Potential Windows Zero-Day On Sale to Highest Bidder

Proof of the rapidly expanding viability of the cybercriminal underground, our SpiderLabs researchers this week reported on a forum post that is peddling an unconfirmed zero-day vulnerability in Windows that could affect virtually every user of the operating system.

Ziv Mador, VP of security research at Trustwave, joined Trustwave Talks to discuss the fascinating discovery by his team of a potential Windows zero-day "local privilege escalation" vulnerability, which is being auctioned off in the cybercriminal underground to a single buyer at the starting asking price of $90,000.

Ziv describes what we know about the vulnerability, why zero-days becoming more publicly accessible is a worrying trend and how organizations can protect themselves against this and similar threats.

We hope you enjoy the chat!

Trustwave reserves the right to review all comments in the discussion below. Please note that for security and other reasons, we may not approve comments containing links.