknown to the vendor and therefore unpatched, leaving developers "zero days" to fix it before it can be exploited by cybercriminals.

The term "zero-day" highlights the fact that developers have "zero days" to fix the issue before it can be exploited by cybercriminals. These vulnerabilities are particularly dangerous because they can be exploited immediately after discovery, before any defenses can be put in place.

How do Zero-Day attacks work?

Zero-day attacks leverage these unpatched vulnerabilities to gain unauthorized access to systems, often leading to data breaches, espionage, or system damage. Typically, attackers use sophisticated methods, such as:

1) Exploitation of code flaws: Attackers identify and exploit flaws in software code that the vendor is unaware of.

2) Social engineering: Attackers may trick users into downloading malicious software by exploiting the zero-day vulnerability.

3) Targeted attacks: These attacks are often highly targeted, focusing on specific organizations or individuals, making them difficult to detect.

How to protect against Zero-Day attacks

While zero-day attacks are difficult to prevent due to their unknown nature, there are strategies that organizations can adopt to mitigate risks:

1) Regular software updates : Ensure all software is up-to-date with the latest patches and security updates.

2) Intrusion Detection Systems (IDS): Utilize IDS to monitor network traffic for signs of suspicious activity.

3) Employee training: Regularly train employees to recognize and avoid potential phishing attempts.

4) Network Segmentation: Isolate critical systems from the rest of the network to limit the impact of a breach.

5) Threat Intelligence: Leverage threat intelligence services to stay informed about emerging threats and vulnerabilities.

Answers to questions about Zero day

What is a zero-day vulnerability?
A zero-day vulnerability is a software flaw that is unknown to the vendor and, therefore, lacks a patch, making it a prime target for exploitation by cybercriminals.

How do zero-day attacks happen?
Zero-day attacks occur when cybercriminals exploit unpatched software vulnerabilities, often through phishing, malware, or direct exploitation of the vulnerability.

How can I protect my organization from zero-day attacks?Protecting against zero-day attacks involves a combination of regular software updates, intrusion detection systems, employee training, and leveraging threat intelligence.

Read our latest blog articles

Product News
June 23, 2026

Sekoia’s new identity: Designed for clarity

Sekoia has partnered with branding agency Bruno to develop a new brand identity and digital experience that reflects who we really are.

By
Sekoia Team
View more
Threat Research & Intelligence
TDR
June 11, 2026

APT28, an evolution of tradecraft

Sekoia TDR looks back at how APT28's arsenal has evolved over two decades, from its signature X-Agent implants to disposable modules, edge-device infrastructure and the first LLM-driven malware.

By
Amaury-Jacques GARCON
By
Threat Detection & Research Team
View more
Threat Research & Intelligence
TDR
June 16, 2026

Unveiling ErrTraffic: inside a growing ClickFix malware distribution framework

This report details the ErrTraffic threat and its associated ecosystem, highlighting three specific campaigns and their operators' arsenal.

By
Jérémy SCION
By
Quentin BOURGUE
By
Threat Detection & Research Team
View more